Terms of Service

Effective Date: 20 June 2025

Welcome to xQR. By accessing or using our website, dashboard, or any related services (the “Service”), you agree to be bound by these Terms of Service (“Terms”). If you do not agree, please do not use our Service.

1. Use of Service

You may use xQR only in compliance with these Terms and all applicable laws. You must be at least 18 years old or the age of majority in your jurisdiction to create an account.

2. Account Registration

You are responsible for safeguarding your account credentials and agree not to share your login details. You are liable for activities that occur under your account.

3. Acceptable Use

You agree not to misuse the Service or help anyone do so. Prohibited actions include, but are not limited to, violating any laws, infringing intellectual property, distributing malicious code, or disrupting the integrity or performance of the Service.

4. Intellectual Property

All content, branding, software, and technology provided through xQR are owned by or licensed to us. You may not copy, modify, distribute, or create derivative works without our prior written consent.

5. Subscription and Payment

Certain features may require payment. By purchasing a subscription, you authorize us to charge your payment method on a recurring basis until you cancel in accordance with any applicable cancellation terms.

6. Termination

We may suspend or terminate your access if you violate these Terms or use the Service in a way that could cause harm or legal liability to xQR or other users.

7. Disclaimers

The Service is provided “as is” without warranties of any kind, express or implied. We do not guarantee that the Service will be uninterrupted or error-free.

8. Limitation of Liability

To the maximum extent permitted by law, xQR shall not be liable for any indirect, incidental, or consequential damages resulting from your use of the Service.

9. Changes to Terms

We may update these Terms from time to time. We will notify you of any material changes, and continued use of the Service after changes take effect constitutes acceptance.

10. Contact

For questions about these Terms, please contact us at [support@xqr.com].

Privacy Policy

Effective Date: 20 June 2025

Your privacy is important to us. This Privacy Policy explains how xQR collects, uses, and protects your information.

1. Information We Collect

  • Account Information: Name, email, payment details, and other information you provide when you register.
  • Usage Data: Information about how you interact with the Service, including log data, device information, and IP addresses.
  • Cookies: We use cookies and similar technologies to enhance your experience and analyze usage.

2. How We Use Your Information

We use your information to:

  • Provide and maintain the Service.
  • Process transactions and send you updates.
  • Improve the Service and develop new features.
  • Communicate with you about account-related matters or promotional content (with your consent).
  • Comply with legal obligations.

3. How We Share Information

We may share your information with:

  • Service providers who help us operate the Service.
  • Law enforcement or regulators if required by law.
  • A buyer in connection with a business transfer or acquisition.

We do not sell your personal information.

4. Data Security

We use reasonable administrative, technical, and physical safeguards to protect your personal data.

5. Your Rights

Depending on your location, you may have rights to access, correct, or delete your personal data. To exercise your rights, please contact us at [support@xqr.com].

6. Third-Party Links

Our Service may contain links to other websites. We are not responsible for their privacy practices.

7. Changes to This Policy

We may update this Privacy Policy periodically. We will post any changes here and update the effective date.

8. Contact

If you have questions or concerns about our privacy practices, please contact us at [support@xqr.com].

© [2025] xQR. All rights reserved.

xQR Platform – Privacy Policy

xQR Platform Privacy Policy

Last Updated: July 15, 2025

1. Introduction

This Privacy Policy describes how xQR Platform (“xQR,” “we,” “our,” or “us”), operated by [Company Name], collects, uses, and protects your personal information when you use our advanced QR code and short‑link management platform (the “Service”). We are committed to safeguarding your privacy and being transparent about our data practices.

1.1 Data Controller Information

1.2 Scope of This Policy

  • The xQR web application (platform.xqr.co)
  • Our short‑link service (xqr.co)
  • Mobile applications and API integrations
  • Analytics data collection through QR scans
  • All associated services and features

2. Information We Collect

2.1 Personal Information

We collect personal information that you provide directly to us, including:

Account Information:
  • Name and email address (via secure authentication)
  • Profile information (name, profile picture)
  • Unique user identifier
  • Workspace and project associations
  • Subscription plan and billing details
  • Company name, industry, and use case (collected during onboarding)
  • Team‑member information (for workspace invitations)
Business Information:
  • Company size and type
  • Industry vertical
  • Primary use cases for QR codes
  • Marketing‑campaign details
  • Brand assets and logos
Contact Information:
  • Support‑ticket communications
  • Feature‑request submissions
  • Bug reports and technical feedback
  • Sales inquiries and demo requests

2.2 Usage Data

We automatically collect information about how you use our Service:

Service Usage:
  • QR codes created (design parameters, error‑correction levels)
  • Short links generated (xqr.co/[code])
  • Link‑in‑Bio pages and customizations
  • Routing rules and conditional logic configured
  • API calls and integration usage
  • Asset uploads and gallery management
  • Workspace and project switching patterns
  • Feature adoption and usage frequency
QR Scan Analytics:
  • Scan timestamp with microsecond precision
  • Geographic location (IP geolocation: country, region, city)
  • Device intelligence (mobile/tablet/desktop detection)
  • Browser and OS identification
  • Network‑latency metrics
  • UTM parameters and campaign tracking
  • Bot detection and filtering
  • Referrer and traffic‑source analysis
  • IP address (hashed SHA‑256)

2.3 Technical Information

We collect technical data to provide and improve our Service:

Device and Browser Data:
  • User‑Agent string analysis
  • Browser capabilities and version
  • Screen resolution and viewport size
  • WebGL and Canvas fingerprinting (fraud prevention)
  • Language and locale preferences
  • Time zone and local‑time offset
  • Cookie support and JavaScript status
Infrastructure Data:
  • API request logs and response times
  • Redirect‑service performance metrics (<100 ms)
  • CDN edge‑location and cache hits
  • Event‑processing latency
  • Database‑transaction logs
  • Query‑performance metrics
  • Error stack traces (sanitized)
  • Security event logs (login attempts, API‑key usage)

2.4 Content Data

We store content you create using our Service:

QR Code Data:
  • QR code payload (up to 2,953 bytes)
  • Custom designs (colors, logos, corner‑radius)
  • Error‑correction level (L/M/Q/H)
  • Template configurations and presets
  • Version and mask‑pattern settings
  • Associated metadata and labels
Link Management:
  • Target URLs and redirect destinations
  • A/B testing and traffic‑split configurations
  • Advanced routing rules (geographic, device, time‑based)
  • Link‑expiration settings
  • Custom slugs and vanity URLs
  • QR‑to‑link associations
Asset Storage:
  • Uploaded images (up to 25 MB per file)
  • Logos and brand assets (private bucket)
  • Published assets (CDN delivery)
  • Asset metadata (dimensions, format, size)
  • Gallery organization and tags
Link‑in‑Bio Content:
  • Page layouts and themes
  • Social‑media links and icons
  • Custom HTML/CSS modifications
  • Embedded content and widgets
  • Analytics tracking codes

3. How We Use Your Information

3.1 Service Provision

  • Provide and maintain the Service
  • Process account registration and authentication
  • Generate QR codes and short links
  • Deliver analytics and reporting features
  • Process payments and billing
  • Provide customer support

3.2 Service Improvement

  • Analyze usage patterns and trends
  • Improve functionality and performance
  • Develop new features and capabilities
  • Conduct research and development
  • Optimize user experience

3.3 Communications

We may use your contact information for:

Transactional Communications:
  • Account verification and security alerts
  • Subscription confirmations and invoices
  • API rate‑limit warnings
  • System‑maintenance notifications
  • Critical security updates
Service Communications:
  • New‑feature announcements
  • Platform updates and improvements
  • Best practices and tips
  • Webinar and training invitations
  • Industry insights and case studies
Marketing Communications (Opt‑in):
  • Product newsletters
  • Promotional offers and discounts
  • Partner‑integration announcements
  • Success stories and testimonials
  • Event invitations
Automated Notifications:
  • QR‑scan threshold alerts
  • Link‑expiration reminders
  • Monthly usage reports
  • Performance‑optimization suggestions

3.4 Security and Compliance

  • Detecting and preventing fraud and abuse
  • Ensuring platform security and integrity
  • Complying with legal obligations
  • Enforcing our Terms of Service
  • Protecting our rights and interests

4. Information Sharing and Disclosure

4.1 Third‑Party Service Providers

We share information with carefully selected service providers for:

  • Cloud hosting and infrastructure
  • Content delivery and object storage
  • Security, monitoring, and analytics
  • User authentication and payment processing
  • Email, SMS, and support communications

All providers sign Data‑Processing Agreements (DPAs) that include encryption, limited access, regular security audits, and breach‑notification requirements.

4.2 Business Transfers

If we are involved in a merger, acquisition, or asset sale, we will ensure your information remains protected under this Privacy Policy.

4.3 Legal Requirements

  • Comply with legal processes or government requests
  • Protect our rights, property, or safety
  • Protect the rights or safety of users
  • Prevent or investigate illegal activities
  • Respond to emergencies

4.4 Consent‑Based Sharing

We may share information with your explicit consent for purposes not covered here.

5. Data Retention

5.1 Account Data

We retain your account information and content while your account is active or as required to provide the Service.

5.2 Analytics Data

Analytics‑retention periods depend on your subscription tier:

Free Tier
  • QR‑scan events: 7 days
  • Aggregated metrics: 30 days
Starter Plan
  • QR‑scan events: 3 months
  • Aggregated metrics: 6 months
Professional Plan
  • QR‑scan events: 12 months
  • Aggregated metrics: 24 months
Enterprise Plan
  • QR‑scan events: 24 months (customizable)
  • Aggregated metrics: Unlimited

5.3 Deleted Data

  • Content you delete is generally removed within 30 days.
  • Some data may remain for legitimate business purposes.
  • Back‑up copies may persist for a limited time.
  • Legal requirements may extend retention periods.

5.4 Data Minimization

We regularly review and delete data that is no longer necessary.

6. Your Rights and Choices

6.1 Account Management

  • Access and update account information
  • Modify profile and preferences
  • Download data via export features
  • Delete content you have created

6.2 Communication Preferences

  • Unsubscribe from marketing emails
  • Adjust notification settings
  • Opt out of certain communications
  • Contact us to update preferences

6.3 Data‑Subject Rights (GDPR / CCPA)

Depending on your location, you may have additional rights to access, correct, delete, or restrict processing of your personal data.

6.4 Exercising Your Rights

To exercise any of these rights, email us at legal@xqr.co. We will respond within 30 days.

7. Data Security

7.1 Security Measures

  • TLS 1.3 for all communications
  • AES‑256 encryption for data at rest
  • JWT tokens with 24‑hour expiration
  • Role‑based access control (RBAC)
  • Web Application Firewall (WAF) and DDoS protection
  • Regular penetration testing and vulnerability scanning
  • Audit logs for all data access

7.2 Infrastructure Security

  • SOC 2 Type II certified data centers
  • Network firewalls and intrusion detection
  • Automated backup and recovery systems
  • Geographic data replication

7.3 Data Breaches

  • Immediate investigation of incidents
  • Prompt notification to affected users
  • Regulatory authorities informed when required
  • Corrective measures to prevent recurrence

8. International Data Transfers

8.1 Global Service

Our Service operates globally and may involve cross‑border data transfers.

8.2 Transfer Safeguards

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by regulators
  • Binding Corporate Rules where applicable
  • User consent for specific transfers

8.3 Data Localization

Some data may be stored in specific regions based on user preferences or regulatory requirements.

9. Children’s Privacy

9.1 Age Restrictions

The Service is not intended for children under 13. We do not knowingly collect data from children under 13.

9.2 Parental Notice

  • Information collected from children will be deleted promptly.
  • Parents or guardians will be notified if we become aware of such collection.

9.3 Teen Users (13‑17)

We recommend parental involvement for users aged 13‑17.

10. Cookies and Tracking Technologies

10.1 Types of Cookies

Essential Cookies:
  • xqr-session: Secure session management
  • xqr-auth: Authentication token
  • xqr-workspace: Current workspace context
  • xqr-csrf: CSRF protection
Analytics Cookies:
  • _analytics: Visitor tracking
  • xqr-analytics-id: Internal correlation
Functionality Cookies:
  • xqr-theme: UI theme preference
  • xqr-lang: Language preference
Third‑Party Cookies:
  • Payment processor (payment processing)
  • Authentication provider (sign‑in)
  • CDN (content optimization)
  • Support platform (customer chat)

10.2 Cookie Management

  • Browser settings and extensions
  • Our cookie‑preference center
  • Third‑party opt‑out tools

10.3 Do Not Track

We honor Do Not Track signals where technically feasible.

11. Third‑Party Integrations

11.1 External Services

  • Social‑media networks
  • Cloud‑storage providers
  • Marketing and analytics tools
  • Payment processors

11.2 Third‑Party Privacy

These integrations are governed by the privacy policies of the respective third parties.

11.3 API and Webhooks

Using our API or webhooks may involve additional data sharing based on your configuration.

12. Marketing and Communications

12.1 Marketing Communications

With your opt‑in consent, we may send newsletters, product updates, and promotional offers.

12.2 Personalization

Communications may be personalized based on your usage patterns and preferences.

12.3 Opt‑Out Options

You can opt out at any time via unsubscribe links or account settings.

13. Updates to This Policy

13.1 Policy Changes

We may update this Privacy Policy to reflect changes in practices, services, or legal requirements.

13.2 Notice of Changes

We will notify you of material changes via email, in‑app notifications, or prominent website notices.

13.3 Acceptance of Changes

Continued use of the Service after an update constitutes acceptance of the revised policy.

14. Regional Privacy Information

14.1 European Union (GDPR)

EU residents have additional rights and protections under the General Data Protection Regulation.

14.3 Other Jurisdictions

We comply with applicable privacy laws in all regions where we operate.

15. Contact Information

For any privacy‑related questions or concerns, please email us at legal@xqr.co.

This Privacy Policy is effective as of July 15, 2025 and supersedes all prior versions.

An industry-leading QR platform built for the future, powered by analytics, automation, and smarter engagement.

Home
Start
Contact
Login
Services
About
© 2025 xQR. All rights reserved.
Terms of ServicePrivacy Policy