Privacy Policy

Last updated: [Month DD, YYYY]

This Privacy Policy explains how Taz ("Taz," "we," "us," or "our") collects, uses, and shares information when you use QR Code Generator / QRForge.

1. Scope

This policy applies to the QR Code Generator website, account area, billing flows, QR creation tools, analytics features, and related support communications.

2. Information We Collect

We may collect the following categories of information:

• Account information, such as your name, email address, and encrypted or hashed authentication credentials.
• Billing and transaction information handled through Paddle.
• QR code content you create, including URLs, text, Wi-Fi details, vCards, phone numbers, and other data you choose to encode.
• Design assets and uploads, such as logos or images you add to QR codes.
• Subscription and plan information.
• Usage and device information, such as browser type, operating system, IP address, and interactions with the site.
• Analytics data generated when dynamic QR codes are scanned, such as scan time, approximate location, device, browser, operating system, referrer, and related technical event data.
• Support requests and other communications you send us.

3. How We Use Information

We use information to:

• create, host, and manage your QR codes;
• power dynamic redirects and analytics dashboards;
• process payments and manage subscriptions;
• authenticate users and secure accounts;
• maintain, improve, and troubleshoot the service;
• detect abuse, fraud, phishing, malware distribution, or other harmful use; and
• comply with legal obligations and enforce our terms.

4. Dynamic QR Analytics

If you use dynamic QR codes, we may collect technical event data each time a code is scanned so we can provide analytics and keep the redirect service running. This may include IP address, timestamp, approximate city or country, device type, browser, operating system, and referrer information.

We use this data to show reporting such as total scans, scans over time, scans by country, and scans by device or browser. We do not use scan analytics data for targeted advertising.

5. Payments

Payments and subscription billing are processed by Paddle. We do not store your full payment card details on our own servers. Paddle may collect customer, billing, tax, and transaction information needed to process payments, manage renewals, handle cancellation flows, and comply with financial regulations.

6. Cookies and Similar Technologies

We use essential session technologies for authentication and account access. We also use Vercel-hosted analytics and related technical logs to understand product usage and improve performance. We do not use the service for interest-based advertising.

7. Sharing With Third Parties

We may share information with service providers only as needed to operate the service, including:

• Paddle for payments and subscription management;
• Vercel for hosting, application infrastructure, analytics, and file storage;
• Neon for database infrastructure and storage.

We may also disclose information when required by law, to protect rights and safety, investigate abuse, or in connection with a merger, financing, acquisition, or asset sale.

8. Data Retention

We retain personal information only for as long as reasonably necessary to provide the service and operate the business.

• Account, billing, and plan records may be retained for as long as your account is active and longer where needed for legal, tax, accounting, and fraud-prevention purposes.
• QR code content, design settings, and dynamic redirect data are generally retained while your account remains active or until you delete them.
• Dynamic QR analytics may be retained while the associated QR code or account remains active, unless a longer retention period is required for security or legal reasons.

If you delete a QR code or request account deletion, we will process the request subject to our legal and operational obligations.

9. International Data Transfers

Our providers may process information in countries outside your own. Where required, we use appropriate safeguards for international data transfers.

10. Your Rights

Depending on your location, you may have rights to:

• access the personal information we hold about you;
• correct inaccurate information;
• request deletion of personal information;
• request a portable copy of your data;
• object to or restrict certain processing; and
• exercise applicable privacy rights under laws such as the GDPR or CCPA/CPRA.

To submit a privacy request, contact us through the support contact listed on the QR Code Generator website.

11. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.

12. Children's Privacy

The service is not intended for children under 18, and we do not knowingly provide it to them.

13. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated version here and revise the "Last updated" date.

14. Contact

If you have questions or privacy requests, contact Taz through the support contact listed on the QR Code Generator website.