Privacy Policy

1. Data Controller

The controller of personal data is Test / Demo, owner of the Premium QR Generator service.

Privacy contact: poczta@skanqr.pl

2. What data we process

Depending on how you use the service, we may process the following data:

• account data (e.g. email address, username, password stored as a secure hash),
• data related to generated or saved QR projects,
• technical and operational data (e.g. IP address, session identifier, browser/device information, error logs),
• user settings stored in cookies or similar technologies.

3. Purpose and legal basis of processing

Your data may be processed for the following purposes:

• creating and managing a user account – GDPR Art. 6(1)(b),
• providing the services available on the website, including saving QR projects – GDPR Art. 6(1)(b),
• ensuring website security, preventing abuse, spam, and attacks – GDPR Art. 6(1)(f),
• handling support requests and communication – GDPR Art. 6(1)(f),
• complying with legal obligations, where applicable – GDPR Art. 6(1)(c).

4. Is providing data mandatory?

Providing personal data is voluntary, but in some cases necessary to create an account, log in, and use the service features.

5. Data retention period

• account data – for as long as the user account exists,
• saved QR project data – until deleted by the user or until the account is removed,
• technical data and security logs – for as long as necessary to ensure security and diagnostics, but no longer than justified by the purpose,
• contact-related data – for as long as needed to handle the matter and, if necessary, defend against claims.

6. Data recipients

Your data may be shared with entities supporting the operation of the service, such as:

• hosting / VPS providers,
• email service providers,
• technical, security, or infrastructure maintenance providers,
• authorized public authorities where required by law.

7. Transfers outside the EEA

As a rule, personal data is not transferred outside the European Economic Area (EEA), unless this is necessary for the use of external technology providers. In such cases, appropriate legal safeguards will be applied.

8. Cookies and technical data

The service may use cookies or similar technologies for the following purposes:

• maintaining login sessions,
• remembering user settings such as language or interface preferences,
• ensuring proper functionality and security of the website.

More details can be found on the Cookies page.

9. Security

The controller applies appropriate technical and organizational measures to protect personal data, including account access protection, login security, restricted access to data, and ongoing security-related measures.

10. Profiling and automated decision-making

User data is not used for decisions based solely on automated processing or profiling that would produce legal or similarly significant effects.

11. Your rights

Each user has the right to:

• access their personal data,
• rectify their data,
• erase their data,
• restrict processing,
• object to processing,
• data portability – where applicable,
• lodge a complaint with a competent supervisory authority.

12. Account and data deletion

The user may request deletion of their account and related data at any time by contacting the controller or using a dedicated function available in the service, if provided.

13. Changes to this privacy policy

This privacy policy may be updated due to service changes, technological developments, or changes in applicable law. The current version is always available on this page.