Skip to main content

Privacy Policy

Last Updated: October 29, 2025

At GuardGraph, privacy isn't an afterthought—it's our foundation. This policy explains what data we collect, why we collect it, and how we protect it.

Our Privacy-First Approach

Core Principles

  • Data Minimization: We only collect what's necessary to provide our services
  • No Selling: We never sell or share your data with third parties for marketing
  • Transparency: We're clear about what we collect and why
  • User Control: You can opt out, export, or delete your data at any time
  • On-Device First: LucidQR processes QR codes locally; scan data never leaves your device

What We Collect on guardgraph.com

Analytics (Optional)

We use privacy-friendly, cookieless analytics (Plausible) to understand which pages are useful. This helps us improve the website.

What we track:

  • Page views (aggregated, no unique identifiers)
  • Country (derived from IP address, which is not stored)
  • Referrer (how you found us)
  • Time spent on pages
  • Button/link clicks (for CTAs)

What we don't track:

  • ❌ No cookies
  • ❌ No personal identifiers
  • ❌ No cross-site tracking
  • ❌ No IP address storage
  • ❌ No browser fingerprinting

Your controls:

  • We respect your browser's Do Not Track setting
  • You can opt out via our Analytics & Privacy Settings (footer)
  • Your preference is saved locally and never sent to us

Contact Forms

When you submit a contact or pilot request form, we collect:

  • Name
  • Email address
  • Company (optional)
  • Industry and company size (optional, for understanding our audience)
  • Your message
  • Timestamp
  • Referrer and UTM parameters (to understand how you found us)

How we use it:

  • Respond to your inquiry
  • Understand which industries need our products (ICP analysis)
  • Improve our marketing and outreach

Retention:

  • Contact form data retained for 90 days unless you request earlier deletion
  • Aggregated, anonymized statistics may be kept indefinitely

No Cookies (By Default)

We don't use tracking cookies. The only cookies you might see are:

  • Session cookies: If you log into an enterprise dashboard (future feature)
  • Strictly necessary cookies: For security (e.g., CSRF protection)

We will never use advertising or third-party tracking cookies.

LucidQR App Data Practices

On-Device Processing

LucidQR performs all QR code analysis on your device. Your scan history, scanned URLs, and analysis results never leave your phone.

What We Don't Collect

  • ❌ Scanned QR codes or URLs
  • ❌ Your location
  • ❌ Device identifiers
  • ❌ Usage telemetry
  • ❌ Crash reports (unless you explicitly opt in)

Optional Features (Future)

If we add cloud-based features (e.g., syncing scan history across devices), these will be opt-in and clearly disclosed. We will update this policy before launching any such features.

Third-Party Services

We use minimal third-party services:

  • Plausible Analytics: Privacy-friendly analytics (their policy)
  • Email Provider: Zoho Mail for contact@guardgraph.com (their policy)
  • Hosting: GitHub Pages (static site, no tracking) (their policy)

We do not embed third-party advertising, social media widgets, or tracking pixels.

Your Rights

You have the right to:

  • Access: Request a copy of any data we have about you
  • Correction: Ask us to correct inaccurate information
  • Deletion: Request deletion of your data (subject to legal retention requirements)
  • Opt-Out: Disable analytics tracking at any time
  • Data Portability: Receive your data in a machine-readable format

To exercise any of these rights, email us at contact@guardgraph.com. We will respond within 30 days.

Children's Privacy

Our services are not directed at children under 13. We do not knowingly collect information from children. If you believe we have inadvertently collected data from a child, please contact us immediately.

International Users

GuardGraph LLC is based in New Mexico, USA. If you are accessing our services from outside the United States, please note that your data may be transferred to and processed in the United States.

For users in the European Economic Area (EEA): We rely on your consent for analytics (which you can withdraw) and contractual necessity for contact forms (to respond to your inquiry).

Changes to This Policy

We may update this policy from time to time. If we make material changes, we will:

  • Update the "Last Updated" date at the top
  • Notify users via email (if we have your contact information)
  • Post a notice on our website

We encourage you to review this policy periodically.

Questions About Privacy?

Email us at contact@guardgraph.com or visit our Contact page.