Last updated: March 2026
QRflows ('we', 'us', 'our') operates the QRflows website and platform (the 'Service'). This Privacy Policy explains what personal data we process, why we process it, and your rights.
Data controller: QRflows. Contact: [email protected].
Information you provide: account details (email, name, company), billing details (processed by our payment provider), and support messages.
Information processed when you use the Service: IP address (used for security and approximate location), device/browser information, language, pages/events needed to provide the Service, and scan events for QR codes (to show analytics in your dashboard).
Cookies and similar technologies: we use essential cookies for authentication and security. We may collect basic analytics by default to improve the product (you can disable analytics in cookie preferences). Marketing/advertising cookies/tags are only used if you opt in. See Cookie Policy for details.
Purposes and legal bases (GDPR): (a) contract — provide the Service, authenticate users, generate QR codes and analytics; (b) legitimate interests — security, fraud prevention, and service improvement; (c) consent — marketing cookies/tags (and analytics if you choose to disable/enable via preferences); (d) legal obligation — accounting and compliance where required.
Retention: we keep personal data only as long as needed for the purposes above. Some records may be retained to meet legal obligations. Where possible, analytics data is aggregated or de-identified over time.
Sharing: we share data with service providers that help us run the Service (hosting/CDN, email, payments). Tags managed via Google Tag Manager may send data to Google services according to your consent state (analytics is on by default but can be disabled; marketing requires opt-in).
International transfers: some providers may process data outside your country. Where applicable, we rely on appropriate safeguards (such as Standard Contractual Clauses).
Your rights (EEA/UK): access, rectification, deletion, restriction, objection, portability, and the right to withdraw consent at any time (cookie preferences).
Contact: If you have questions or requests, email [email protected].