We provide a QR code ecosystem for the internet. Businesses of all sizes use our platform and services to create QR codes and manage their marketing campaigns online. Unitag cares about the security and privacy of the personal data that is entrusted to us.
“Personal Data” means any information that relates to an identified or identifiable individual, and can include information about how you engage with our Services (e.g. device information, IP address).
“Services” means the products and services that Unitag indicates are covered by this Policy, which may include Unitag-provided apps.
“Business Services” are Services provided by Unitag to entities (“Business Users”) who directly or indirectly provide us with “End User” Personal Data in connection with those Business Users’ own business and activities.
“Sites” means Unitag.io and the other websites that Unitag indicates are covered by this Policy. Collectively, we refer to Sites, Business Services and End User Services as
Depending on the context, “you” means End Customer, End User, Representative or Visitor:
1.1 End users
We provide End User Services where do not act as a service provider to Businesses but instead provide the Services directly to you for your personal user (e.g. Scan of a QR code). See here for further information on the legal bases which we rely on for using (processing) your Personal Data.
Personal data that we collect about End Users
How we use and share personal data of End Users
1.2 Representatives and Business Users
To provide Business Services, we collect, use and share Personal Information from Representatives of our Business Users (e.g. a business owner). If the Representative is the only employee of a Business User, we refer to you as Business User
Personal data that we collect about Representatives and Business Users
Personal data that we collect about Visitors
In addition to the ways we collect data, use and share Personal Data that are described above, we also process your Personal Data as follows.
2.1. Personal Data Collection
2.2. Personal Data Usage
In addition to the ways described above in which we use Personal Data, we use Personal Data in the following ways
2.3. Personal Data Sharing
For the purposes of the General Data Protection Regulation, we rely upon a number of legal bases to enable our processing of your Personal Data.
a) Contractual and Pre-Contractual Business Relationships. We process Personal Data for the purpose of entering into business relationships with prospective Business Users and End Users and to perform the respective contractual obligations that we have with these Users. Activities include:
b) Legal Compliance. We process Personal Data to verify the identity of our Users in order to comply with fraud monitoring, prevention and detection obligations, laws associated with the identification and reporting of illegal and illicit activity, such as "Anti-Money Laundering ("AML") and Know-Your-Customer ("KYC")" obligations, and financial reporting obligations. For example, we may be required to record and verify a User’s identity for the purpose of compliance with legislation intended to prevent money laundering and financial crimes. These obligations are imposed on us by the operation of law, industry standards, and by our financial partners, and may require us to report our compliance to third parties, and to submit to third party verification audits.
c) Legitimate Business Interests. Where allowed under applicable law, we rely on our legitimate business interests to process Personal Data about you. The following list sets out the business purposes for which we have a legitimate interest in processing your data:
You may have choices regarding our collection, use and disclosure of your Personal Data:
a) Opting out of receiving electronic communications from us
If you no longer want to receive marketing-related emails from us, you may opt-out via the unsubscribe link included in such emails. We will try to comply with your request(s) as soon as reasonably practicable. Please note that if you opt-out of receiving marketing-related emails from us, our Business Users may still send you messages and direct us to send you messages on their behalf.
b) Your data protection rights
Depending on your location and subject to applicable law, you may have the following rights with regard to the Personal Data we control about you:
We make reasonable efforts to provide a level of security appropriate to the risk associated with the processing of your Personal Data. We maintain organisational, technical and administrative measures designed to protect Personal Data covered by this Policy against unauthorised access, destruction, loss, alteration or misuse. Personal Data is only accessed by a limited number of personnel who need access to the information to perform their duties. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure.
To help us protect personal data, we encourage you to use a strong password and never share your password with anyone or use the same password with other sites or accounts. If you have reason to believe that your interaction with us is no longer secure (e.g. you feel that the security of your account has been compromised), please contact us immediately
We retain your Personal Data as long as we are providing the Services to you or our Business Users (as applicable) or for a period during which we reasonably anticipate providing the Services. Even after we stop providing Services directly to you or a Business User with which you are doing business, and even if you close your Stripe account or complete a transaction with a Business User, we retain your Personal Data in order to comply with our legal and regulatory obligations. We may also retain it to allow for fraud monitoring, detection and prevention activities. We also keep Personal Data to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments to our financial partners, and where data retention is mandated by the payment methods you used. In cases where we keep Personal Data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.