VisiPass is an AI-powered networking platform that lets you create digital business cards that live natively in Apple Wallet and Google Wallet. Share your contact info with a tap, QR code, or link — and let the AI send personalized follow-up emails automatically.

How does the Smart Follow-Up feature work?

After someone scans your VisiPass card, our AI automatically generates and sends a personalized follow-up email on your behalf — referencing where you met, your role, and a tailored message. Your card works while you sleep.

Does VisiPass work with Apple Wallet?

Yes. VisiPass generates native Apple Wallet .pkpass files. Your digital business card is added directly to Apple Wallet and can be shared with a tap or QR code. The card updates live when you change your details — no re-download needed.

Does VisiPass work with Google Wallet?

Yes. VisiPass supports Google Wallet on Android. Add your digital business card to Google Wallet and share it with NFC, QR code, or a link.

Is VisiPass GDPR / DSGVO compliant?

Yes. VisiPass is built with DSGVO compliance in mind. Data is stored in Swiss data centers (Zurich), and we never sell your contact data. Switzerland has an EU adequacy decision under Art. 45 GDPR, ensuring equivalent data protection.

Was ist VisiPass? (German)

VisiPass ist eine KI-gestützte Networking-Plattform, mit der Sie digitale Visitenkarten erstellen können, die nativ in Apple Wallet und Google Wallet gespeichert werden. Teilen Sie Ihre Kontaktdaten per Tap, QR-Code oder Link — und lassen Sie die KI personalisierte Follow-up-E-Mails automatisch versenden.

Wie viel kostet VisiPass? (German)

VisiPass bietet einen kostenlosen Plan für eine Karte. Der Pro-Plan kostet 5,99 €/Monat und beinhaltet unbegrenzte Karten, NFC, CRM-Synchronisation und KI-Follow-up. Für Teams gibt es einen Plan ab 4,99 €/Nutzer/Monat.

GDPR-Compliant Digital Business Cards: What Actually Matters

Most digital business card apps were built in the US and treat GDPR as an afterthought. Here's what European businesses need to check — and why it matters more than you think.

GDPR affects every European business that collects contact data — and that includes what happens when someone scans your digital business card.

Most professionals don't think about this. They sign up for an American card app, share their link at an event, and move on. But if you're in Germany, Austria, Switzerland, or anywhere in the EU, the tool you use to collect and store contact information needs to meet specific legal requirements.

Here's what actually matters — and what to look for.

What GDPR Requires for Contact Data Collection

When someone scans your digital card and you collect their information (even just their name and email via a "save contact" form), you are processing personal data under the GDPR.

This triggers several obligations:

1. Legal basis for processing

You need a legal basis. For networking contexts, this is typically "legitimate interest" or "consent." The card platform should make it easy to document which basis you're using.

2. Data location

Under GDPR, personal data about EU residents should not be transferred to countries without adequate protection. Data stored on US servers without appropriate safeguards (SCCs or equivalent) is technically non-compliant.

3. Data subject rights

Your contacts have the right to request deletion of their data. Your card platform must support this — either by giving you tools to delete contacts, or by handling deletion requests directly.

4. Privacy notice

When you collect contact data, the person should be informed about how it will be used. A GDPR-compliant card platform provides a privacy policy link on the contact capture page.

5. Data retention limits

You cannot store contact data indefinitely. Your card app should allow you to set retention periods or manually delete old contacts.

What Most US-Based Card Apps Get Wrong

The major digital card platforms — Blinq (Australia/US), HiHello (US), Wave (US), Popl (US) — were built for the US market where these requirements don't apply.

Typical gaps:

Data stored on US servers without Standard Contractual Clauses or adequacy decision coverage

No consent mechanism on the contact capture page

No DSGVO-specific privacy policy (German: Datenschutzgrundverordnung)

No data deletion tools for contacts who invoke their right to erasure

No data processing agreement (DPA/AVV) available for B2B customers who need one

This doesn't mean these apps are illegal — it means the compliance burden falls entirely on you. You become the data controller and are responsible for ensuring any tools you use have adequate protections in place. In practice, most EU professionals using US card apps are taking on unknown liability.

What GDPR Compliance Actually Looks Like

Try VisiPass free — digital business cards in Google Wallet. AI follow-up emails after every scan. No app for your contacts.

Start free →

A genuinely GDPR-compliant digital card platform should offer:

European-region data storage

Contact data and card analytics stored in Swiss data centers (Zurich) — not routed through US servers.

Consent-ready contact capture

The page where contacts enter their information includes a GDPR-compliant consent checkbox and links to a privacy policy.

Data Processing Agreement (DPA)

Business customers can sign a DPA/AVV making the relationship between controller (you) and processor (the card platform) legally clear.

Right to erasure support

Contacts can be deleted from the system. If a contact requests deletion, you can action it in seconds.

Transparent sub-processors

A list of third parties that process data on the platform's behalf (email delivery, AI enrichment providers, analytics).

German-language support

For Germand-speaking markets, the platform should support German-language interface and German-language legal documents.

VisiPass and GDPR

VisiPass was built EU-first. Specific compliance features:

Swiss infrastructure — data stored in Swiss data centers (Zurich) from day one

DSGVO-native — German-language legal documents, German-language interface

Contact capture with consent — the contact form includes GDPR-compliant consent language by default

Data deletion — contacts can be deleted individually or in bulk; deleted contacts are purged from the system within 30 days

DPA available — Pro and Team customers can request a Data Processing Agreement

This is not a US product that added a GDPR checkbox as an afterthought. The architecture was designed from the start to be compliant for EU businesses.

Practical Checklist for EU Businesses

Before using any digital card platform, verify:

[ ] Where is contact data stored? (European/Swiss data center?)

[ ] Is a Data Processing Agreement available?

[ ] Does the contact capture form include a consent mechanism?

[ ] Can contacts request deletion, and how is that handled?

[ ] Does the platform have a GDPR/DSGVO privacy policy?

[ ] Are sub-processors disclosed?

If a platform can't answer these questions, the compliance risk is yours.

The Bottom Line

GDPR compliance for digital business cards is not just about your own data — it's about the contact data you collect from every person who scans your card. If that data flows to a US server without proper safeguards, you're exposed.

For EU businesses, VisiPass is the only major digital card platform built with GDPR compliance as a first-class requirement.

Create a GDPR-compliant digital business card →