qrcodes.gg ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website at https://qrcodes.gg.

Information We Collect

Account Information: When you create an account, we collect your name, email address, and profile photo (if you sign in with Google). If you create an account with email and password, we store a securely hashed version of your password — we never store plain-text passwords.

Usage Data: We collect basic analytics data including IP address, browser type (user agent), approximate location (city/country), and login timestamps. This helps us understand how our service is used and improve it.

QR Code Data: QR codes are generated client-side in your browser. The URLs and data you encode into QR codes are not transmitted to or stored on our servers. Your QR code history is stored locally in your browser using localStorage and is not accessible to us.

Payment Information: If you subscribe to our Pro plan, payment is processed by Stripe. We do not store your credit card number, CVV, or full card details. Stripe handles all payment data in compliance with PCI DSS standards.

How We Use Your Information

We use the information we collect to provide and maintain our service, process subscriptions and payments, send important service notifications, analyze usage to improve the product, and prevent abuse or fraud.

Data Sharing

We do not sell, trade, or rent your personal information to third parties. We share data only with service providers necessary to operate qrcodes.gg: Stripe for payment processing, Supabase for database hosting, Vercel for website hosting, and Google for OAuth authentication (only if you choose to sign in with Google).

Cookies and Local Storage

We use essential cookies for authentication (session management via NextAuth.js). We use browser localStorage to store your QR code generation history and daily usage count locally on your device. We do not use third-party tracking cookies or advertising cookies.

Data Retention

Account data is retained as long as your account is active. If you request account deletion, we will remove your personal data within 30 days. QR code history stored in your browser's localStorage can be cleared by you at any time through your browser settings.

Your Rights

You have the right to access, correct, or delete your personal data. You can request data export or deletion by contacting us at hello@qrcodes.gg. If you are in the EU/EEA, you have additional rights under GDPR including the right to data portability and the right to lodge a complaint with a supervisory authority.

Security

We implement industry-standard security measures including HTTPS encryption, secure password hashing (bcrypt), and access controls. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on this page and updating the "Last updated" date.

Contact

If you have questions about this Privacy Policy, contact us at hello@qrcodes.gg or visit our contact page.