Privacy Policy

At QRSansar by TechSansar.com, we are committed to protecting your privacy and ensuring the security of any personal information you share with us. This Privacy Policy explains how we collect, use, and protect your information when you use our services, including compliance with GDPR, Google, and social platform policies.

1. Information We Collect

We collect the following types of information:

a. Personal Information (when users sign in):

• Social Logins: When you sign in via Google, Facebook, or Microsoft, we collect your email address and public profile data (name and profile picture) as permitted by the respective platform.
• Account Information: If you create an account, we retain your name, email address, profile picture, account tier, and any QR codes or content you generate or save.
• Newsletters: You may choose to opt in or out of receiving our newsletters. If opted in, we will retain your email for communication purposes.

b. Automatically Collected Information:

• Cookies: We use cookies to manage your session and improve your experience. See our Cookie Policy for details.
• Google Analytics: We use Google Analytics to monitor and analyze traffic and user behavior on our website. This helps us improve our services. Google Analytics collects anonymized data such as browser type, pages visited, time spent on the site, and more.
• Cloudflare Analytics: As our hosting provider, Cloudflare may collect basic request-level data (IP address, user agent) for security and performance purposes.

c. QR Code Data:

• Static QR Codes: QR codes generated without logging in are created entirely in your browser. No data is sent to or stored on our servers.
• Dynamic QR Codes: If you create dynamic QR codes (available on premium and enterprise plans), the target URL and scan analytics (scan count, last scanned date) are stored on our servers so we can provide redirect and tracking functionality.
• Bulk QR Generation: When using our Bulk QR feature, your CSV data is processed entirely in your browser. No uploaded data is sent to our servers.

d. Document Uploads:

• If you use our Document QR feature, uploaded files are stored securely on Cloudflare R2 storage. Documents are associated with your account and can be deleted at any time from your dashboard.

e. Landing Pages:

• If you create landing pages using our Page Builder, the page content (title, bio, links, theme, avatar URL) is stored on our servers. Public landing pages are accessible via their unique URL and display a view counter.

2. How We Use Your Information

We use the information collected to:

• Provide and improve our services, including QR code generation, dynamic QR tracking, and landing pages.
• Manage your account, including storing your generated QR codes and documents.
• Send you transactional emails (welcome emails, account notifications) via our email service provider.
• Send you newsletters if you opt-in to receive them.
• Monitor website performance and user behavior via Google Analytics.
• Ensure security via Cloudflare Turnstile verification on forms.

3. Cookies and Tracking Technologies

We use cookies for the following purposes:

• Session Cookies: Essential for authentication. We use an HttpOnly cookie (qrs_session) to maintain your login session securely.
• Analytics Cookies: Used by Google Analytics to collect and analyze anonymous data on how users interact with the site.
• Security Cookies: Used by Cloudflare Turnstile to verify human users on forms (contact, login).
• Advertising Cookies: Used by Google Adsense to display personalized ads.

For full details, see our Cookie Policy. You may disable cookies through your browser settings, but disabling certain cookies may impact your user experience.

4. Third-Party Services

We integrate the following third-party services:

• Google Analytics: For analyzing website usage and improving our services.
• Google Adsense: For displaying ads. Google may collect data for personalization and ad-targeting purposes.
• Google, Facebook, and Microsoft Social Logins: For authentication. When you log in via these platforms, your public profile data is shared with us according to their privacy policies.
• Cloudflare: For hosting, CDN, security (Turnstile CAPTCHA), and storage (R2 for document uploads, D1 for database).
• Mailtrap: For sending transactional emails (welcome emails, notifications). Only your email address and name are shared with this service.

Each third-party service adheres to its own privacy policies, and we recommend reviewing these policies to understand how your data may be used.

5. Your Data Rights (GDPR Compliance)

Under GDPR, you have the following rights:

• Right to Access: You can request a copy of the personal data we hold about you.
• Right to Rectification: You can ask us to correct any incorrect or incomplete data.
• Right to Erasure: You can delete your account and any associated data (QR codes, documents, landing pages) by visiting your profile page or contacting us directly. See our User Data Deletion Policy.
• Right to Withdraw Consent: If you opted in to newsletters or other communications, you may withdraw your consent at any time.
• Right to Data Portability: You can request your data in a commonly used format.

If you use the service without signing in, no personal information is collected or stored. All QR code generation happens locally in your browser.

6. Data Storage and Security

• Database: User accounts, QR codes, dynamic QR data, and landing pages are stored in Cloudflare D1 (SQLite-based edge database).
• File Storage: Uploaded documents are stored in Cloudflare R2 object storage with unique identifiers.
• Authentication: Session tokens are generated using HMAC-SHA256 and stored as HttpOnly, Secure cookies to prevent unauthorized access.
• Encryption: All data is transmitted over HTTPS/TLS encryption.

We use industry-standard security measures to protect your personal information. However, no online platform can guarantee complete security, and you use our services at your own risk.

7. Data Retention

We retain your personal data only for as long as necessary to provide the services or as required by law. Specifically:

• Account data is retained until you delete your account.
• Dynamic QR code data and scan analytics are retained while the QR code is active.
• Uploaded documents are retained until you delete them or your account.
• Landing pages are retained until you delete them or your account.

If you choose to delete your account, we will remove your data from our systems.

8. Google Adsense Compliance

We comply with Google Adsense policies by ensuring:

• We do not collect personally identifiable information without user consent.
• Ads displayed on our platform are compliant with Google's ad-serving policies.
• We use Google Adsense to show targeted ads. Google may use cookies to personalize ads based on your interests.

You can opt out of personalized ads by visiting Google's Ads Settings.

9. Children's Privacy

QRSansar is not directed at children under the age of 13. We do not knowingly collect personal data from children. If you believe a child has provided us with personal information, please contact us and we will take steps to remove that information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make changes, we will notify you by updating the "Effective Date" at the top of this page.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or your personal data, please contact us at:

Email: [email protected]

Address: TechSansar.com, Kathmandu, Nepal

You may also reach us via our Contact Page.