Privacy Policy

1. Introduction

This Privacy Policy describes how QRField ("we," "us," or "our") collects, uses, discloses, and protects information when you use our websites, applications, and related services (collectively, the "Service"). By using the Service, you agree to this Privacy Policy. If you do not agree, do not use the Service.

2. Information we collect

We collect information in the following categories, depending on how you use the Service:

• Account and identity. When you sign in with a provider such as Google, we may receive your name, email address, profile identifier, and avatar URL as made available by that provider.
• Service data. Content you create or upload (for example, QR configurations, destinations, labels, branding choices) and metadata needed to operate features you use.
• Usage and device data. Log and technical information such as IP address, approximate location derived from IP, browser type, device type, timestamps, and pages or features accessed.
• Analytics. For dynamic codes and paid plans, we may collect aggregated or event-level data about scans (for example, timestamps, coarse geographic region, device category) as described in your plan and product documentation.
• Cookies and similar technologies. We use cookies and similar technologies for session management, security, preferences, and— where applicable—analytics. You can control cookies through your browser settings; disabling certain cookies may limit functionality.
• Payment information. If you purchase a paid plan, payment details are processed by our payment processor (for example, Stripe). We typically receive limited billing metadata (such as subscription status and last four digits of a card) rather than full card numbers.
• Communications. If you contact support, we collect the information you provide in those messages.

3. How we use information

We use information to:

• Provide, maintain, and improve the Service;
• Authenticate users and secure accounts;
• Process transactions and send related notices;
• Provide customer support and respond to requests;
• Monitor and analyze usage, performance, and reliability;
• Detect, prevent, and address fraud, abuse, and security issues;
• Comply with legal obligations and enforce our terms; and
• Send service-related communications; where permitted, we may also send product updates or marketing (you can opt out of marketing as described in those messages).

4. Legal bases (EEA, UK, CH)

If you are in the European Economic Area, United Kingdom, or Switzerland, we process personal data on one or more of the following bases: performance of a contract with you; our legitimate interests (for example, securing the Service, improving features, and fraud prevention), balanced against your rights; your consent where required; and compliance with legal obligations.

5. How we share information

We may share information with:

• Service providers who process data on our behalf (for example, hosting, authentication, analytics, email delivery, payment processing), subject to contractual safeguards.
• Professional advisors (for example, lawyers, accountants) where necessary.
• Authorities when required by law, legal process, or to protect rights, safety, and security.
• Business transfers in connection with a merger, acquisition, financing, or sale of assets, subject to appropriate notices or consent as required by law.

We do not sell your personal information as defined under U.S. state law.

6. International transfers

We may process information in the United States and other countries where we or our providers operate. Where required, we use appropriate safeguards (such as Standard Contractual Clauses) for transfers from the EEA, UK, or Switzerland.

7. Retention

We retain information for as long as necessary to provide the Service, comply with law, resolve disputes, and enforce our agreements. Retention periods vary by data type; for example, account data is kept while your account is active and for a reasonable period afterward unless a longer period is required by law.

8. Security

We implement technical and organizational measures designed to protect personal information. No method of transmission or storage is completely secure; we cannot guarantee absolute security.

9. Your rights and choices

Depending on your location, you may have rights to access, correct, delete, or export your personal information; object to or restrict certain processing; withdraw consent where processing is consent-based; and lodge a complaint with a supervisory authority. To exercise these rights, contact us using the information below. We may need to verify your identity before responding.

10. U.S. state privacy (including California)

Residents of certain U.S. states may have additional rights under applicable privacy laws (for example, the right to know, delete, or opt out of certain processing). We honor applicable rights requests as required by law. We do not use or disclose sensitive personal information for inferring characteristics in a manner that would trigger opt-out rights beyond what the Service requires. You may designate an authorized agent where permitted by law, subject to verification.

11. Children

The Service is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take appropriate steps to delete it.

12. Third-party links

The Service may link to third-party sites or services. We are not responsible for their privacy practices; review their policies before providing information.

13. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated policy and revise the "Last updated" date. If changes are material, we will provide additional notice as appropriate.

14. Contact

For privacy-related questions or requests, contact us using the contact information provided on the Service (for example, through the website footer or support channel when available). You may also refer to our Terms of Service.