Legal
Privacy Policy
Last updated: June 26, 2026
This page is maintained by KenQRoo to explain what data we collect, why, and how you can control it. It covers KenQRoo (the “Service”).
What we collect
- Account data — email, display name, password hash, plan/tier.
- QR data — codes you create: name, destination URL, design settings, schedule, UTM tags, optional password hash.
- Scan analytics — for dynamic codes only: timestamp, coarse country (from IP), device type (iOS/Android/desktop). We do not store full IPs or precise location.
- Usage — credit consumption, feature usage, error reports.
- Payment metadata — handled by our payment processor; we never see card numbers.
Why we use it
- To provide the Service (redirects, analytics, exports).
- To enforce plan limits and prevent abuse.
- To respond to support requests.
- To send transactional emails (sign-up, password reset, billing). We do not send marketing emails without opt-in.
Sharing
We share data only with the subprocessors needed to run the Service: cloud hosting, database/auth, and the payment processor once enabled. We never sell your data.
Retention
- Account, QR and scan data: kept while your account exists.
- On account deletion: all your data is removed within 30 days.
- Billing records: kept as required by tax law (typically 7 years).
Your rights
You can export all your data as JSON or delete your account at any time from Account. For GDPR/CCPA requests outside the in-app tools, email privacy@kenqroo.com.
Cookies
We use only essential cookies for authentication and to remember your theme preference. No third-party advertising or tracking cookies.
Security
Passwords are hashed; data is encrypted in transit (TLS). Row-level security is enforced at the database level so users can only access their own data.
Children
KenQRoo is not intended for users under 16.