Preifatrwydd
Ein hathroniaeth
We try to avoid collecting any personal information unless it is absolutely necessary.
We do not receive personal information from any other source or third party, or share or sell any information to anyone else. We don't serve you adverts or show ads from any other party. We don't read cookies set by others, or use external analytics software.
We try to avoid using cookies at all; those we do use are 'strictly necessary', in order for the website to function. We do not set, read or allow any third party or marketing cookies.
Under the UK General Data Protection Regulation (UK GDPR), the lawful basis we rely on for processing the data listed below is termed 'legitimate interest', as it is essential in order for us to provide the service to you.
Any personal data we do store is held in a secure database, encrypted at rest.
If you visit the QR Cymraeg website or scan a QR code generated by QR Cymraeg
In order to detect and prevent suspicious or malicious activity which could risk the stability of the service, we process (but do not routinely store) the IP address of our visitors.
If suspicious activity is detected the IP address may be stored but is deleted after 7 days.
If you visit the QR Cymraeg website and change light/dark mode we will store your preference for this on your device, but only if you agree to this. This information is not shared with us.
If you create a QR code
The only thing we routinely store when creating a QR code which could contain personal information are the URLs (web addresses) which you enter if you ask us to make a bilingual QR code - these have to be stored in order for the QR code to work, as normal QR codes cannot contain two URLs.
Although not usually classified as personal information, this could be the case if you enter a URL which includes information such as an individual's name.
We store URLs securely in our database until the QR code is set to expire. The expiry date can be found in the 'Settings' panel.
If you register to use QR Cymraeg
When you register, we ask for your name, so that we can appropriately greet you when using the website and send you any emails directly relating to your use of QR Cymraeg.
The password you provide when registering and logging in is not stored in our database, only a 'salted' and 'hashed' version which cannot be converted back into the password if the database was accessed maliciously.
If you wish to delete your account for QR Cymraeg, you can do this in 'My account' when logged in, or you can email us at hello@qrcymraeg.com.
In order to keep you logged in to the website while using it, we have to store a cookie on your machine. As the site cannot function without this, this is a 'strictly necessary' cookie.
QR code records
If a QR code record we hold contains personal information in a URL and you would like to exercise your right to have this removed or amended at any point before it is due to expire, please contact us at privacy@qrcymraeg.com
Cwmnïau eraill a all brosesu eich data a gosod cwcis
Gall ein gwesteiwr gwasanaeth gwe Render ynghyd â'r cwmnïau seilwaith gwe y maent yn eu cyflogi, hefyd brosesu eich data. Gall hyn gynnwys trosglwyddo data i'r Unol Daleithiau, sy'n dod o dan gytundeb prosesu data i sicrhau bod safonau GDPR y DU yn dal i gael eu bodloni.
Mae Render yn defnyddio Cloudflare i sicrhau ei rwydwaith ac atal ymosodiadau maleisus. Gall Cloudflare osod cwci(s) er mwyn gwneud hyn a ystyrir yn 'hollol angenrheidiol' ar gyfer gweithrediad diogel y wefan.
Rhoi gwybod am god QR sy'n cysylltu â deunydd sarhaus neu amhriodol
Os ydych chi'n credu bod cod QR a gynhyrchwyd ar QR Cymraeg gan rywun arall yn cysylltu â deunydd sarhaus neu amhriodol, gallwch roi gwybod am y cod trwy glicio 'am y ddolen hon' yna fflagio; neu drwy e-bostio preifatrwydd@qrcymraeg.com.
Cwestiynau neu gŵynion
The data controller is Tom Porter, QR Cymraeg. QR Cymraeg is registered with the Information Commissioner's Office (ICO).
If you have any questions, concerns or a complaint about our use of your personal information, please contact us in the first instance at privacy@qrcymraeg.com.
You can also complain to the Information Commissioner's Office if you are unhappy with how we have used your data.