Privacy Policy
Last updated: June 24, 2026
This Privacy Policy explains how QR Lifecycle and QRMUX collect, use, disclose and protect information when you use our websites, dashboard, QR routing tools, analytics, billing features and related services.
Who We Are
QR Lifecycle is the customer-facing SaaS dashboard for creating and managing Smart QR codes. QRMUX is the short-link redirect engine that routes scans from printed QR codes. Questions can be sent to hello@qrlifecycle.com.
Information We Collect
- Account and organization data: name, email address, password hash, organization name, team role, invite status, authentication session data and account preferences.
- Customer content: Smart QR names, fallback URLs, routing rules, lifecycle stages, UTM settings, campaign notes, team invitations and support messages.
- QR scan and redirect data: QR code identifier, anonymous device identifier, scan time, selected destination URL, matched routing rule, scan count, first-seen timing, browser user agent and hashed IP-derived data used for abuse prevention, routing reliability and analytics.
- Website and product analytics: page views, button clicks, attribution parameters such as UTM values, ad click presence, approximate browser/device data and similar product usage events.
- Communications: contact form submissions, support requests, email replies and newsletter opt-in status.
- Billing data: plan selection, subscription status, Stripe customer and subscription identifiers, billing intent records and related transaction metadata. We do not store full card numbers.
Cookies and Similar Technologies
We use cookies, local storage and similar technologies for login sessions, QR redirect continuity, anonymous scan analytics, attribution, security and product measurement. The QRMUX redirect cookie helps identify repeat scans from the same browser without requiring a visitor account. See our Cookie Policy for more detail.
How We Use Information
- Provide, operate, secure and improve the websites, dashboard, QR redirects, analytics and exports.
- Route QR scans based on fallback URLs, lifecycle stages, schedules, repeat scan counts and anonymous device history.
- Create and administer accounts, organizations, sessions, team access, password resets and invitations.
- Process subscriptions, reconcile billing state, enforce plan limits and respond to payment or support requests.
- Measure marketing performance, understand aggregate product usage and improve onboarding and support.
- Detect abuse, prevent fraud, troubleshoot errors and comply with legal obligations.
Advertising and Measurement
We may use Google Analytics, Google Ads conversion measurement, UTM parameters and similar tools to understand which campaigns lead to visits, account creation, plan interest or other actions. Our analytics code is designed to avoid sending emails, passwords, payment details or reset/invite tokens to advertising platforms. We do not intentionally send personally identifiable information to Google through URLs, conversion tags or remarketing tags.
If we use personalized advertising or remarketing in regions where consent is required, we will use the consent and disclosure mechanisms required for those campaigns. You can control cookies through your browser and device settings, and some advertising platforms provide their own ad preference controls.
Sharing
We share information with service providers that help operate the service, including hosting, database, email, newsletter, analytics, advertising measurement, payment processing and customer support providers. We may also disclose information when required by law, to protect rights and security, to investigate abuse, or as part of a merger, acquisition, financing, reorganization or business transfer.
Payments
Paid subscriptions are processed by Stripe. Stripe may collect payment method details, billing address, tax information and transaction metadata under its own privacy practices. We store Stripe identifiers and subscription state so we can keep your plan, invoices and access in sync.
Customer Responsibilities
You control the destination URLs, campaigns and pages connected to your Smart QR codes. You are responsible for making sure your destinations provide any notices, consents, terms, refund information or privacy disclosures required for your own business and audience.
Data Retention
We keep account, organization, QR, scan, billing and support data for as long as needed to provide the service, comply with legal obligations, resolve disputes, maintain security and support business records. Deleted dashboard items may remain in backups, logs or historical analytics where permitted.
Your Choices and Rights
You can update account and team information in the dashboard. You can request access, correction or deletion of personal information by contacting us. Depending on your location, you may have additional privacy rights, such as portability, objection, restriction, opt out of certain sharing, or appeal. We may retain information where needed for security, fraud prevention, billing records, legal compliance or legitimate business needs.
Security
We use reasonable administrative, technical and organizational safeguards, including HTTPS for production services and hashed account passwords. No online service can guarantee perfect security, so you are responsible for using strong passwords and limiting team access to trusted users.
Children
The service is not directed to children under 13, and we do not knowingly collect personal information from children under 13.
Changes
We may update this Privacy Policy as the service, laws or business practices change. The updated version will be posted on this page with a new last updated date.
Contact
Questions about this policy or privacy requests can be sent through the contact form on the QR Lifecycle website or by emailing hello@qrlifecycle.com.