Privacy Policy

1. Responsible party and applicable law

The responsible party (Responsible Party / Verantwortlicher) for the processing of personal information through easyfreeqr.com is TFB Beyond UG (i.G.), Blieschendorferweg 24, 23769 Fehmarn, Germany. For users in South Africa, this policy is intended to comply with the Protection of Personal Information Act, 4 of 2013 (POPIA). The Information Regulator of South Africa supervises POPIA: inforegulator.org.za.

2. Data processing in the browser

QR code generation on easyfreeqr.com takes place entirely in the user's browser (client-side in JavaScript). The data you enter (URLs, texts, Wi-Fi credentials, contact details, uploaded logos, etc.) is never transmitted to our server, but is processed directly on your device. We do not replace your link with a tracking URL — the scanned QR code contains exactly the data you entered.

3. The 8 Conditions for Lawful Processing under POPIA

Where we do process limited personal information (e.g. server logs, advertising cookies after consent), we apply the eight conditions set out in Chapter 3 of POPIA:

• Accountability — we are responsible for compliance with all conditions below.
• Processing limitation — only lawful, adequate, relevant and not excessive data is processed.
• Purpose specification — data is collected for a specific, defined and lawful purpose.
• Further processing limitation — further processing must be compatible with the original purpose.
• Information quality — we take reasonable steps to keep data complete and accurate.
• Openness — this Privacy Policy explains how we handle personal information.
• Security safeguards — we use TLS encryption, Subresource Integrity (SRI) and limited retention periods.
• Data subject participation — you may exercise the rights set out in section 8 below.

4. Server-side logs (hosting)

When you access the website, technical data (IP address, user agent, requested URL, timestamp, referrer) is stored by the hosting provider (Netlify Inc., 44 Montgomery Street, Suite 300, San Francisco, CA 94104, USA) in server logs as standard. The processing is based on our legitimate interest in the operational security and integrity of the service (section 11(1)(f) POPIA). This data is automatically deleted after 7 days.

5. External CDNs (jsDelivr)

When you load the page, the following JavaScript libraries are loaded via the jsDelivr CDN (operated by Prospect One Sp. z o.o. via Cloudflare & Fastly):

• qr-code-styling — for the actual QR code generation
• jsPDF — for the PDF download
• Simple Icons — for official platform logos (only when "Social Media" is selected)

During loading, your IP address, user agent and referrer are transmitted to jsDelivr / Cloudflare / Fastly. We use these CDNs for performance reasons. We use Subresource Integrity (SRI) to prevent tampering with the loaded scripts.

6. Cookies

We use exclusively:

• Strictly necessary cookies (local in the browser, localStorage): stores your cookie choice.
• Advertising cookies (Google AdSense) — only with your explicit consent under section 11(1)(a) POPIA.

You may withdraw your consent at any time via the "Cookie settings" footer button.

7. Google AdSense (only after consent)

This website uses Google AdSense (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland) to deliver advertisements. The AdSense script is only loaded dynamically after your explicit consent — before that, no data is transferred to Google whatsoever. Personalised ads are only delivered after your consent. More information: Google Privacy Policy.

8. Your rights as a data subject under POPIA

In accordance with sections 23 to 25 of POPIA, you have the right to:

• be notified that your personal information is being collected;
• request access to your personal information held by us;
• request correction, destruction or deletion of inaccurate, out-of-date or unlawfully obtained data;
• object to the processing of personal information;
• object to direct marketing by means of unsolicited electronic communications;
• not be subject to a decision based solely on automated processing;
• submit a complaint to the Information Regulator (inforegulator.org.za);
• institute civil proceedings regarding alleged interference with the protection of personal information.

To exercise these rights, please contact: hello@schnelligkeitstest.de.

9. Cross-border transfer of personal information

As we operate from Germany, personal information processed in server logs is processed in the European Union (Netlify regions) and may be transferred to the United States. Such transfers are carried out in accordance with section 72 of POPIA, on the basis that the recipient is subject to a law or contractual arrangement that upholds principles substantially similar to POPIA.

10. Amazon Associates Programme (affiliate links)

On the recommendations page as well as on individual topic pages, we link to products via the Amazon Associates Programme. These links are labelled as "Ad" or "sponsored". If you click such a link and make a purchase, we receive a small commission — at no extra cost to you. A tracking cookie is set by Amazon to attribute the purchase. Legal basis: your consent through clicking. You may avoid this at any time by not clicking our affiliate links.

11. Responsible party

See Legal Notice.