Privacy Policy

What we collect

RealtQR collects a minimum of information required to operate the service: account data (email, username, encrypted password), QR code metadata, and scan events from anyone scanning a RealtQR-hosted QR code.

Scan event fingerprinting

When a QR code managed by RealtQR is scanned, we compute a client-side browser fingerprint (canvas, WebGL, UA, screen, timezone, fonts) and store only a hash of that combined value. We do not store the raw fingerprint components and cannot reverse the hash into personal information.

We also log the scan timestamp, a hash of the IP address (salted with a daily-rotating secret), user-agent string, and referrer.

Fingerprinting runs only after you choose Accept all on our cookie banner. If you choose Essential only, scans still record anonymously (count + device class) but are never linked across QR codes.

Your consent choices

On your first visit you can pick Essential only or Accept all. Your choice is stored in a realtqr_consent cookie for one year. Clear the cookie to see the banner again and change your mind.

Payment information

We do not store payment card data. Subscriptions are managed by our payment processor (PayPal); we only retain the subscription identifier and status.

Data retention

Scan events are retained for 1 year by default (extended retention available as an add-on). Accounts flagged for deletion are purged from production systems within 30 days, pending admin review.

Contact

Data requests or privacy concerns: [email protected]