Pradėkime dabar

[email protected]

Pradėkime dabar

Parašyk mums paštu

[email protected]

Privacy Policy

HomePrivacy Policy

Privacy Policy

 

Website: https://qrandpay.com
Company: UAB Inovacijų kodas, Chemijos g. 27C-62, LT-51332 Kaunas, Lithuania
Contact: [email protected]

1. Who We Are

We operate QRandPay — a digital platform that enables customers to leave non-cash tips and pay for orders using QR codes, NFC, or payment links. Payments are processed through Stripe and securely distributed to service staff and business owners.

We are the data controller responsible for how your personal data is collected, used, and protected when you use our services.

2. What Data We Collect

a) Payment and Transaction Data:

When you make a payment or leave a tip, we may collect:

  • Name (if voluntarily entered)

  • Email (for receipt or confirmation)

  • Payment amount

  • Transaction ID

  • Timestamp and currency

  • Payment method (e.g., card type, Apple Pay)

  • Service provider or merchant identifier

We do not store full credit card numbers or CVV codes. All sensitive payment data is handled by Stripe, in compliance with PCI-DSS.

Stripe Privacy Policy: https://stripe.com/privacy

b) Technical Data:

  • IP address

  • Browser and device type

  • Operating system

  • Access time

  • Referring URL

c) Optional Input:

  • Feedback or comment messages

  • Uploaded media files (if applicable)

d) Website Use & Login Data (if applicable):

  • Login credentials (if user registration exists)

  • Session cookies and preferences

3. Legal Basis for Processing

We process your data under the following GDPR legal bases:

  • Performance of a contract – to process your tip or order payment.

  • Consent – for feedback or voluntary data submission.

  • Legitimate interest – fraud prevention, platform improvement.

  • Legal obligation – for accounting, tax, or compliance purposes.

4. How We Use Your Data

We use your data to:

  • Process payments and generate receipts

  • Distribute tips and order payments to the correct person or business

  • Maintain transaction records for financial compliance

  • Provide support and respond to inquiries

  • Prevent fraud and protect system integrity

  • Improve our service through anonymous analytics

5. Comments and Embedded Content

If you leave a comment on our site:

  • We collect the data you enter, plus your IP and browser agent (for spam prevention).

  • An anonymized string may be sent to Gravatar to check for an avatar. Gravatar’s privacy policy: https://automattic.com/privacy

If your comment is approved, it will appear publicly with your name and avatar (if available).

Articles may include embedded content (e.g., videos, images, maps). Such content behaves as if you visited the other site and may collect your data via cookies or tracking scripts. Please review third-party privacy policies before interacting.

6. Cookies

We use cookies to:

  • Store display preferences (e.g., language, theme)

  • Remember user login (if applicable)

  • Track minimal session and interaction data

You may opt to save your name and email in cookies for convenience when commenting. You can control cookie settings in your browser.

7. Media Uploads

If you upload images, avoid including location metadata (EXIF GPS). Other users may download and extract such data.

8. Who We Share Your Data With

  • Stripe, for secure payment processing

  • Spam detection services, to prevent abuse

  • Legal or regulatory authorities, when required

  • Merchants or service providers, to assign payment to the correct recipient

We do not sell or share your data with advertisers or external marketers.

9. How Long We Retain Your Data

  • Comments and their metadata are stored indefinitely to support future auto-approval.

  • Registered user data (if available) can be viewed, edited, or deleted at any time.

  • Payment and transaction data is retained for as long as legally required (usually 5–10 years for tax or accounting reasons).

10. Your Rights (under GDPR)

You have the right to:

  • Access your personal data

  • Request correction or deletion

  • Object to or restrict processing

  • Request a copy (data portability)

  • Withdraw consent (where applicable)

  • File a complaint with the State Data Protection Inspectorate in Lithuania

To make a request, contact: [email protected]

11. Where Your Data Is Sent

  • Payment data is transmitted securely to Stripe

  • Comments may be filtered through automated anti-spam systems

  • Technical data is used internally or by trusted providers to operate the service

12. Security

We apply appropriate security measures to protect your data:

  • TLS/SSL encryption for data in transit

  • Role-based access to databases

  • Secure processing via Stripe for financial data

13. Updates to This Policy

We may update this policy occasionally. Updates will be posted on our website with the revised effective date. Continued use of the platform indicates acceptance of the updated policy.

Contact Information
For data-related requests or questions:
📧 [email protected]
🏢 UAB Inovacijų kodas
Chemijos g. 27C-62, LT-51332 Kaunas, Lithuania

lt_LTLietuvių kalba
en_USEnglish lt_LTLietuvių kalba