1. Introduction

QREQ.com ("we," "our," or "us") is committed to protecting the privacy and personal data of our users in accordance with the General Data Protection Regulation (GDPR). This statement outlines how we collect, use, process, and protect personal data.

2. Data Controller and Contact Information

The data controller responsible for the processing of your personal data is:QREQ.comEmail: [email protected]

If you have questions about this statement or wish to exercise your rights under GDPR, please contact our Data Protection Officer (DPO) at the above email address.

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for specific purposes (e.g., email marketing).
• Contractual Necessity: To fulfill contractual obligations, such as providing services you request.
• Legal Obligations: To comply with applicable laws and regulations.
• Legitimate Interests: To improve our services, ensure security, or prevent fraud.

4. Data We Collect

Information You Provide:

• Name, email address, payment details, and account information.
• Uploaded files, such as content for QR codes or links.

b. Automatically Collected Information:

• IP address, browser type, device information, and usage statistics.

c. Sensitive Data:We do not intentionally collect sensitive personal data (e.g., health data, religious beliefs) unless explicitly provided by the user for a specified purpose.

5. How We Use Your Data

We use your data for the following purposes:

• Providing and personalizing our services.
• Responding to user inquiries and support requests.
• Analyzing usage patterns to improve functionality.
• Complying with legal obligations and resolving disputes.

6. Data Sharing and Transfers

Third-Party Processors: We may share data with trusted third parties for specific purposes, such as payment processing or analytics. These processors are contractually obligated to handle your data securely and in compliance with GDPR.

b. International Transfers:If your data is transferred outside the European Economic Area (EEA), we ensure adequate protection through mechanisms such as:

• Standard Contractual Clauses (SCCs).
• Transfers to jurisdictions with EU adequacy decisions.

7. Data Retention

We retain your data only as long as necessary to fulfill the purposes outlined in this statement, unless a longer retention period is required by law or legitimate business interests.

8. Your Rights Under GDPR

Under GDPR, you have the following rights:

a. Right to Access: Obtain confirmation on whether we process your data and request a copy of your personal data.

b. Right to Rectification: Request corrections to inaccurate or incomplete data.

c. Right to Erasure ("Right to Be Forgotten"): Request deletion of your data, subject to legal or contractual obligations.

d. Right to Restriction: Restrict the processing of your data under certain conditions.

e. Right to Data Portability: Request transfer of your data in a structured, machine-readable format.

f. Right to Object: Object to processing based on legitimate interests or direct marketing.

g. Right to Withdraw Consent: Withdraw consent at any time for processing based on your consent.

h. Right to Lodge a Complaint: File a complaint with your local data protection authority if you believe your rights have been violated.

9. Security Measures

We implement appropriate technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of sensitive data.
• Regular security audits.
• Restricted access controls for personal data.

10. Automated Decision-Making

We do not use automated decision-making processes that have legal or significant effects on users.

11. Updates to This GDPR Statement

We reserve the right to update this statement to reflect changes in our practices or legal requirements. Updates will be posted on this page with the "Effective Date" at the top.

12. Contact and Complaints

For questions or concerns about this statement or to exercise your rights under GDPR, please contact:Email: [email protected]

If you are not satisfied with our response, you may file a complaint with your local data protection authority.