MosaicQR

Privacy Policy

Last updated: March 22, 2026

Overview

MosaicQR (“we,” “us,” or “our”) operates the website mosaicqr.com. This Privacy Policy explains what information we collect, how we use it, and your rights regarding that information. We are committed to protecting your privacy and collecting only what is strictly necessary to provide our service.

Information We Collect

We collect only the information needed to provide free and Pro access:

  • Account information — if you sign in with Google via Firebase Authentication, we receive your email address and basic profile information to identify your account.
  • Authentication state cookie — we store a first-party cookie to improve navigation for signed-in users. It is used for account-page redirects only and not for analytics or advertising.
  • Uploaded logo image — temporarily stored to generate your QR code. Automatically deleted within 24 hours.
  • Destination URL — the URL you provide is encoded into the QR code. The destination URL is also logged by our QR generation service for internal usage analytics. It is not shared with third parties or linked to your identity.

What We Do Not Collect

  • We do not use advertising or analytics cookies.
  • We do not use analytics or advertising scripts.
  • We do not sell, rent, or share your personal information with third parties for marketing purposes.

How We Use Your Information

  • Account information: used to authenticate you, display your account, and associate your Stripe subscription with your Firebase user ID.
  • Uploaded images: used solely to generate your QR code and automatically deleted within 24 hours.

Third-Party Services

We use the following third-party services to operate MosaicQR:

  • Stripe — processes payments securely. When you subscribe to Pro, your payment information is handled entirely by Stripe. We never see or store your card details. Stripe's privacy policy is available at stripe.com/privacy.
  • Firebase — provides authentication and stores your account subscription metadata. Firebase's privacy policy is available at firebase.google.com/support/privacy.
  • Vercel — hosts the application and provides temporary blob storage for images (24-hour TTL). Vercel's privacy policy is available at vercel.com/legal/privacy-policy.

Data Retention

Uploaded images are stored temporarily for QR generation and removed automatically within 24 hours. Account and subscription metadata remain in Firebase and Stripe until you delete your account or as otherwise required for billing records.

Data Security

We use industry-standard security measures to protect your information during transmission and storage. All data is transmitted over HTTPS. Payment processing is handled entirely by Stripe, a PCI-compliant payment processor.

Your Rights

If you have questions about your data or wish to request deletion of the information we hold, please contact us at the address below.

Children's Privacy

MosaicQR is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected such information, please contact us and we will promptly delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated “Last updated” date. Your continued use of MosaicQR after any changes constitutes acceptance of the updated policy.

Contact

If you have any questions about this Privacy Policy, please contact us at contact@mosaicqr.com.