Welcome to MG Tag — a digital business card application that lets you share your contact information, social media links, and profile details via NFC tags and QR codes.
We are committed to protecting your privacy. This policy explains what data we collect, why we collect it, how it is used, and your rights regarding your personal information.
By using MG Tag, you agree to the practices described in this policy. If you do not agree, please discontinue use of the App.
When you create or update your profile, you may provide:
This information is used solely to populate your digital business card and make it shareable with others.
We use third-party authentication providers (Firebase and/or Supabase) to securely manage account creation and login. This may involve your email address and a securely hashed password. We never store your password in plain text. Google OAuth sign-in is also supported.
We collect anonymized, aggregated analytics to understand how users interact with the App and to improve performance. This may include usage frequency, feature interaction patterns, and crash reports. This data is not linked to your personal identity.
MG Tag requests the following device permissions. Here is exactly why each one is needed:
Used exclusively to scan QR codes so you can quickly add contacts or view another user's digital profile. All QR code processing happens entirely on your device. We do not capture, save, store, upload, or transmit any photos or video — ever.
Used to read from and write your digital business card link to physical NFC tags, enabling contactless sharing of your profile. No personal data is transmitted beyond what you have explicitly chosen to include on your public profile.
Required to sync your profile data with our secure cloud database, making your digital business card accessible to others via your shared link.
We use the information we collect only for the purposes below. Your data is never used for advertising, profiling, or any purpose not stated here.
| Purpose | Data Used |
|---|---|
| Create and display your digital business card | Name, email, phone, social links, profile picture |
| Authenticate your identity securely | Email, authentication tokens |
| Sync your profile across devices | Profile data via cloud database |
| Smart CV Auto-Fill | Uploaded PDF (parsed on-device, not stored permanently) |
| Improve the App's performance and features | Anonymized analytics data |
| Send milestone and visitor notifications | Device push token (Firebase FCM) |
| Respond to support requests | Email address |
We share data only with providers strictly required to operate the App's core infrastructure:
These providers act as data processors on our behalf and are contractually prohibited from using your data for any other purpose.
The information you place on your digital business card is intentionally shareable — that is the core function of MG Tag. You are in full control of what you add, and you can update or remove it at any time.
We may disclose your information if required by law, regulation, or valid legal process, or to protect the rights, property, or safety of MG Tag, our users, or the public.
We retain your personal data for as long as your account is active or as needed to provide services to you.
If you delete your account, all associated personal data will be permanently removed from our systems within 30 days, unless we are legally required to retain it longer.
CV/PDF files uploaded for Auto-Fill are processed immediately and are not retained on our servers beyond the parsing operation.
We implement appropriate technical and organizational measures to protect your personal information, including:
No method of internet transmission is 100% secure. While we use commercially reasonable means to protect your data, we cannot guarantee absolute security.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) and equivalent laws apply. We process your personal data on the following legal bases:
| Legal Basis | When It Applies |
|---|---|
| Contract performance | Creating and operating your account and digital card |
| Legitimate interests | Analytics, security, and fraud prevention |
| Consent | Push notifications; optional data features |
| Legal obligation | Complying with applicable laws and regulations |
To exercise any of these rights, contact us at mahmoud202350@gmail.com. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection authority.
MG Tag is a mobile application. We do not use traditional browser cookies. However, we use similar technologies — local storage and session tokens — for the purposes described below.
MG Tag is not directed at children under the age of 13 (or the applicable age of digital consent in your region). We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.
MG Tag is operated globally. If you access the App from outside your home region, your information may be transferred to and processed in countries where data protection laws may differ. By using MG Tag, you consent to such transfer and processing.
For EEA users, transfers outside the EEA are subject to appropriate safeguards, including Standard Contractual Clauses (SCCs) where applicable.
We may update this Privacy Policy from time to time. When we make significant changes, we will notify you by updating the "Last Updated" date above and displaying an in-app notification.
Your continued use of MG Tag after changes are posted constitutes acceptance of the updated policy. We encourage you to review this page periodically.
Your use of MG Tag is also governed by our Terms of Use, which describe your rights and responsibilities as a user of the App.
For the full Terms of Use, please contact us at mahmoud202350@gmail.com or visit our website.
If you have any questions, concerns, or data requests regarding this Privacy Policy or your GDPR rights, please reach out: