diff --git a/config/packages/security.yaml b/config/packages/security.yaml
index d237dd4..b6f703b 100644
--- a/config/packages/security.yaml
+++ b/config/packages/security.yaml
@@ -53,6 +53,7 @@ security:
         - { path: ^/docs, roles: PUBLIC_ACCESS } # Allows accessing the Swagger UI docs
         - { path: ^/auth, roles: PUBLIC_ACCESS }
         - { path: ^/admin/login, roles: PUBLIC_ACCESS }
+        - { path: ^/api/companybyauthcode, roles: PUBLIC_ACCESS }
         - { path: ^/admin, roles: ROLE_ADMIN }
         - { path: ^/, roles: IS_AUTHENTICATED_FULLY }
         - { path: ^/api, roles: IS_AUTHENTICATED_FULLY }
diff --git a/src/Controller/CompanyController.php b/src/Controller/CompanyController.php
new file mode 100644
index 0000000..1673074
--- /dev/null
+++ b/src/Controller/CompanyController.php
@@ -0,0 +1,30 @@
+<?php
+
+namespace App\Controller;
+
+use App\Entity\Company;
+use Symfony\Bundle\FrameworkBundle\Controller\AbstractController;
+use Symfony\Component\HttpFoundation\JsonResponse;
+use Symfony\Component\Routing\Annotation\Route;
+use Doctrine\ORM\EntityManagerInterface;
+use Symfony\Component\Serializer\SerializerInterface;
+
+class CompanyController extends AbstractController
+{
+    #[Route("/api/companybyauthcode/{auth_code}", name: 'company_by_code', methods: ['GET'])]
+    public function getCompanyByAuthCode(string $auth_code, SerializerInterface $serializer, EntityManagerInterface $em)
+    {
+        $company = $em->getRepository(Company::class)->findOneBy(['auth_code' => $auth_code]);
+    
+        if (!$company) {
+            return new JsonResponse(['code'    => "NOT_AUTHORIZED", 'message' => 'You are not authorized to obtain company information', 'content' => []], JsonResponse::HTTP_NOT_FOUND);
+        }
+    
+        $companyName = $company->getName();
+        $companyLogo = $company->getLogo();
+    
+        $jsonResponse = $serializer->serialize(['name' => $companyName, 'logo' => $companyLogo], 'json');
+    
+        return new JsonResponse($jsonResponse, JsonResponse::HTTP_OK, [], true);
+    }
+}