How QRZY handles your scan

When you scan a QRZY QR code, you are redirected through our service. Here is exactly what happens to your data:

1. Your IP address is never stored. Cloudflare truncates it at the edge (IPv4 to the last-octet group, IPv6 to a /64 prefix) before any row is written to our database. We never see or log your full IP.
2. No cookies. No fingerprinting. The redirect does not run any JavaScript and does not set any cookies.
3. What we do store, for up to 7 days: timestamp of the scan, the country your request came from (country-level only), the device class (mobile / desktop / tablet), browser family, and operating system. None of these fields identify you individually.
4. After 7 days even those rows are deleted. What remains is bucket counts — for example "France, mobile, Safari, 2pm: 14 scans" — which are not personal data under GDPR Art 4(1) and Recital 26.

Because we do not keep a per-scanner identifier, there is no "your row" to delete. If you still want to submit a transparency request or ask questions, use the form on our Privacy Policy page. We will reply within 72 hours.

You may also file a complaint with your national data-protection authority. The full list is at edpb.europa.eu.