Privacy

qrcodeonce is operated by Black Sheep Digital Ltd, a company registered in England and Wales (Company No. 16989285), with registered address at 71–75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom.

For data-related enquiries, contact hello@blacksheepdigital.co.

• Email address — used to issue magic-link sign-in tokens and associate purchases and saved QR codes with your account.
• QR code content you choose to save — including URLs, WiFi credentials, and vCard data. Note that vCard payloads may contain personal contact details (name, phone, email, organisation) which you encode voluntarily.
• Uploaded logos stored alongside your saved QR codes for re-export.
• Payment metadata (transaction ID, plan, amount, status) returned by Stripe. We never see or store your card details.
• Minimal technical logs for security, reliability, and abuse prevention.

We use your data to generate QR codes from the content you provide, store those codes so you can re-export them later in different formats and sizes, manage your remaining credits, and deliver service emails such as magic-link sign-in.

We do not build behavioural profiles, do not use your data for marketing, and do not sell or share data for advertising.

qrcodeonce uses passwordless, magic-link authentication. We never store passwords. When you sign in, we send a single-use, time-limited link to your email. Clicking the link establishes a session.

Email addresses are used solely to deliver these access links and essential service notifications. Access to your saved QR codes is controlled through the resulting authenticated session — there is no separate account password to manage.

Our backend infrastructure is provided by Lovable Cloud and hosted in the European Union. Application traffic is served via a global CDN with EU-region origin.

We do not use advertising cookies.

We do not use third-party tracking analytics. Any cookies used are strictly necessary for sign-in and service functionality.

We share data only with the infrastructure providers required to operate the service: hosting (Lovable Cloud, EU), email delivery, and payment processing (Stripe). We do not sell personal data.

Saved QR codes and uploaded logos are retained for as long as your account exists, so you can re-export them at any time. You can delete individual codes from your dashboard.

Technical logs are retained for a short period and then discarded.

You may request deletion of all data associated with your account by contacting us. Because we hold only the minimum necessary data, the amount of personal data associated with any individual is small.