Privacy & Data Protection

This service generates QR codes from text you provide. We do not persist the text or the generated QR code image on disk.

Data We Process

• Submitted text: processed in memory only to produce a QR code, then discarded.
• Session captcha answer: stored briefly to mitigate automated abuse.
• Technical metadata: IP address & user-agent appear in standard server/access logs (infrastructure-level).
• Aggregate counter: total number of QR codes generated (no personal data).

Purpose & Legal Basis

Purpose: provide a fast QR code generator. Legal basis: Legitimate Interest (minimal, proportionate processing).

Retention

No persistence of input text or generated QR payload. Session data expires automatically. Access/security logs (IP address & user-agent) are retained up to 30 days for abuse prevention, then rotated.

Cookies

Only a strictly necessary session cookie (captcha). No analytics, tracking, or marketing cookies.

Your Rights

You may request information or deletion; however, we generally cannot identify you after a response because the submitted content is never stored. Requests will receive an explanation of this limitation.

Third Parties

• Cloudflare (reverse proxy / security) – processes IP and request metadata to mitigate abuse and optimize delivery.
• Static asset CDNs (Bootstrap / JS) – receive your IP for asset delivery (will be removed when self-hosted).
• Hosting / infrastructure provider – may retain standard access logs.
• Coveralls (coverage badge) – loads an image badge you view.

International Transfers

Where traffic routes through infrastructure outside the EEA, transfers rely on Cloudflare's Standard Contractual Clauses and published safeguards.

Security Measures

• HTTPS transport (expected in production deployment)
• Minimal surface: no database, no persistent user content
• Hardened security headers (CSP, Referrer-Policy, X-Frame-Options)

Contact

For privacy inquiries: [email protected]

Last updated: 2025-09-18 • Version 1.1