Privacy Policy

Introduction

This Privacy Policy explains how QR Pad (“we”, “us”, “our”) collects, uses, and protects your information when you use our iOS application and website (qrpad.app).

Contact: [email protected]

Effective Date: November 7, 2025

Last Updated: June 1, 2026

Data We Collect

iOS App:

• QR Code Content: We store QR codes you create locally on your device. This data never leaves your device unless you explicitly share it.
• Subscription Status: We use Apple’s StoreKit 2 to manage Pro subscriptions. Apple handles all payment and subscription data; we receive only your subscription entitlement status on-device.
• Analytics: We use PostHog and UXCam to understand how the app is used and to find and fix usability issues. This includes which features are popular and how screens are used — UXCam records anonymized in-app activity such as the screens shown and where you tap, with sensitive fields like Wi-Fi passwords masked. These tools may collect technical identifiers (such as a per-vendor device ID and IP address) and approximate, IP-based location — see each provider’s privacy policy for details. We use this only to improve the app; we don’t use it for advertising or cross-app tracking.

Website (qrpad.app):

• Analytics: We use PostHog and Google Analytics to track page views and button clicks (e.g., App Store downloads). Google Analytics sets cookies and may collect technical data including IP address and device information. We don’t use this data for advertising or cross-app tracking.

How We Use Data

We use data to:

• Improve the app and website (analytics)
• Manage subscriptions (Apple)
• Respond to support requests (if you email us)

We do NOT:

• Sell your data
• Use your data for advertising
• Share your data with third parties (except as required for app functionality: PostHog, UXCam, Google Analytics, Apple)

Third-Party Services

We use the following third-party services:

PostHog (Analytics):

• Privacy Policy: https://posthog.com/privacy
• Purpose: Anonymous usage analytics
• Data: Page views, button clicks, plus technical identifiers per PostHog’s defaults

UXCam (Product Analytics):

• Privacy Policy: https://uxcam.com/privacy-policy/
• Purpose: In-app usage analytics to find and fix usability issues
• Data: Anonymized in-app activity (screens shown, taps), technical identifiers, and approximate IP-based location; sensitive fields such as Wi-Fi passwords are masked. Not used for advertising or cross-app tracking.

Google Analytics (Website Analytics):

• Privacy Policy: https://policies.google.com/privacy
• Purpose: Website traffic analysis and user behavior tracking
• Data: Page views, anonymized IP addresses, device information, cookies
• Opt-out: Install the Google Analytics Opt-out Browser Add-on at https://tools.google.com/dlpage/gaoptout

Cloudflare (Website Hosting):

• Privacy Policy: https://www.cloudflare.com/privacypolicy/
• Purpose: Website hosting and performance
• Data: Server access logs, including IP addresses, per Cloudflare’s standard operations

Apple (App Store, In-App Purchases):

• Privacy Policy: https://www.apple.com/legal/privacy/
• Purpose: App distribution, payment processing
• Data: Apple ID, payment information (handled by Apple, not us)

Data Retention

• QR Code Content: Stored locally on your device. Deleted when you delete the app or manually delete QR codes.
• Analytics: PostHog, UXCam, and Google Analytics retain data per each provider’s defaults (see their privacy policies linked above).
• Subscriptions: Apple retains subscription records per its platform requirements.

Your Rights (GDPR & CCPA)

You have the right to:

• Access: Request a copy of data we hold about you
• Deletion: Request deletion of your data
• Correction: Request correction of inaccurate data
• Opt-Out: Opt out of analytics (contact us)

To exercise these rights, contact us at [email protected].

Note: The data we collect is limited — primarily app usage analytics and subscription status. Individual data requests are typically straightforward to fulfill.

Children’s Privacy

QR Pad is not directed at children under 13. We do not knowingly collect data from children under 13. If you believe we’ve collected data from a child under 13, contact us at [email protected] and we’ll delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. We’ll notify you of significant changes by:

• Posting the new policy on this page
• Updating the “Last Updated” date
• Sending an in-app notification (for material changes)

Continued use of QR Pad after changes constitutes acceptance of the updated policy.

Contact

For questions, concerns, or data requests, contact us at:

Email: [email protected]

Response Time: 24-48 hours