Privacy Policy

1. Who We Are

easyfreeqr.com ("we," "us," "our") is a free, browser-based QR code generator operated by TFB Beyond UG (i.G.), Blieschendorferweg 24, 23769 Fehmarn, Germany. Our service is available to visitors worldwide, including residents of the United States. This Privacy Policy explains what information we collect, how we use it, and the rights you have — with specific sections for California residents (CCPA/CPRA), all U.S. visitors, and visitors from the European Economic Area (GDPR). This notice is provided to satisfy the disclosure requirements of the California Online Privacy Protection Act (CalOPPA).

2. The Short Version

QR code generation happens entirely in your browser. The URLs, text, Wi-Fi passwords, contact details, or logo images you type or upload never reach our server — they are processed locally on your device. We do not sell your personal information, we do not share it for cross-context behavioral advertising without your consent, and we honor Global Privacy Control (GPC) signals from California residents as a "Do Not Sell or Share" request.

3. Information Processed in Your Browser

When you use the QR code generator, the data you enter (link, text, Wi-Fi credentials, contact card fields, uploaded logo image, color choices, etc.) is processed client-side in JavaScript. It is not transmitted to, stored by, or seen by us. The resulting QR code contains the exact data you entered — we do not insert a redirect or tracking URL.

4. Server Logs (Hosting)

Our website is hosted by Netlify, Inc. (44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA). When you load a page, Netlify automatically records standard request data: your IP address, user agent string, the URL you requested, the referring URL, and a timestamp. This information is used to deliver the page, secure the service against abuse, and produce aggregate traffic statistics. Logs are deleted automatically after a short retention period. Because Netlify is based in the United States, your request data is processed on U.S. servers.

5. Cookies and Similar Technologies

We use two categories of storage in your browser:

• Strictly necessary storage — a small entry in localStorage that remembers your cookie preference and your light/dark theme choice. This does not require consent.
• Advertising cookies — set by Google AdSense only after you click "Accept" in our cookie banner. You can change your choice at any time by using the "Cookie settings" link in the footer.

6. Google AdSense

We use Google AdSense (provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA) to display advertisements. The AdSense script is not loaded until you have given consent via our cookie banner. Once consent is given, Google may process your IP address, device and browser information, ad interactions, and cookie identifiers to deliver and measure ads. Google may also use this data for its own purposes as a data controller / business; see Google's published policies for details.

You can learn more and adjust your ad settings here:

• Google Privacy Policy
• How Google uses information from sites that use its services
• Google Ads Settings — opt out of personalized ads
• Digital Advertising Alliance opt-out (industry-wide)

7. External Libraries (CDN)

Some JavaScript libraries are loaded from the jsDelivr public CDN (served via Cloudflare and Fastly) so the page loads quickly:

• qr-code-styling — generates the QR code
• jsPDF — exports your QR code as a PDF
• Simple Icons — official platform logos (loaded only when "Social Media" is selected)

When these scripts load, your IP address, user agent, and the referring page are transmitted to the CDN. We use Subresource Integrity (SRI) to make sure the code that runs in your browser has not been altered.

8. Affiliate Links (Amazon)

Some pages contain affiliate links to Amazon. If you click such a link and then make a purchase, Amazon may pay us a small commission at no extra cost to you. Amazon sets its own cookies to track the referral; please see Amazon's own privacy notice for details. Affiliate links are clearly labeled "Ad" or "sponsored."

9. Children's Privacy (COPPA)

easyfreeqr.com is a general-audience website and is not directed to children under 13. Consistent with the U.S. Children's Online Privacy Protection Act (COPPA), we do not knowingly collect personal information from children under 13. If you are a parent or guardian and you believe that your child has provided personal information to us, please contact us at hello@schnelligkeitstest.de and we will promptly delete any such information from our records.

10. Your California Privacy Rights (CCPA / CPRA)

If you are a resident of California, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (collectively, the "CCPA/CPRA"), gives you specific rights regarding your personal information.

Categories of personal information we collect. In the 12 months before this update, we (or our service providers acting on our behalf) may have collected the following categories of personal information from California residents:

• Identifiers — IP address, device identifiers (via Netlify server logs and, with consent, Google AdSense).
• Internet or other network activity — browser type, pages viewed, referring URL, interaction with ads (with consent).
• Geolocation data — approximate (city/region-level) location inferred from IP address.
• Inferences — interest-segment data created by Google for ad personalization (only if you consent to advertising cookies).

We do not knowingly collect "sensitive personal information" as defined by the CPRA, and we do not use or disclose any such information for the purpose of inferring characteristics about you.

Sources. Directly from your browser/device, and from our service providers (Netlify, Google, jsDelivr/Cloudflare/Fastly, Amazon for affiliate clicks).

Business purposes. To operate, secure, and improve the site; to display the QR generator and serve advertising; to comply with law.

"Sale" or "Sharing" of personal information. We do not sell personal information for money. However, under the broad CCPA/CPRA definitions, the use of Google AdSense cookies for cross-context behavioral advertising can be considered "sharing" of personal information. We only enable AdSense after you opt in via our cookie banner. You can opt out at any time using the controls below.

Your rights as a California resident:

• Right to know what personal information we collect, use, disclose, and share about you.
• Right to delete the personal information we have collected from you, subject to certain exceptions.
• Right to correct inaccurate personal information we maintain about you.
• Right to opt out of sale or sharing — see the "Do Not Sell or Share My Personal Information" section below.
• Right to limit use of sensitive personal information (we do not use such information for inferring characteristics, so no separate request is needed).
• Right to non-discrimination — we will not deny service, charge a different price, or provide a lower quality of service because you exercised a CCPA/CPRA right.
• Right to authorize an agent to submit a request on your behalf.

How to submit a request. Email hello@schnelligkeitstest.de with the subject line "California Privacy Request" and tell us which right you want to exercise. We will verify your request by matching the information you provide against data we already have on file (for example, the IP/email used). We will respond within the 45-day window required by the CCPA/CPRA, with one possible extension as permitted by law.

11. Do Not Sell or Share My Personal Information

California residents have the right to opt out of the "sale" or "sharing" of their personal information for cross-context behavioral advertising. You can exercise this right in any of the following ways:

• Use our cookie banner — click the "Cookie settings" link in the footer and decline or withdraw consent for advertising cookies. This blocks Google AdSense from loading on this site.
• Global Privacy Control (GPC) — we honor the GPC browser signal as a valid opt-out for California residents. If your browser sends a GPC signal, advertising cookies will not be loaded.
• Email request — send a message to hello@schnelligkeitstest.de with the subject line "Do Not Sell or Share My Personal Information".

12. CalOPPA Disclosures

In accordance with the California Online Privacy Protection Act:

• This Privacy Policy is linked from the footer of every page using the word "Privacy."
• The "Last updated" date at the top of this page reflects the most recent revision.
• Material changes will be announced on this page; please check back periodically.
• We honor Global Privacy Control as a "Do Not Track" / "Do Not Sell or Share" signal for California residents. Beyond that, we do not separately track users across third-party websites.
• Third parties (such as Google) may collect personally identifiable information about your online activities over time and across different websites when you use easyfreeqr.com, but only after you give cookie consent.

13. Other U.S. State Privacy Laws

Residents of states such as Virginia (VCDPA), Colorado (CPA), Connecticut (CTDPA), Utah (UCPA), Texas (TDPSA), Oregon (OCPA), and others may have similar rights to access, correct, delete, and opt out. You may exercise any of these rights using the same email contact above; we will apply the standard most protective of your data.

14. International Users (GDPR)

If you visit easyfreeqr.com from the European Economic Area, the United Kingdom, or Switzerland, the EU General Data Protection Regulation (GDPR) and equivalent local laws apply. Your rights include access, rectification, erasure, restriction, portability, and the right to object. The legal basis for processing server logs is our legitimate interest in operating a secure service (Art. 6(1)(f) GDPR); the legal basis for advertising cookies is your consent (Art. 6(1)(a) GDPR). You may lodge a complaint with your local supervisory authority. Our German lead supervisory authority is the data protection commissioner of Schleswig-Holstein.

15. Data Security and Retention

We rely on industry-standard security from our hosting provider (HTTPS, DDoS protection, automatic patching). Server logs are retained only briefly for security and diagnostics. Because we do not maintain user accounts, we do not store profiles, password hashes, or order histories.

16. Changes to This Policy

We may revise this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of the page and, where appropriate, provide a more prominent notice on the site.

17. Contact for Privacy Requests

For any privacy question or to exercise a right described above, please email:
hello@schnelligkeitstest.de

Postal mail:
TFB Beyond UG (i.G.)
Attn: Privacy
Blieschendorferweg 24
23769 Fehmarn
Germany

See also the Legal Notice for general company information.