We use the information we collect to:

• Provide, maintain, and improve our Service
• Process transactions and manage your subscription
• Send you technical notices, updates, security alerts, and administrative messages
• Respond to your comments, questions, and customer service requests
• Generate analytics and insights about link and QR code performance
• Detect, investigate, and prevent fraudulent transactions and abuse
• Comply with legal obligations

Our core service involves tracking interactions with your shortened links and QR codes. When someone clicks your link or scans your QR code, we collect:

• IP address (used for geographic location and anonymized for privacy)
• Device information (mobile, desktop, tablet)
• Browser and operating system
• Referring website or application
• Date and time of interaction
• Geographic location (city, region, country level)

This data is used to provide you with analytics about your links and QR codes. We implement bot detection to filter out non-human traffic and provide accurate engagement metrics.

We may share your information in the following circumstances:

• Service Providers: We share information with third-party vendors who perform services on our behalf, such as payment processing (Stripe), email delivery, and infrastructure hosting.
• Legal Requirements: We may disclose information if required by law, court order, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.
• With Your Consent: We may share information for other purposes with your explicit consent.

We do not sell your personal information to third parties for marketing purposes.

We retain your account information for as long as your account is active or as needed to provide you services. Analytics data is retained according to your subscription plan:

• Free Plan: 30 days of analytics history
• Paid Plans: Extended analytics history based on plan tier

You may request deletion of your account and associated data at any time through your account settings or by contacting us.

We implement appropriate technical and organizational security measures to protect your information, including:

• Encryption of data in transit (TLS/SSL)
• Secure password hashing
• Regular security assessments
• Access controls and authentication requirements
• Secure data centers with physical security measures

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate personal information
• Deletion: Request deletion of your personal information
• Data Portability: Request a copy of your data in a structured, machine-readable format
• Opt-Out: Opt out of marketing communications at any time

To exercise these rights, please contact us at privacy@qrchameleon.com or through your account settings.

We use the following types of cookies:

• Essential Cookies: Required for the Service to function properly (authentication, security)
• Analytics Cookies: Help us understand how visitors interact with our Service
• Preference Cookies: Remember your settings and preferences

You can control cookies through your browser settings. Note that disabling certain cookies may affect the functionality of our Service. For more details, see our Cookie Policy.

Our Service integrates with or uses the following third-party services:

• Stripe: Payment processing. See Stripe's Privacy Policy
• Google OAuth: Account authentication. See Google's Privacy Policy