Vectoryn Technologies

Privacy Policy — Vectoryn QR & Barcode Scanner

Effective Date: September 24, 2025

Last Updated: September 24, 2025

---

1. Introduction

This Privacy Policy explains how Vectoryn Technologies Ltd (“Vectoryn,” “we,” “us,” or “our”) collects, uses, discloses, and protects information when you use the Vectoryn QR & Barcode Scanner mobile application (the “App”) available on Google Play and the Apple App Store.

Company: Vectoryn Technologies Ltd
Contact (privacy matters): support@vectoryntech.com
Privacy page (company-wide): https://vectoryntech.com/privacy
Terms of Service: https://vectoryntech.com/terms-of-service

We process personal data in accordance with the UK GDPR and Data Protection Act 2018, the EU GDPR (where applicable), and relevant international laws including CCPA/CPRA.

Controller: For App data we determine, Vectoryn is the “controller.” Some third-party providers act as our “processors,” and some (e.g., AdMob) act as independent controllers for their own purposes.

---

2. What We Collect

2.1 Data you provide (optional features)

Account data (optional): If you sign in (e.g., for backups/sync), we collect your email address (and, if provided, display name). Authentication is via Firebase Authentication.
Saved scans & notes (optional): If you choose to save scans, labels, or notes, they are stored locally on your device; cloud backup/sync (if enabled) stores encrypted records in our cloud (Firebase).
QR generation content (optional): Text/URLs you input to generate codes. We process to generate the code and, if you elect to save/sync, we store accordingly.

2.2 Data collected automatically

Device & app diagnostics: Device model, OS version, App version, language/locale, time zone, basic device capabilities.
App interactions & events: Non-content usage events (e.g., screen views, feature toggles), session counts/duration, performance metrics.
Crash logs & performance: Stack traces, state at time of crash, anonymised identifiers.
Identifiers:
- Android: Google Advertising ID (AAID) for ads/measurement (free tier), resettable in device settings.
- iOS: IDFA (only if you opt in via Apple’s App Tracking Transparency prompt).
- Instance IDs/app-scoped pseudonymous IDs for analytics/crash diagnostics.
Network metadata: IP address and similar network identifiers are received transiently by our systems or service providers as part of normal internet traffic and security. We do not use IP for precise geolocation.

2.3 Camera use

Camera access is required to scan codes. Camera frames are processed in real time on-device for decoding; we do not store camera imagery unless you explicitly take and save a photo in an optional feature.

2.4 Data we do not collect by default

We do not collect: your contacts, precise GPS location, health/biometric data, payment card numbers, or the contents of scanned codes unless you explicitly save or sync them.

---

3. How We Use Data

Core functionality

Decode and display QR/barcode results.
Maintain local scan history; optional cloud backup/sync if you sign in.
Generate QR codes at your request.

Safety, security, and improvement

Diagnose crashes and performance issues.
Prevent abuse and maintain service integrity.
Analyse aggregate usage to improve features and UX (proportionate, non-intrusive analytics).

Legal/regulatory

Comply with applicable laws, enforce our terms, prevent fraud, and respond to lawful requests.

We do not sell personal data.

---

5. Third Parties and SDKs

5.1 Service providers (processors or independent controllers)

Firebase Analytics (Google): usage analytics; configurable event retention; supports user opt-out/limit.
Firebase Crashlytics (Google): crash diagnostics and stability.
Firebase Authentication (Google): account sign-in (email/password or platform sign-in, if enabled).
Google AdMob (Free tier only): ad delivery and measurement (Android AAID; iOS IDFA only if you opt-in via ATT).

Each provider processes data under its own privacy policy and platform rules. Some (e.g., AdMob) may act as independent controllers for advertising and measurement.

---

5.2 Disclosures we may make

We may disclose data: (i) to service providers under contract; (ii) to comply with law, lawful process, or governmental requests; (iii) to protect users, our rights, or security; (iv) with your consent; or (v) in the context of a corporate transaction (with notice where required).

---

6. Ads, Analytics, and Tracking Controls

Android Advertising ID (AAID): Reset or limit ad personalisation in Android Settings > Google > Ads.
Apple ATT (IDFA): We request tracking permission only if needed for ads/measurement. If you Do Not Allow, IDFA is not accessible. Manage at iOS Settings > Privacy & Security > Tracking.
App-level controls: Where available, you can disable analytics in the App’s privacy settings; paid tiers remove ads.
Industry opt-outs (third-party controlled): Google Ads settings and recognised opt-out frameworks apply.

---

7. Data Storage and Retention

Local scan history/content: Remains on your device until you delete it (or uninstall the App).
Cloud backup/sync (optional): Stored in our Firebase project while your account remains active or until you delete the data/account.
Analytics events: Retention configured up to 14 months (aggregate statistics may persist).
Crash logs: Retained for operational troubleshooting consistent with provider defaults.
We retain only as long as necessary for the stated purposes or as required by law. Vendor retention is governed by their published policies.

---

8. Security

We apply appropriate technical and organisational measures, including encryption in transit, restricted access, secure key management, logging/monitoring, and secure development practices. No system is perfectly secure; we continually assess and enhance our safeguards.

---

9. Your Rights

UK/EU residents (GDPR/UK GDPR)

You may have the right to access, rectify, erase, restrict, object, and port certain data, and to withdraw consent where processing relies on consent. You may also lodge a complaint with a supervisory authority (e.g., UK ICO).

US residents (CCPA/CPRA and similar state laws)

You may have rights to know/access, correct, delete, and to opt-out of certain sale/sharing. We do not sell personal information.

How to exercise rights

Email support@vectoryntech.com with sufficient detail to identify you and your request. We may verify your identity before acting and will respond within statutory timeframes.

Note: For data collected by third parties as independent controllers (e.g., AdMob), please exercise rights with them directly via their privacy pages.

---

10. International Transfers

Where data is transferred outside the UK/EU, we rely on lawful safeguards such as adequacy decisions and/or Standard Contractual Clauses (and the UK IDTA, as applicable), with supplementary measures where appropriate.

---

11. Children’s Privacy

The App is not directed to children under 13 (or a higher age where required by local law, e.g., 16 in parts of the EEA). We do not knowingly collect personal data from children. If you believe a child has provided data, contact support@vectoryntech.com and we will take appropriate action.

---

12. Your Choices & Controls

Permissions:
- Camera (required for scanning): Manage in device settings if you wish to revoke.
- Photos/Storage (optional): Only if you save images/exports.
Analytics toggle (where offered): Disable in App settings.
Ads: Purchase a paid tier to remove ads (where offered); manage platform ad settings as above.
Delete local data: Clear history in App settings or uninstall the App.
Delete cloud data/account: Use the in-app Account Deletion option (where available) or email support@vectoryntech.com from your account email; we’ll verify and action deletion of App-controlled cloud data.

---

13. Third-Party Content and Links

Scanning QR/barcodes may open third-party websites/services. We do not control and are not responsible for third-party content, practices, or security. Exercise caution and review those sites’ terms and privacy notices.

---

14 Do Not Track

The App does not respond to “Do Not Track” browser signals. Third-party SDK behaviour is governed by their policies and platform settings.

---

15. Contact and Complaints

Vectoryn Technologies Ltd
124 City Road, London, EC1V 2NX, United Kingdom
Email: support@vectoryntech.com
Website: https://vectoryntech.com

UK: You may lodge a complaint with the Information Commissioner’s Office (ICO). We encourage you to contact us first so we can address your concerns promptly.

---

16. Changes to this Policy

We may update this Policy from time to time. Material changes will be communicated in-app and/or on our website, and the Last Updated date will change. Your continued use of the App after an update constitutes acknowledgement of the revised Policy.

---

17. Jurisdiction-Specific Disclosures (Summary)

UK/EU: See Sections 4, 7, 9, 10 for legal bases, retention, rights, and transfers.
California: We do not sell personal information; rights under CPRA are available as described in Section 9.
Nevada/Virginia/Colorado et al.: We do not sell covered information as defined; applicable state rights can be exercised via support@vectoryntech.com.

---

18. Liability, User Responsibilities, and Safety

You are responsible for device security, evaluating the safety of codes before scanning, and backing up local data. We are not responsible for third-party sites/services you access via scanned codes or for third-party SDKs acting as independent controllers. Nothing in this Policy limits non-excludable consumer rights.

---

Privacy — Vectoryn QR & Barcode Scanner

This website uses cookies.