Privacy Sovereignty Protocol

1. Technical Data Sovereignty

At QR Code Studio, we operate under a "Privacy by Design" framework. Unlike traditional QR generators that utilized server-side redirection (Dynamic QR), our platform utilizes 100% client-side JavaScript execution. This means your data—URLs, text, Wi-Fi credentials, or vCard details—is synthesized into a matrix directly within your browser's sandbox. No payload data is ever transmitted to our servers or stored in our databases.

2. Information Collection & Analytic Usage

While we do not collect the content of your synthesized matrices, we may collect non-identifiable technical data to maintain the operational integrity of the platform:

• Technical Metadata: Browser string, OS version, and screen resolution to optimize the canvas rendering engine.
• Usage Telemetry: Aggregated interaction data (e.g., button clicks) used to refine the User Interface.
• Network Logs: Standard server logs (IP address, timestamp) collected by our hosting provider for DDoS mitigation and security auditing.

3. Third-Party Advertising (Google AdSense)

We utilize Google AdSense to deliver tailored advertisements. Google uses cookies to serve ads based on your prior visits to this and other websites on the internet.

• Google's use of advertising cookies enables it and its partners to serve ads to you based on your visit to QR Code Studio and/or other sites.
• Users may opt out of personalized advertising by visiting Google Ads Settings.
• We do not share any data synthesized in our tools with Google or other advertising partners.

4. Cookie Configuration

A cookie is a small file placed on your device. We use cookies to:

• Store your workspace preferences (e.g., dark mode toggle).
• Enable analytics and advertising functionality provided by third parties.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, some features of the QR Code Studio environment may not function with full-fidelity.

5. GDPR Compliance (EU/EEA Rights)

If you are a resident of the European Economic Area (EEA), you have specific data protection rights under the General Data Protection Regulation (GDPR). QR Code Studio aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.

Note: Since we do not maintain persistent user accounts or store QR payload data, we generally do not hold personal attributes that would necessitate a "Right to Erasure" for tool usage.

6. CCPA/CPRA Compliance (California Rights)

The California Consumer Privacy Act (CCPA) provides California residents with additional rights regarding their personal information. These include the right to know what personal information is collected, the right to request deletion, and the right to opt-out of the "sale" of personal information. We do not sell user data.

7. Security Architecture

The security of your data is paramount. We utilize industry-standard TLS encryption for all data in transit and serve our assets through a globally distributed content delivery network (CDN) to ensure infrastructure resilience.