How BCard Safeguards Your Personal Info

What Information Does BCard Need?

BCard is a debit card. That means when you create an account, you're going to be creating a bank account with our card-issuing partner's bank, SouthState Bank. To comply with federal regulations, our card-issuing partner must collect certain information about you before they can open your account and issue your card.

When creating an account on BCard, you will be asked to enter personal information like your Name, Address, Date of Birth, and Social Security number.

What Information Does BCard Keep?

In general, BCard aims to hold as little as your data as possible. We believe strongly in personal privacy, and would prefer not to hold any sensitive user data if we can avoid it.

That being said, there are certain pieces of information we need to keep to ensure we can do things like show you your card number, recover your account, etc. Here's a list of all personal data BCard keeps on our system:

• Your first and last name

• Your email address

• Your connected web3 wallet address

• Card info, such as number, CVV, and expiry date

• Account info, such as bank account and routing numbers

• Transaction data (to display to you and to calculate rewards)

How Does BCard Ensure My Personal Data is Safe?

We take the following steps to ensure your data is secure:

1. We never view or hold any data we don't need. For instance, your date of birth, SSN, address, and external bank information are never seen or held by BCard (they are transmitted directly to our federally-regulated card-issuing partner, Transcard).

2. We hold the majority of your personal information on your own device. We don't store your name, card number, account number, or expiry date anywhere except your device.

   • Your email and wallet addresses are held securely by Privy, and never shared with anyone outside of BCard.

3. We encrypt ALL information during transmission and at rest. Encryption ensures that even if a breach happens, your information still cannot be read by anyone except you.

4. We anonymize transaction data. Transaction data is stored separately from user data and only referenced by ID, so it cannot be linked back to an individual user. We don't hold any location data.