Summary of our Privacy Policy
It covers QRkey – a brand of OrderFly Private Limited’s (further referred to as QRkey), OrderFly Private limited’s and all the website/platform of all brands and entities of OrderFly Private limited, and all the products and services contained on those websites/platforms. The detailed policy follows the same structure as this summary and constitutes the actual legal document.
This policy tells you what information we collect from you, what we do with it, who can access it, and what you can do about it.
QRkey: A brand of OrderFly Private Limited, a service that allows you to create, send, and manage marketing emails, WhatsApp messages, notifications, and promotional SMS along with a suite of restaurant management software as a service, is provided to you or the entity that you represent (hereinafter "you" or "your") by OrderFly Private Limited (hereinafter "QRkey," "I," "we," "us," "our," "OrderFly"), according to the following terms and conditions (hereinafter "terms") in addition to QRkey/OrderFly's general terms of service and privacy policies. Use of any QRkey platforms signifies your acceptance of the terms and all general terms of use and privacy policies applicable to all platforms and services of QRkey/OrderFly Private Limited. If you do not agree to the terms, do not proceed or use QRkey or OrderFly platforms in any manner.
Last updated on: 10th Sep 2024.
Part I – Information QRkey collects and controls
We only collect the information that we actually need. Some of that is information that you actively give us when you sign up for an account, register for an event, ask for customer support, or buy something from us. We store your name and contact information.
When you visit one of our websites or use our software, we automatically log some basic information like how you got to the site, where you navigated within it, and what features and settings you use. We use this information to improve our websites and services, drive new product development, and suggest suitable solutions from our existing services suite.
Sometimes we receive information indirectly. If you ask about our products through one of our referral programs or reselling partners, or sign in to one of our products through an authentication service provider like LinkedIn or Google, they'll pass on your contact information to us. We'll use that information to complete the request that you made. If you engage with our brand on social media (for instance, liking, commenting, retweeting, mentioning, or following us), we'll have access to your interactions and profile information. We may still have that information even if you later remove it from the social media site.
What we do with your information
We use your information to provide the services you've requested, create and maintain your accounts. We also use it to communicate with you about the products you're currently using, your customer support requests, new products you may like, chances for you to give us feedback, and policy updates. We analyze the information we collect to understand user needs and improve our websites and services.
We limit access to your personal information to our employees and contractors who have a legitimate need to use it. If we share your information with other parties (like developers, service providers, domain registrars, and reselling partners), they must have appropriate security measures and a valid reason for using your information, typically to serve you.
Part II – Information that QRkey processes on your behalf
If you handle other people's data using QRkey apps, such as information about your customers or employees, you are entrusting that data to us. If you use a QRkey mobile app and give the app access to your contacts and photo library, you are entrusting data to us. The data you entrust to us for processing is called service data.
Upon entrusting such service data to us, you also assign complete ownership of such data in its original and processed format both to QRkey, and it shall solely be QRkey’s responsibility to protect such data, limit access, and process it as it may deem fit. All behavioral and further processed forms of data and information on the original entrusted data shall also be completely owned by QRkey and shared with you as QRkey may deem fit.
We also hold the originally provided customer data in your account as long as you use QRkey services. After you terminate your account, your access to such data will be automatically restricted with immediate effect.
Part III – General
There are limitations to the privacy we can promise you. We will disclose personal information if it's necessary to comply with a legal obligation, prevent fraud, enforce an agreement, or protect our users' safety.
Third-party websites and social media widgets have their own separate privacy policies. Always check the relevant privacy policy before sharing personal information with third parties.
We will contact you to let you know if we make any major changes to our privacy policy, or in the highly unlikely event that we ever decide to sell our business.
Privacy Policy
This Privacy Policy statement is made by the QRkey: A brand of OrderFly Private Limited and all Group entities/brands further referred to as "OrderFly," "QRkey," "we," "us," or "our".
Scope of this Privacy Policy
This Privacy Policy applies to all OrderFly Private Limited, QRkey – a brand of OrderFly Private Limited websites, platforms, and applications that link to it. It also applies to the products and services provided by QRkey through these websites, our mobile applications, and applications posted by QRkey on online marketplaces and in other third-party online marketplaces.
This Privacy Policy is divided into three parts:
Part I – Information QRkey collects and controls
This part deals with how QRkey collects and uses information about website/platform visitors, potential customers, users of QRkey's products and services, and others who contact QRkey through forms or email addresses published on or linked to our websites.
Part II – Information that QRkey processes on your behalf and how it collects and controls such information
This part deals with how QRkey handles data that you entrust to QRkey when you use our products and services, or when you share any personal or confidential information with us while requesting customer support.
Part III – General
This part deals with topics that are relevant to both Parts I and II, and other general topics such as QRkey's security commitments and how we will inform you when we change this Privacy Policy.
Part I – Information QRkey Collects and Controls
What information QRkey collects
We collect information about you only if we need the information for some legitimate purpose. QRkey will have information about you only if (a) you have provided the information yourself, (b) QRkey has automatically collected the information, or (c) QRkey has obtained the information from a third party. Below, we describe the various scenarios that fall under each of those three categories and the information collected in each one.
Information that you provide us
i. Account signup: When you sign up for an account to access one or more of our services, we ask for information like your name, contact number, email address, company name, location, and other operational information, etc., to complete the account signup process. You'll also be required to choose a unique username and a password for accessing the created account. You may also provide us with more information, such as your photo, time zone, and language, but these may or may not be required to sign up for an account.
ii. Event registrations and other form submissions: We record information that you submit when you (i) register for any event, including webinars or seminars, (ii) subscribe to our newsletter or any other mailing list, (iii) submit a form in order to download any product, whitepaper, or other materials, (iv) participate in contests or respond to surveys, or (v) submit a form to request customer support, get a quote, or contact QRkey for any other purpose.
iii. Payment processing: When you buy something from us, we ask you to provide your name, contact information, and credit card information or other payment account information. When you submit your card information, we may store the name and address of the cardholder, the expiry date, and the last four digits of the credit card number.
iv. Testimonials: When you authorize us to post testimonials about our products and services on websites, we may include your name and other personal information in the testimonial. You will be given an opportunity to review and approve the testimonial before we post it. If you wish to update or delete your testimonial, you can contact us at support@qrkey.in.
v. Interactions with QRkey: We may record, analyze, and use your interactions with us, including email, telephone, and chat conversations with our sales and customer support professionals, to improve our interactions with you and other customers.
Information that we collect automatically
i. Information from browsers, devices, and servers: When you visit our websites, we may collect information that web browsers, mobile devices, and servers make available, such as the Internet Protocol (IP) address, browser type, language preference, time zone, referring URL, date and time of access, operating system, mobile device manufacturer, and mobile network information. We include these in our log files to better understand visitors to our websites.
ii. Information from cookies and tracking technologies: We use temporary and permanent cookies to identify users of our services and enhance the user experience. We embed unique identifiers in our downloadable products to track the usage of the products. We also use cookies, beacons, tags, scripts, and other similar technologies to identify visitors, track website navigation, gather demographic information about visitors and users, understand email campaign effectiveness, and engage with visitors and users by tracking activities on our websites.
iii. Information from application logs and mobile analytics: We collect information about your use of our products, services, and mobile applications from application logs and in-house usage analytics tools. We use this information to understand how you use our products and how we can improve them. This information includes clicks, scrolls, features accessed, access time and frequency, errors generated, performance data, storage utilized, user settings and configurations, and the devices and locations used to access our services.
Information that we collect from third parties
i. Signups using federated authentication service providers: You can log in to QRkey services using supported federated authentication service providers such as LinkedIn, Microsoft, and Google. These services will authenticate your identity and give you the option to share certain personal information with us, such as your name and email address.
ii. Referrals: If someone has referred any of our products or services to you through one of our referral programs, that person may have provided us with your name, email address, and other personal information. You may contact us at support@qrkey.in to request that we remove your information from our database.
iii. Information from our reselling partners and service providers: If you contact any of our reselling partners or otherwise express interest in any of our products or services to them, the reselling partner may pass your name, email address, company name, and other information to QRkey. If you register for or attend an event sponsored by QRkey, the event organizer may share your information with us. QRkey may also receive information about you from review sites if you comment on any review of our products and services, and from other third-party service providers that we engage for marketing our products and services.
iv. Information from social media sites and other publicly available sources: When you provide feedback or reviews about our products, or interact with us on marketplaces, review sites, or social media platforms such as Facebook, Twitter, LinkedIn, and Instagram through posts, comments, questions, and other interactions, we may collect such publicly available information, including profile information, to allow us to connect with you, improve our products, better understand user reactions and issues, or reproduce and publish your feedback on our websites. Please note that once collected, this information may remain with us even if you delete it from these sites. QRkey may also add and update information about you from other publicly available sources.
Purposes for using information
In addition to the purposes mentioned above, we may use your information for the following purposes:
· To communicate with you (e.g., through email) about products you have downloaded, services you have signed up for, changes to this Privacy Policy, changes to the Terms of Service, or important notices;
· To keep you informed about new products and services, upcoming events, offers, promotions, and other information that we think will be of interest to you;
· To keep you updated and market products and services sold and offered by our partners, including their upcoming events, offers, promotions, and other information about their businesses that we think may be of interest to you;
· To ask you to participate in surveys or to solicit feedback on our products and services;
· To set up and maintain your account, and to do all other things required for providing our services, including but not limited to engaging with your customers using multiple communication channels, usage of our SaaS solutions, and other platform services, and to promote, upsell, and cross-sell our partner products and services;
· To understand how users utilize our or our partners' products and services, to monitor and prevent problems, and to improve our or their products and services;
· To provide customer support and analyze and improve our interactions with customers;
· To detect and prevent fraudulent transactions and other illegal activities, to report spam, and to protect the rights and interests of QRkey, QRkey’s users, third parties, and the public;
· To update, expand, and analyze our records, identify new customers, and provide products and services that may be of interest to you;
· To analyze trends, administer our websites, and track visitor navigation on our websites to understand what visitors are looking for and to better assist them;
· To monitor and improve marketing campaigns and make suggestions relevant to the user.
Who we share your information with
All OrderFly brands and entities have access to your information. We share your information only in the ways that are described in this Privacy Policy.
· Employees and independent contractors: Employees and independent contractors of relevant OrderFly group entities have access to the information on a need-to-know basis.
· Third-party service providers: We may need to share your personal information, and aggregated or de-identified information, with third-party service providers that we engage, such as marketing and advertising partners, event organizers, web analytics providers, and payment processors. QRkey does not control the use of your personal information by these parties, which will be governed by their own privacy policies.
· Reselling partners: We may share your personal information with our reselling partners solely for the purpose of contacting you about products you have downloaded or services you have signed up for. QRkey does not control the use of your personal information by these parties, which will be governed by their own privacy policies.
· Marketplace application developers: When you install or purchase any application developed using QRkey's APIs that is posted on an online marketplace, your name, email address, and other necessary details may be shared with the developer of the application so they can engage with you directly as the provider of that application or service. QRkey does not control the use of your personal information by these parties, which will be governed by their own privacy policies.
Other cases: Other scenarios in which we may share the same information covered under Parts I and II are described in Part III.
Retention of Information
We retain your service information for as long as it is required by QRkey or OrderFly and its group entities/brands. Sometimes, we may retain your information for longer periods as permitted or required by law, such as to maintain suppression lists, prevent abuse, if required in connection with a legal claim or proceeding, to enforce our agreements, for tax, accounting, or to comply with other legal obligations. When we no longer have a legitimate need to process your information, we will delete or anonymize your information from our active databases, and this decision is solely at the discretion of QRkey.
Part II – Information That QRkey Processes on Your Behalf and How It Collects and Controls Such Information
Information Entrusted to QRkey
Information Provided in Connection With Services: You may entrust information that you or your organization (“you”) control to QRkey in connection with the use of our services or for requesting technical support for our products. This includes information regarding your customers and your employees (if you are a controller) or data that you hold and use on behalf of another person for a specific purpose, such as a customer to whom you provide services (if you are a processor). The data may either be stored on our servers when you use our services or transferred or shared with us as part of a request for technical support or other services.
Information From Mobile Devices: When you elect to allow it, some of our mobile applications have access to the camera, microphone, call history, contact information, photo library, files, and other information stored on your mobile device. Our applications require such access to provide their services. Similarly, when you elect to provide access, location-based information is also collected for purposes including, but not limited to, locating nearby contacts or setting location-based reminders. This information may be shared with our mapping providers and will be used only for mapping user locations and stored with us to provide you with continued services and information. You may disable the mobile applications' access to this information at any time by editing the settings on your mobile device. The data transferred, shared, and stored by us shall remain with QRkey and may be utilized and processed as QRkey deems fit.
(All the information entrusted to QRkey is collectively termed “service data.”)
Ownership and Control of Your Service Data
If you handle/process other people's data using QRkey apps, such as information about your customers or employees, you are entrusting that data to us. If you use a QRkey mobile app and give the app access to your contacts and photo library, you are entrusting data to us. The data you entrust to us for processing is called service data.
Upon entrusting such service data to us, you also assign complete ownership of such data in its original and processed format to QRkey. It shall be QRkey’s sole responsibility to protect such data, limit access, and process it as deemed fit. All behavioral and further processed forms of data and information based on the original entrusted data shall also be solely owned by QRkey and shall be shared with you at QRkey’s discretion.
We will also hold the originally provided customer data in your account as long as you use QRkey services. After you terminate your account, your access to such data will be automatically restricted with immediate effect.
How We Use Service Data
We process your service data when you provide us with instructions through the various modules of our services. However, QRkey may also process this data for other activities, including but not limited to engagement to promote, cross-sell, and upsell QRkey products and services, as well as partner products and services. For example, when you execute a WhatsApp campaign using our engagement service, service data such as the name, number, email, and address of your customer will be used to process your campaign request. However, the same service data may also be processed by QRkey to understand customers' ordering behavior and to promote, cross-sell, and upsell QRkey products, services, and partner products and services.
Push Notifications
If you have enabled notifications on our desktop and mobile applications, we will push notifications through a push notification provider such as Apple Push Notification Service, Google Cloud Messaging, or Windows Push Notification Services. You can manage your push notification preferences or deactivate these notifications by turning off notifications in the application or device settings.
Who We Share Service Data With
QRkey Group and Third-Party Sub-processors: In order to provide services and technical support for our products, the contracting entity within the QRkey group may engage other group entities and third parties. QRkey does not control the use of your personal information by these parties, which will be based on their own privacy policies.
Employees and Independent Contractors: We may provide access to your service data to our employees and individuals who are independent contractors of the QRkey group entities involved in providing the services (collectively, our “employees”) so that they can (i) identify, analyze, and resolve errors, (ii) manually verify emails reported as spam to improve spam detection, or (iii) manually verify scanned images that you submit to us to verify the accuracy of optical character recognition. Our employees will also have access to data that you knowingly share with us for technical support or to import data into our products or services. We communicate our privacy and security guidelines to our employees.
Collaborators and Other Users: Some of our products or services allow you to collaborate with other users or third parties. Initiating collaboration may enable other collaborators to view some or all of your profile information. QRkey does not control the use of your personal information by these parties, which will be based on their own privacy policies.
Third-Party Integrations You Have Enabled: Most of our products and services support integrations with third-party products and services. If you choose to enable any third-party integrations, you may be allowing the third party to access your service data and personal information about you. We encourage you to review the privacy practices of the third-party services and products before you enable integrations with them. QRkey does not control the use of your personal information by these parties, which will be based on their own privacy policies.
Other Cases: Other scenarios in which we may share information that are common to information covered under Parts I and II are described in Part III.
Retention of Information
We retain your service information for as long as it is required by QRkey or OrderFly and its group entities/brands. Sometimes, we may retain your information for longer periods as permitted or required by law, such as to maintain suppression lists, prevent abuse, if required in connection with a legal claim or proceeding, to enforce our agreements, for tax, accounting, or to comply with other legal obligations. When we no longer have a legitimate need to process your information, we will delete or anonymize your information from our active databases, and this decision is solely at the discretion of QRkey.
Part III – General
Locations and International Transfers
We share your personal information and service data within the OrderFly Group and with third parties engaged by OrderFly Group for the purposes described above. By accessing or using our products and services or otherwise providing personal information or service data to us, you understand the processing, transfer, and storage of your personal information or service data within all geographies where QRkey operates.
Automation and Artificial Intelligence
In order to provide enhanced productivity and predictive capabilities to our users, we may employ a variety of technologies such as regex parsing, template matching, artificial intelligence, and machine learning. QRkey may process your personal and service data using these technologies to improve the accuracy of the algorithms and your service data for developing models that can potentially help us improve our offerings and services.
Do Not Track (DNT) Requests
Some internet browsers have enabled 'Do Not Track' (DNT) features, which send out a signal (called the DNT signal) to the websites that you visit indicating that you don't wish to be tracked. Currently, there is no standard that governs what websites can or should do when they receive these signals. For now, we do not take action in response to these signals.
External Links on Our Websites
Some pages of our websites may contain links to websites that are not linked to this Privacy Policy. If you submit your personal information to any of these third-party sites, your personal information is governed by their privacy policies. As a safety measure, we recommend that you not share any personal information with these third parties unless you've checked their privacy policies and assured yourself of their privacy practices.
Blogs and Forums
QRkey offers publicly accessible blogs and forums. Be cautious when disclosing personal information in these spaces, as they may be used to contact you unsolicited. QRkey is not responsible for any information you publicly share. Even after account termination, your posts and profile may remain visible.
Social Media Widgets
Our websites include social media features like Facebook’s "like" button and Twitter’s "tweet" button. These widgets may collect your IP address and browsing data to function correctly. Interactions with these widgets are governed by the privacy policies of the companies providing them.
Legal Compliance Disclosures
We may disclose your personal information to comply with legal obligations, including regulations, legal processes, and national security requests.
Rights Enforcement
We may share personal information with third parties if required for business purposes, fraud prevention, enforcing policies, or protecting user safety.
Business Transfers
In the unlikely event of a merger, acquisition, or sale, privacy policies may change. We'll notify you of any such changes through email or website announcements.
Policy Updates
We may modify this Privacy Policy at any time. If changes affect your rights, you can opt to terminate your use within 7 days of notification. Continued use indicates acceptance of the revised policy.
OrderFly Platforms Policies
The privacy policies across all OrderFly products apply to QRkey users. We encourage you to review these policies via the links provided for each platform.
Web.qrkey.in: https://web.qrkey.in/pages/privacy-policy
OrderFly.in: https://orderfly.in/privacypolicy.html
App.qrkey.in: https://app.qrkey.in/pages/privacy