QRLagoon
Start free

Privacy Policy

Last updated: May 4, 2026

QRLagoon ("we", "us") provides QR code generation, dynamic redirects, and scan analytics. This page explains what we collect, why, and how to opt out. We are designed to be as boring as possible to a privacy regulator: no GPS, no third-party trackers, no behavioral profiles.

What we collect

From you (account holder)

  • Email address and name (used to sign in and bill)
  • Hashed password (we never see your plaintext password)
  • Workspace name, project names, QR campaign names
  • Destination URLs you configure for your dynamic QR codes
  • Paddle customer + subscription IDs (when you upgrade)

When someone scans your QR

  • Hashed IP address. The raw IP is run through SHA-256 with a salt that rotates every 24h, so we can count "unique scans today" without storing identifiable addresses. After the salt rotates, the hash can no longer be reversed even by us.
  • Hashed User-Agent. Same approach, used for unique-device counting only.
  • Country and (optional) city. Looked up from a local copy of MaxMind's GeoLite2 database. The IP never leaves our server for this lookup.
  • Device family (mobile / tablet / desktop), OS family, browser family — all derived from User-Agent.
  • Timestamp of the scan.

What we do NOT collect

  • GPS coordinates
  • Cross-site or behavioral cookies (we only use a session cookie for authentication)
  • Third-party trackers (no Google Analytics, no Facebook Pixel, no Hotjar — none)
  • Anything from people who scan QR codes that didn't redirect through us (static QRs)

Why we collect it

  • To show you scan analytics for your own QR codes (legitimate interest)
  • To enforce plan limits (contract performance)
  • To prevent abuse — bot scans, malicious destination URLs (legitimate interest)
  • To bill you correctly (contract performance)

Data retention

  • Scan events are retained per your plan: 7 days (Free), 365 days (Pro / Agency).
  • Account data is kept until you delete your account.
  • Paddle billing records are kept by Paddle per their own policies (Paddle is the merchant of record for paid plans).

Subprocessors

  • Paddle — payment processing and merchant of record (handles billing, invoicing, and tax)
  • The hosting provider — infrastructure (servers, database, file storage)
  • MaxMind — IP-to-country/city database (we host it locally; no requests leave our server)

Your rights (GDPR / CCPA / UK GDPR)

Email privacy@qrlagoon.com to access, correct, export, or delete your data. We respond within 30 days.

Contact

Privacy questions: privacy@qrlagoon.com
Abuse reports: reports@qrlagoon.com (or use the abuse form)