Cookie Policy
Last updated: February 21, 2026
1. What Are Cookies
Cookies are small text files placed on your device when you visit a website. They are used to keep you signed in, remember preferences, and help us understand how our platform is being used. This policy describes exactly which cookies TheQRCode.io sets and why.
2. Essential Cookies
These cookies are required for the platform to function. They are set automatically when you use the service and cannot be disabled.
| Cookie | Lifetime | Purpose |
|---|---|---|
| next-auth.session-token | Session / persistent | Keeps you signed in to your account |
| next-auth.csrf-token | Session | Protects against cross-site request forgery attacks |
| next-auth.callback-url | Session | Stores where to redirect you after signing in via Google or GitHub |
3. Functional Cookies
These cookies support specific features of the platform. They are short-lived and deleted automatically once they have served their purpose.
| Cookie | Lifetime | Purpose |
|---|---|---|
| signupPlan | 10 minutes | Temporarily stores your selected pricing plan during the signup flow. Deleted once your subscription is set up. |
4. Analytics Cookies
We use analytics to understand how visitors use TheQRCode.io so we can improve the platform. We use Matomo, a self-hosted analytics tool, which means your data stays on our own infrastructure and is not shared with third-party advertising networks.
| Cookie | Lifetime | Purpose |
|---|---|---|
| _pk_id | 13 months | Matomo — identifies returning visitors (anonymized) |
| _pk_ses | 30 minutes | Matomo — tracks the current browsing session |
5. Third-Party Cookies
The following third-party services may set their own cookies when you interact with certain features. We do not control these cookies and you should refer to each provider's privacy policy for details.
Google Ads
We use Google Ads conversion tracking to measure the effectiveness of our advertising. Google may set cookies on your device for this purpose. You can opt out via Google's Ad Settings.
Google & GitHub (Sign-in)
If you sign in using Google or GitHub, those providers set their own authentication cookies. These are governed by their respective privacy policies.
Stripe (Payments)
We use Stripe to process payments. Stripe may set cookies during the checkout process for fraud prevention and security purposes. See the Stripe Privacy Policy for details.
6. Managing Cookies
You can control and delete cookies through your browser settings. Common options include:
- Viewing and deleting cookies stored on your device
- Blocking cookies from specific websites or all third parties
- Setting your browser to notify you when cookies are being set
Disabling essential cookies will prevent you from signing in and using authenticated features of the platform. Analytics and functional cookies can be blocked without affecting core functionality.
7. Changes to This Policy
We may update this Cookie Policy when we add or change features that affect cookies. The "Last updated" date at the top of this page will reflect any changes.
8. Contact Us
If you have any questions about our use of cookies, please contact us:
Email: support@theqrcode.io