Back to home

Privacy Policy

This Privacy Policy describes how WTech Europe Limited ("we", "our", or "us"), located at Villa Malitah, Mediterranean Street, The Village St. Julian’s STJ 1870, Malta, collects, uses, and protects your information when you use our QR code creation and management platform at https://getqr.com (the "Platform").

We are committed to protecting your privacy. This Policy outlines our practices in accordance with applicable privacy laws, including the General Data Protection Regulation ("GDPR") and California Consumer Privacy Act ("CCPA").

1. Who We Are and How to Contact Us

We are the data controller responsible for your personal data:

WTech Europe Limited
Villa Malitah, Mediterranean Street, The Village St. Julian’s STJ 1870, Malta Email: privacy@getqr.com

If you have any questions about this Privacy Policy, your data, or your rights, please contact us at the email address above.

2. What Information We Collect

2.1 Information You Provide to Us

We collect the following personal information when you interact with our Platform:

  • Contact information (email address, billing address if applicable)
  • Login credentials (including one-time authentication codes)
  • Content and information entered when creating QR codes
  • Payment information (via secure third-party processors)
  • Customer support messages or feedback

2.2 Information Collected Automatically

We automatically collect data when you use our Platform, such as:

  • IP address and approximate geolocation
  • Browser type and version
  • Operating system and device type
  • Pages visited, time spent, interactions, and referring URLs
  • Session and usage activity related to QR code creation, scan behavior, and customization

2.3 Information from Third Parties

If you choose to log in with Google or Apple, we may collect:

  • Your email address associated with the third-party account
  • Your name (if provided by the third party)
  • Authentication tokens necessary to log in

We may also receive behavioral analytics and experimentation data via:

  • Mixpanel (user flows, feature usage, retention)
  • GrowthBook (A/B testing variants, experiment metrics)

3. Why We Use Your Information

We process your personal data for the following purposes:

Purpose Legal Basis
To create and manage your account Contractual necessity
To allow login using Google or Apple Consent and contractual necessity
To generate QR codes and provide customization options Contractual necessity
To track usage, analyze behavior, and improve the service (e.g., via Mixpanel/GrowthBook) Legitimate interests
To process payments for subscriptions Contractual necessity
To respond to customer inquiries Legitimate interests
To comply with legal obligations and enforce our rights Legal obligation and legitimate interests

Where required by law, we rely on your consent (e.g., for cookies).

4. Cookies and Tracking Technologies

We use cookies and similar technologies to personalize content, analyze usage, and ensure security. These include:

4.1 Types of Cookies

  • Essential cookies: Required for login, navigation, and site security.
  • Performance cookies: Used to understand how users interact with the Platform (via Mixpanel).
  • Functionality cookies: Enable features such as remembering your preferences.

4.2 Managing Cookies

You can manage or disable cookies through your browser settings. Some features of the Platform may not function correctly if cookies are disabled. Upon first visit, you will be shown a cookie banner with the option to accept or manage your preferences.

5. How We Share Your Data

We do not sell your personal data. We share it with:

  • Service Providers: Companies that help us operate the Platform (e.g., hosting, email delivery, analytics).
  • Payment Processors: To handle secure payment transactions. We do not store your full payment details.
  • Authentication Providers: Google and Apple for login purposes.
  • Authorities: When required to comply with laws, respond to legal requests, or protect our legal rights.
  • Business Transfers: In the event of a merger, acquisition, or sale.

All third parties are contractually bound to safeguard your data and use it only for specified purposes.

6. International Transfers

We are based in the EU (Malta). Your data may be transferred to and processed in the United States by our subprocessors (e.g., Google, Apple, Mixpanel). These transfers are made under:

  • Standard Contractual Clauses (SCCs)
  • Other recognized legal mechanisms ensuring adequate data protection

7. Data Retention

We retain your personal data for as long as:

  • Your account remains active
  • Required for the purpose we collected it
  • Required by law (e.g., for accounting, fraud prevention)

You can delete your account at any time. After deletion, we may retain limited information to fulfill legal obligations or defend legal claims.

8. Your Rights Under the GDPR

You have the right to:

  • Access your personal data
  • Correct inaccurate or incomplete data
  • Delete your data (where not legally required to retain it)
  • Object to processing based on legitimate interests
  • Withdraw consent where processing is based on consent
  • Port your data to another service provider

To exercise any of your rights, contact us at: privacy@getqr.com. You may also lodge a complaint with your local data protection authority.

9. CCPA and Nevada-Specific Disclosures

9.1 California (CCPA/CPRA)

California residents have the right to:

  • Request disclosure of personal data categories collected
  • Access and receive a copy of their personal data
  • Request deletion of their personal data
  • Opt out of the sale or sharing of personal data (we do not sell or share personal data for marketing purposes)

You can make these requests by emailing privacy@getqr.com with "CCPA Request" in the subject line.

9.2 Nevada Residents

We do not sell personal data as defined under Nevada law. However, Nevada residents may submit an opt-out request to privacy@getqr.com.

10. Security Measures

We implement appropriate technical and organizational measures to protect your data, including:

  • HTTPS encryption across the Platform
  • Access controls and 2FA for administrative systems
  • Regular internal audits and data access logs

Despite these efforts, no online system is completely secure. Please protect your credentials and contact us immediately if you suspect unauthorized access.

11. Children’s Privacy

The Platform is not intended for users under the age of 18. We do not knowingly collect or process data from children. If you believe a child has submitted personal data, contact us at privacy@getqr.com.

12. Updates to This Privacy Policy

We may revise this Privacy Policy occasionally. If we make material changes, we will:

  • Update the date at the top of the Policy
  • Notify you via email or via a prominent in-app notice

Your continued use of the Platform after updates constitutes acceptance.

13. Contact Information

WTech Europe Limited
Villa Malitah, Mediterranean Street, The Village St. Julian’s STJ 1870, Malta Email: privacy@getqr.com

If you have concerns that we have not addressed adequately, you have the right to contact your local data protection authority.

Thank you for trusting GetQR. We are committed to protecting your data and your rights.