1. Introduction
SnappyRatings LLC, operating as SnappyRatings ("we", "our", "us"), respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, and protect your data.
2. Information We Collect
A. Business Account Information
- Name
- Email address
- Business name
- Login credentials
- Billing information (processed via Stripe)
B. QR Scan Data
- IP address of the device that scanned the QR code
- User agent (browser/device type)
- Timestamp of the scan
This data is used solely to power scan count analytics in your dashboard. It is not sold or shared with third parties.
C. Technical Information
- IP address
- Browser type
- Device information
- Cookies and usage data
3. How We Use Information
We use personal data to:
- Provide and maintain the Service
- Process payments via Stripe
- Send account and billing notifications
- Send email and SMS review invitations on behalf of businesses (where the business has provided customer contact details)
- Improve security and functionality
- Prevent fraud or abuse
We do not sell personal information.
4. Payments
Payments are processed through Stripe. We do not store full payment card details. Payment data is subject to Stripe's privacy practices.
5. Third-Party Services
We use the following third-party services to operate the platform. Each has its own privacy policy governing how it handles data:
- Stripe — payment processing and subscription billing
- Resend — transactional and invitation email delivery
- Infobip — SMS message delivery
- Printful — printing and fulfillment of physical QR card orders (shipping address is shared with Printful for order fulfillment)
- Google Analytics — aggregate website usage analytics (anonymized)
We do not sell your personal information to any of these or any other third parties.
6. Email & SMS Outreach
All plans include email and SMS review invitation tools. When a business uses these features:
- Customer contact details (email addresses and phone numbers) provided by the business are used solely to send review invitations on that business's behalf
- SnappyRatings acts as a Data Processor for this contact data — it is not used for any other purpose, shared with third parties, or retained beyond what is necessary to deliver the invitations
- Businesses are responsible for ensuring they have obtained proper consent from their customers before submitting contact details for outreach
- SMS messages are delivered via third-party carriers; standard messaging rates may apply for recipients
7. QR Code Destination URLs
The destination URL you configure for your QR code (typically a Google review page) is stored on our servers. When a customer scans your card, they are redirected to that URL. We do not control or store any data from the destination page — that is governed by the third-party platform (e.g. Google) the URL belongs to.
8. Data Retention
We retain information as long as necessary to:
- Provide services
- Meet legal obligations
- Resolve disputes
Users may request deletion at any time.
9. Data Security
We implement reasonable technical and organizational safeguards. However, no method of transmission over the internet is 100% secure.
10. Cookies
We use the following cookies:
- Session cookie (strictly necessary): Keeps you signed in to your account. Expires after 30 minutes of inactivity. The Service cannot function without this cookie.
- Google Analytics cookies (_ga, _ga_*): Used to understand aggregate website traffic and usage patterns (e.g. which pages are visited most). These are analytics cookies set by Google. No personally identifiable information is sent to Google through these cookies.
You may disable cookies in your browser settings. Disabling the session cookie will prevent you from signing in. Disabling analytics cookies will not affect your use of the Service.
11. Regional Privacy Rights
A. California Residents (CCPA / CPRA)
If you are a California resident, you have the right to know what personal information we collect, request access to your data, request deletion, request correction, opt out of sale or sharing (we do not sell data), and not be discriminated against for exercising your rights.
To exercise your rights, contact: support@snappyratings.net
B. European Union (GDPR)
If you are located in the EEA, we process personal data under contractual necessity, legitimate interest, legal obligation, and consent (where required). You have the right to access, rectify, erase, restrict, object to processing, data portability, and withdraw consent. You may lodge a complaint with your local data protection authority.
C. United Kingdom (UK GDPR)
UK users have the same rights as EU users under UK GDPR and the Data Protection Act 2018. Complaints may be made to the UK Information Commissioner's Office (ICO).
12. International Data Transfers
Your data may be processed in countries outside your residence. Where required, we implement appropriate safeguards.
13. Data Controller Information
For business account data and QR scan analytics, SnappyRatings acts as a Data Controller. For any data processed on behalf of businesses (e.g. email/SMS invitation lists), SnappyRatings acts as a Data Processor.
Contact: support@snappyratings.net
14. Children's Privacy
The Service is not intended for individuals under 18.
15. Changes to This Policy
We may update this Privacy Policy periodically. Continued use of the Service constitutes acceptance of changes.
16. Contact Information
SnappyRatings LLC (operating as SnappyRatings)
Email: support@snappyratings.net