Privacy Policy

Last updated: June 2026

QRPay (“we”, “our”, “us”) is committed to protecting your privacy and handling personal information in a transparent, secure, and lawful way. This Privacy Policy explains how we collect, use, store, and share personal information when you use our services.

This policy applies to merchants, customers, and visitors who interact with QRPay through our websites, applications, QR payment links, and related services.

1. Who We Are

QRPay is a New Zealand–based digital payments platform that enables merchants to accept payments via QR codes using Stripe’s payment infrastructure.

QRPay acts as a technology platform and facilitator. We do not directly process or store card payment details.

2. Information We Collect

Merchant Information

• Full name
• Business name (if applicable)
• Email address
• Phone number
• Bank account details (via Stripe)
• Stripe Connect account ID
• Onboarding and verification status
• Transaction metadata (amounts, timestamps, references)

Customer Information

• Payment amount
• Date and time of payment
• Payment reference or description
• Limited technical data (IP address, device type)

We do not collect or store card numbers or sensitive payment credentials.

Technical Information

• IP address
• Browser and device type
• Log files and error reports
• QR scan and page access events

3. How We Use Your Information

• Create and manage merchant accounts
• Enable QR-based payments
• Facilitate merchant onboarding with Stripe
• Track transactions and payouts
• Provide dashboards and reporting
• Send service updates and important notices
• Detect fraud, abuse, and security issues
• Meet legal and regulatory obligations

4. Payments and Stripe

QRPay uses Stripe as its payment processor.

• All card payments are processed directly by Stripe
• Stripe independently collects and processes payment information
• QRPay only receives transaction summaries and identifiers

Stripe’s use of personal information is governed by their Privacy Policy: https://stripe.com/privacy

5. Sharing Information

We only share personal information when necessary:

• With Stripe to enable payments, payouts, and compliance
• With infrastructure and service providers
• When required by law or regulation
• To protect QRPay, our users, or the public

We do not sell personal information.

6. Data Storage and Security

• Data is stored using secure, access-controlled systems
• Sensitive payment operations rely on Stripe’s PCI-compliant infrastructure
• Access is restricted to authorised personnel only
• We continuously review and improve security practices

7. Data Retention

We retain personal information only for as long as necessary to provide the service, meet legal obligations, resolve disputes, and enforce agreements.

When information is no longer required, it is securely deleted or anonymised.

8. Your Rights

Under the New Zealand Privacy Act 2020, you have the right to:

• Access your personal information
• Request correction of inaccurate information
• Understand how your information is used
• Withdraw consent where applicable

9. Cookies and Tracking

QRPay uses minimal cookies or similar technologies to maintain session functionality, improve performance, and monitor reliability. We do not use third-party advertising trackers.

10. Third-Party Links

Our services may link to third-party websites (including Stripe). We are not responsible for their privacy practices.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

12. Contact Us

By using QRPay, you acknowledge that you have read and understood this Privacy Policy.