Privacy Policy

Privacy Policy – QR Scanner & Generator Lab

Effective Date: 18 August 2025

Developer/Publisher: Samcodelab

Contact: samcodelab9@gmail.com 

1. Overview

QR Scanner & Generator Lab (“the App”, “we”, “our”, “us”) is committed to protecting your privacy. This Privacy Policy explains what data we process, why, how we protect it, and your rights to control it. It applies to all users and versions of the App (free and premium).

This policy is accessible via our Google Play store listing and within the App’s Settings menu. Our Data Safety Form in the Google Play Console reflects this policy’s disclosures, noting that on-device data is not collected and storage access is limited to user-initiated actions. For GDPR/CCPA, we disclose all data processing, including on-device data, which may differ from the Data Safety Form’s scope.

2. Information We Process

A. On-Device Content

What: QR codes, barcodes, and content you scan or generate are processed exclusively on your device.

Details: Your scan history is stored locally and never collected, uploaded, sold, or shared by us.

B. Files You Export

What: Exported files (e.g., PDF, CSV, TXT, JSON, images) are saved to a user-selected location on your device.

Details: We use MediaStore APIs for images/PDFs and Storage Access Framework (SAF) for documents. We do not access, transmit, or process these files unless you explicitly share them.

C. Analytics & Diagnostics

What: Non-identifying data, such as device type, OS version, crash logs, and performance metrics, via Google Firebase and Crashlytics.

Purpose: Used solely to fix bugs and improve reliability, not to identify you.

D. Advertising (Free Version Only)

What: Google AdMob serves ads and may collect:

Advertising ID (or privacy-preserving equivalent on newer Android versions).

IP address.

Device and OS information.

App usage interactions (e.g., ad views/clicks).

Coarse location (derived from IP, not precise location).

Purpose: Supports ad delivery, fraud prevention, and measurement. Ads may be personalized or non-personalized based on your choices (see Section 6).

Note: We do not collect precise location data.

E. Purchases & Subscriptions

What: Purchase tokens and subscription status via Google Play Billing.

Details: We do not collect or store your payment card details, only receiving data to unlock premium features.

3. Legal Bases (EEA/UK Users)

Consent: Personalized advertising, analytics (where required), and ad measurement.

Legitimate Interests: Non-personalized ads, basic diagnostics, security, and fraud prevention.

You may withdraw consent at any time (see Section 6).

4. How We Use Data

We use data to:

Deliver core functionality (scanning, generating, exporting QR codes).

Improve performance, stability, and user experience (via analytics).

Serve and measure ads (free version).

Process purchases and manage premium entitlements.

Prevent fraud, abuse, and comply with applicable laws.

We never sell personal data.

5. Sharing With Third Parties

We do not sell or rent your data. Limited data may be shared with essential service providers:

Google AdMob (ads): https://policies.google.com/technologies/ads

Google Firebase & Crashlytics (analytics/diagnostics): https://firebase.google.com/support/privacy

Google Play Billing (payments): https://support.google.com/googleplay/answer/9037938

All third-party SDKs comply with Google Play’s Developer Program Policies. Data may be disclosed if legally required or to protect our rights, users, or the App.

6. Your Choices & Controls

Advertising

In EEA/UK and other regulated regions, we use Google’s User Messaging Platform (UMP) to display a consent prompt for personalized or non-personalized ads.

Update or withdraw consent via the App’s Privacy Settings.

Device-Level Controls

Android 12+: Delete Advertising ID in Settings > Privacy > Ads.

Earlier Android versions: Opt out of Ads Personalization in Settings > Google > Ads.

Analytics & Crash Reporting

Where consent is required, we request it via in-app prompts.

You may disable analytics in the App’s Privacy Settings or contact support to limit collection where feasible.

Data Access & Deletion

No Accounts: The App does not require account creation, so no account-related data is stored.

Support Correspondence: If you contact us, you may request deletion of your support emails by emailing support@samcodelab.com.

Uninstall: Uninstalling the App halts all data collection and processing.

GDPR/CCPA Rights

Under GDPR/CCPA, you have the right to access, rectify, delete, restrict processing, and port your data. California residents may opt out of data sales; we do not sell your data. Contact support@samcodelab.com to exercise these rights.

7. Permissions Requested

We request only permissions critical to the App’s functionality:

Camera: To scan QR codes/barcodes. We do not record or store video. An in-app disclosure explains this purpose before access.

Storage/Media (Scoped Storage/SAF): To save QR images (via MediaStore APIs) and exports (PDF, CSV, TXT, JSON via SAF) to user-selected locations. We do not access files we didn’t create or you didn’t select. An in-app disclosure explains this purpose before access.

Internet/Network State: For ads, analytics, license checks, and in-app communication.

Flashlight: Optional torch for low-light scanning.

Vibration/Foreground Services: For haptic feedback and stable scanning/export operations, terminated immediately after use.

Notifications: Optional reminders/alerts, disableable in system settings.

Google Play Billing: To process purchases/subscriptions securely.

Play License Checks & AdServices APIs: For fraud prevention and privacy-preserving ad features.

Google Play Storage Declaration: We use MediaStore APIs for images/PDFs and SAF for documents, ensuring minimal storage access. We do not use the MANAGE_EXTERNAL_STORAGE permission.

8. Data Retention

On-Device Content: Scans and exports remain on your device until you delete them.

Analytics/Crash Data: Retained only as needed for troubleshooting, then aggregated or deleted.

Purchase Records: Kept as required to manage entitlements, resolve refunds, or meet legal obligations.

9. Security

We implement industry-standard safeguards, including:

Encryption in transit (e.g., HTTPS for ads/analytics).

Least-privilege access to data.

Regular SDK security reviews to ensure compliance with Google Play policies. While no method is 100% secure, we continuously improve our practices.

10. Children’s Privacy

The App is not directed to children under 13 (or the local age of digital consent). We do not knowingly collect data from children. If you believe a child has provided data, contact our email, to request deletion.

11. International Transfers

Data processed by Google services may be transferred outside your country. Google implements safeguards, such as Standard Contractual Clauses, to comply with applicable laws.

12. Policy Updates

We may revise this policy, updating the “Effective Date” above. Material changes will be communicated via in-app alerts or email, where required by law. Continued use of the App constitutes acceptance of updates.

13. Contact Us

For privacy requests or questions:

📧 Email: samcodelab9@gmail.com