Privacy Policy

Last updated: 3 June 2026

This policy explains what personal data Hopcode collects, why, and your rights over it. For the purposes of UK data protection law, Hopcode is the data controller for the data described here. Contact us at hello@hopcode.app.

1. Data we collect

Account data: your email address, an optional name, and a securely hashed password (we never store your password in plain text).
Billing data: payments are handled by Stripe. We store a Stripe customer and subscription identifier so we know your plan — we never see or store your full card details.
Your codes: the titles and destination URLs you create.
Scan analytics: when someone scans one of your codes we log the time, a coarse device type (mobile/desktop/tablet), operating system, browser, referring source, and country. We derive country from the network request via our host; we do not store full IP addresses or precise location, and we do not use this to identify individual scanners.
Essential cookie: a single secure, httpOnly cookie keeps you signed in to your dashboard. We don’t use advertising or third-party tracking cookies.

2. How we use it

to provide the service and your scan analytics;
to process subscriptions and manage your plan;
to keep the service secure and prevent abuse;
to respond to support requests and important notices.

3. Legal bases

We process account and billing data to perform our contract with you, and scan analytics and security data under our legitimate interests in operating and protecting the service. Where the law requires consent, we ask for it.

4. Who we share it with

We use a small number of trusted processors to run Hopcode — including our hosting and database providers and Stripe for payments. They process data only on our instructions. We do not sell your personal data.

5. Retention

We keep account data while your account is active. Scan analytics are retained according to your plan’s history window. When you delete your account, we delete your codes and their associated scan data.

6. Your rights

Under UK GDPR you have the right to access, correct, delete, or port your data, and to object to or restrict certain processing. To exercise these rights, email hello@hopcode.app. You also have the right to complain to the Information Commissioner’s Office (ICO) at ico.org.uk.

7. International transfers

Some of our processors may store or process data outside the UK or EEA. Where they do, we rely on appropriate safeguards such as the UK’s International Data Transfer Agreement or equivalent.

8. Children

Hopcode is intended for businesses and adults. It is not directed at children, and we don’t knowingly collect data from anyone under 18.

9. Changes

We may update this policy from time to time. If we make material changes we’ll take reasonable steps to let you know.