Legal

Privacy Policy

Last updated: January 1, 2024

1. Data We Collect

QR-Decoder.com is designed with privacy as a core principle. We do not collect, store, or transmit any images or QR code content that you process through our tool.

All QR code decoding is performed entirely within your web browser using JavaScript. Images you upload, camera feeds you use, or URLs you enter for decoding are processed locally on your device and never sent to our servers.

We may collect anonymous, aggregated usage statistics (such as page view counts) to understand how the tool is used. This data cannot be used to identify individual users.

2. How Your Data Is Processed

The QR decoding process works as follows: when you upload an image or use your camera, the browser's JavaScript engine processes the image data in-memory on your device. The decoded result is displayed directly in your browser. At no point during this process is any data transmitted to external servers by our application code.

The only exception is the "Image URL" input, where an image at a remote URL must be fetched. In this case, the image is fetched through a third-party CORS proxy service (api.allorigins.win). The image content itself passes through this proxy β€” please be aware of this when using image URLs that contain sensitive content.

3. Local Storage

We use your browser's localStorage API to store:

  • Your theme preference (dark/light mode)
  • Your recent scan history (up to 20 entries, stored locally on your device only)

This data never leaves your device. You can clear it at any time using the "Clear All" button in the scan history panel, or by clearing your browser's site data in your browser settings.

4. Third-Party Services

We use the following third-party services:

  • Google Fonts: We load fonts from fonts.googleapis.com. Google's privacy policy applies.
  • jsDelivr CDN: We load JavaScript libraries from cdn.jsdelivr.net. jsDelivr's privacy policy applies.
  • AllOrigins Proxy: Used only for the "Image URL" input feature to bypass CORS restrictions.

5. Cookies

We do not use tracking cookies. Theme preferences are stored in localStorage, not cookies.

6. Your Rights (GDPR/CCPA)

Since we do not collect personal data, standard data subject rights (access, deletion, portability) are largely not applicable. However, you can delete all locally stored data at any time through your browser settings or through our application interface.

7. Contact

For privacy-related questions, please use our contact form.