Privacy Policy

Account information. When you create an account, we collect your name and email address. This is used for authentication and to communicate with you about your account.

Scan data. When someone scans one of your QR codes, we collect an IP hash (never the raw IP address), approximate country, device type, browser, and operating system. This powers your scan analytics dashboard.

QR code data. We store the destination URLs and visual styles you configure for your QR codes.

Provide the service. Redirect QR code scans, display analytics, and manage your account.

Analytics. Aggregate scan data into charts and reports visible only to you.

Billing. Process payments and manage your subscription through Stripe.

We take your scanners' privacy seriously. IP addresses are hashed using a secret salt before storage. This lets us detect unique visitors without ever storing a raw IP address. The hash is one-way, so we cannot reverse it to recover the original IP.

Individual scan records are retained based on your plan:

Free: 30 days. Pro: 90 days. Business: 1 year.

After the retention period, individual scan records are deleted. Lifetime aggregate counters (total scans) are not affected by retention cleanup.

Stripe. Payment processing. Stripe handles all credit card data directly; we never see or store your card number.

Cloudflare R2. Logo storage. If you upload a logo for your QR code, it is stored in Cloudflare R2.

MaxMind GeoLite2. Geo-IP lookup. We use MaxMind's database to determine the approximate country of each scan.

Resend. Transactional email. Used for email verification and account notifications.

We use session cookies for authentication. These are strictly necessary to keep you logged in and do not track you across other websites. We do not use any third-party tracking cookies or advertising pixels.

Access. Request a copy of all data we hold about you.

Deletion. Request deletion of your account and personal data.

Withdraw consent. Withdraw consent for data processing at any time.

If you delete your account, we remove your personal data (name, email, scan records). However, your QR codes will continue to redirect to their configured destinations. This is our "Codes Never Die" guarantee. We will never break a printed QR code.