QRCraft

QR Experience Builder

Back home

Privacy Policy

QR Experience Builder Privacy Policy

QRCraft / QR Experience Builder is operated by TECHVENTIVE IT SOLUTIONS PRIVATE LIMITED. This policy explains what information we collect and process when you use our website, account, workspace, billing, QR creation, QR routing, support, and collaboration features, including the important differences between static QR payloads and routed URL-based QR experiences.

Last updated

March 30, 2026

Operator

TECHVENTIVE IT SOLUTIONS PRIVATE LIMITED

Contact

connect@techventive.in

1. Scope of this policy

This Privacy Policy applies to the public website, authenticated workspace, billing pages, support interactions, workspace invitations, and QR creation and QR routing features offered under QRCraft and QR Experience Builder.

It applies when you browse the site, create an account, accept legal consent, generate QR codes, save QR records, route scans through QRCraft-managed links, manage a workspace, accept team invitations, purchase a plan, or contact support.

2. Information we collect

We collect information you provide directly, information created through your use of the service, and limited technical or session data processed in the ordinary course of operating a secure account-based web application.

  • Account and identity data, such as your Clerk user identifier, email address, and account-linked profile details made available through authentication.
  • Workspace and collaboration data, such as workspace names, workspace membership, invite email addresses, invitation tokens, invite expiry dates, roles, and invitation status.
  • QR content and settings, such as destination URLs, QR type selections, QR render settings, visual styling choices, logos you upload or embed, scan limits, active status, and saved QR configuration data.
  • QR payload content you choose to encode or route, which may include website links, map locations, social profile links, video links, image links, custom links, WiFi credentials, contact details, email addresses, message text, or other content you provide.
  • Usage data generated inside the product, such as QR record timestamps, scan counts for routed URL-like QR codes, billing-related state, legal consent version and timestamps, and activity necessary to manage QR lifecycle and plan limits.
  • Billing and subscription data, such as plan tier, billing cycle, billing currency, subscription status, current billing period information, and Razorpay customer or subscription identifiers.
  • Support and contact data, such as the content of emails or support requests you send to us.
  • Technical and session data, such as cookies, session tokens, device or browser metadata, IP-address-associated network requests, and security or request logs that may be processed by us or our service providers to operate and protect the service.

3. How QR processing works

QRCraft supports both static QR payloads and routed URL-like QR experiences. This distinction matters for privacy and product behavior.

For WiFi, contact, email, SMS, and other directly encoded payload types, the QR may contain the submitted payload itself. For website, social, map, image, video, and other URL-like QR types saved to your workspace, QRCraft may generate and serve a QRCraft-managed redirect link so the destination can be managed and scan counts can be recorded.

4. How we use information

We use personal and service data to run the product, maintain your account, deliver the features you ask for, enforce plan entitlements, and support the operational integrity of the platform.

  • Authenticate users and maintain secure sessions.
  • Create and manage accounts, workspaces, team membership, invitations, and QR records.
  • Generate, store, render, route, export, deactivate, and manage QR experiences.
  • Track aggregate scan counts for routed URL-like QR codes and enforce product or plan-based limits.
  • Process billing, subscriptions, plan changes, and payment-related workflows.
  • Record and enforce legal consent before workspace access where required by the product.
  • Respond to support requests, onboarding questions, and service issues.
  • Protect the service, investigate abuse, enforce our terms, and comply with law.
  • Improve product quality, reliability, and the general user experience.

5. How we share information

We do not sell personal information. We may share information only where reasonably necessary to run the service, process payments, protect our rights, or comply with legal obligations.

  • Authentication providers, including Clerk, for sign-in, account identity, and session management.
  • Payment and subscription providers, including Razorpay, for billing, subscriptions, payment verification, and related customer records.
  • Database, hosting, infrastructure, and technical service providers engaged to operate, secure, or support the platform, including cloud database or application infrastructure providers selected by us from time to time.
  • Professional advisers, auditors, regulators, courts, or law enforcement where disclosure is required or reasonably necessary.
  • A successor entity in connection with a merger, acquisition, restructuring, or sale of assets, subject to appropriate transition protections where practicable.

6. Cookies, sessions, and similar technologies

We and our service providers may use cookies, local storage, session tokens, and similar technologies to keep users signed in, preserve basic preferences, protect accounts, and support core product functionality.

We do not currently describe the service as using cross-context behavioral advertising cookies or invasive real-time geolocation tracking as part of the normal product experience.

7. Scan analytics and routing data

At this time, QRCraft's in-product scan analytics are limited to aggregate scan counts associated with routed URL-like QR codes. We do not currently describe the application as storing a dedicated per-scan history containing precise location, device fingerprint, or referrer analytics as part of the normal dashboard experience.

Network, hosting, authentication, and payment providers may still process technical request data such as IP-address-associated requests, browser information, or security logs in the ordinary course of operating their services.

8. Data retention

We retain information for as long as reasonably necessary to provide the service, maintain workspace records, enforce our agreements, resolve disputes, meet tax, accounting, security, or compliance obligations, and protect the platform.

Retention periods may differ depending on the type of data involved, whether your account remains active, whether a billing or security issue exists, whether a QR record has been deactivated, and whether we are required to preserve data by law.

If you deactivate or delete a QR record through the product, we may retain the underlying record and related metadata for operational continuity, abuse prevention, analytics integrity, billing records, or legal compliance unless and until we decide to purge it.

9. Data security

We use commercially reasonable administrative, technical, and organizational safeguards intended to protect personal data from unauthorized access, misuse, alteration, or disclosure.

No method of transmission or storage is completely secure, so we cannot guarantee absolute security. You are responsible for maintaining the confidentiality of your account access and for using care when deciding what QR content, credentials, contact details, or message content you submit through the service.

10. Your choices and rights

Depending on your location and applicable law, you may have rights to request access to, correction of, deletion of, or information about personal data we hold about you.

You can contact us at connect@techventive.in to request help with account data, support records, workspace records, or deletion-related questions. We may need to verify your identity and may retain certain information where legally required or reasonably necessary for billing, security, audit, abuse prevention, or recordkeeping.

The service currently supports an authenticated self-service account data export download and a persisted delete-account request flow for manual review. It does not currently promise a one-click account purge or automatic removal of all QR records immediately on request.

11. International processing

Our service providers or technical infrastructure may process information in India and in other countries where our providers operate. By using the service, you understand that data may be handled in jurisdictions other than your own, subject to applicable safeguards and provider commitments.

12. Children's privacy

The service is intended for business, creator, and operational use and is not directed to children. If you believe a child has provided personal information to us without appropriate authorization, please contact us so we can review and take appropriate action.

13. Changes to this policy and contact details

We may update this Privacy Policy from time to time to reflect product changes, operational updates, or legal requirements. When we do, we will update the published effective or last-updated date on this page.

If you have questions about this policy, privacy practices, or data requests, please contact TECHVENTIVE IT SOLUTIONS PRIVATE LIMITED at connect@techventive.in. Our registered and legal notice address is 28 Feet Road, Near Electric Office, Vikasnagar, Dehradun, Uttarakhand, India - 248198.. Privacy requests are targeted for initial response within 15 business days.