Home Use Cases About Terms of Service Contact

Privacy Policy

Last updated: June 1, 2026

QRTagAll ("we", "our", or "us") respects your privacy and is committed to protecting it through this Privacy Policy.

Information We Collect

When you use QRTagAll, we may request access to your basic Google account information (such as your email address) during the QR ownership claiming process. This information is used solely to identify you as the owner of a claimed QR code.

How We Use Your Information

Your email address is used to establish ownership of QR codes you claim on our platform. If a QR owner adds a Contact by Email artifact, visitors who choose to send a message must sign in with Google (email only). Their verified email address and message are forwarded to the QR owner by QRTagAll and logged in our master registry Messages sheet (serial, sender, recipient QR ID, content, and timestamp). Owner email addresses are not shown on the public QR page. Owners may send one anonymous reply per message via a secure link in the notification email; the reply is emailed to the guest without disclosing the owner's email address.

If a QR owner adds a Custom Email artifact, visitors sign in with Google (email only) and may send a short message (up to 300 characters, limited per day per QR page). QRTagAll delivers that message by email to the owner's configured To recipients and copies configured CC recipients. To/CC addresses are stored in the owner's spreadsheet and are not shown on the public QR page. Message metadata (serial, sender, QR ID, content snapshot, and timestamps) is logged in our master registry Messages sheet. To recipients may send one reply per thread via a secure link (Google sign-in must match a To address); that reply is emailed to the guest, other To recipients, and all CC recipients. CC recipients are observe-only and cannot reply through QRTagAll.

We do not sell, rent, or share your personal information with unrelated third parties.

Google OAuth Consent

QRTagAll uses Google OAuth to sign you in. For all claims we request your Google account email. If you choose Data in GDrive, we also request drive.file so we can create and update only the QRTagAll folder and spreadsheet this app creates for your QR under My Drive > QRTagAll > {your QR ID}. We do not request access to your other Google Drive files or spreadsheets.

GDrive claim and artifact saves run in your browser on process.qrtagall.com using Google's Drive API. Authentication tokens are handled through Google's secure systems.

Google User Data — Retention

Email address: Stored in your browser session and in our master registry row for your claimed QR ID so we can verify ownership. We retain this while your QR remains claimed and you use the service.

Google Drive / Sheets data (GDrive path): QRTagAll does not copy your Drive files or spreadsheet contents to our servers. Your artifacts remain in your Google account until you delete them. Registry metadata (your email, a link to your sheet, and storage type) is kept in our master registry while the QR is claimed.

OAuth tokens: Access tokens used for sign-in are stored locally in your browser session storage only for the current session and are not sold or used for advertising.

Google User Data — Deletion

You can delete or revoke Google user data as follows:

  • Revoke app access: Google Account → Security → Third-party access → remove QRTagAll.
  • Delete your Drive data: In Google Drive, delete the folder QRTagAll and/or the spreadsheet for your QR ID.
  • Release a claimed QR: Contact us at qrtagall@gmail.com to request removal of your email and registry entry for a specific QR ID.
  • Session data: Sign out in the app or clear your browser site data for process.qrtagall.com to remove locally stored tokens.

After revocation or deletion, we no longer access your Google account except where minimal registry data remains until you request registry cleanup.

Data Storage

Information associated with your assets (such as text, images, or documents) is stored in your personal Google Drive, under folders you control, when you choose GDrive storage. QRTagAll does not host your uploaded files on our own servers for that path.

Data Sharing and Disclosure

We do not share your personal information with external parties. All information remains private to you unless you explicitly choose to make certain asset information public.

Security

We prioritize your data security. All communications are encrypted, and we rely on trusted Google authentication methods to protect your account identity.

Third-Party Services

QRTagAll integrates with Google APIs (Google Sheets, Google Drive, Google OAuth). By using our service, you also agree to Google's respective Privacy Policies and Terms of Service.

Changes to This Policy

We may update our Privacy Policy from time to time. Any changes will be posted on this page with a revised effective date.

Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at: qrtagall@gmail.com