Privacy Policy

QRminds collects the following data to provide our services: Account Information: • First and last name • Email address • Profile photo (when signing in with Google OAuth) QR Code Scan Analytics: • IP address • Country and city information • Device type (mobile, desktop, tablet) • Browser and operating system information • Referring page (referrer) • UTM parameters (source, medium, campaign, term, content) • Scan date and time Payment Information: • Payment information is processed directly by Creem.io • QRminds does not store your credit card information

Collected data is used for the following purposes: • Providing and improving the service • Account verification and identity management • Providing QR code scan analytics • Managing subscriptions and payment processing • Providing technical support • Sending service announcements and informational emails • Fulfilling legal obligations

Your data is securely stored on Supabase infrastructure: • All communications are encrypted with HTTPS • Passwords are hashed with bcrypt algorithm • Database is protected with Row Level Security (RLS) • Unauthorized access attempts are monitored and blocked Data Retention Periods: • Account information: As long as the account is active • Scan analytics: 12 months • Session data: 30 days • Support records: 6 months

We use the following third-party providers to deliver our services: • Supabase: Database, authentication, and file storage • Google OAuth: Social media login • Google Analytics: Website usage analytics • Creem.io: Payment processing • Resend: Email delivery • Replicate AI: AI-powered QR code generation • Sentry: Error tracking and performance monitoring • Upstash Redis: Rate limiting Each third-party provider is subject to its own privacy policy.

You have the following rights: • Right of Access: Request a copy of your data • Right of Rectification: Request correction of inaccurate or incomplete data • Right of Erasure: Request deletion of your personal data • Data Portability: Receive your data in a structured format • Right to Object: Object to data processing • Right to Restriction: Request limitation of data processing To exercise these rights, you can send an email to info@qrminds.com. Your requests will be responded to within 30 days at the latest.

We use cookies on our website: • Essential Cookies: Required for session management and security • Preference Cookies: Store your theme and language preferences • Analytics Cookies: Used to understand site usage For detailed information about cookies, please review our Cookie Policy page.

QRminds does not knowingly collect data from individuals under the age of 18. If you learn that your child is using our platform, please contact us. We will promptly delete the relevant data.

We may update this privacy policy from time to time. Significant changes will be notified by email and published on this page. Your continued use of the service after changes constitutes acceptance of the updated policy.

For privacy-related questions and data requests: • Email: info@qrminds.com • Web: https://qrminds.com Data Controller: QRminds Country: Turkey Contact: info@qrminds.com