Privacy Policy
Last updated: February 2026. Your privacy is important to us.
1. Information We Collect
We collect the following categories of information:
- Account Information: Email address, password (hashed), account type (Personal/Business)
- Payment Information: Processed and stored securely by Stripe. We do not store full card numbers.
- Content Data: Intellectual property assets, documents, and metadata you upload for protection
- Usage Data: Device fingerprints, access logs, timestamps, and interaction history
- Geo Data: Country and language detected from request headers for jurisdiction-appropriate service
2. How We Use Your Information
- To provide and maintain the Service (IP protection, QR Vault, TapQR payments)
- To process transactions and send payment confirmations
- To create timestamped ownership records and SHA-256 integrity hashes
- To run IP surveillance scans and prior art searches on your behalf
- To detect and prevent fraud, duplicate accounts, and unauthorized access
- To provide jurisdiction-appropriate patent and IP guidance
- To communicate service updates, security alerts, and support responses
3. Data Sharing
We do not sell your personal information. We share data only with:
- Stripe: For payment processing (subject to Stripe's Privacy Policy)
- Patent Databases: We query public patent databases (PatentsView, Google Patents, USPTO) using your asset descriptions for similarity scanning. No personal data is transmitted.
- Law Enforcement: When required by law, subpoena, or court order
4. Data Security
We implement industry-standard security measures including:
- SHA-256 content hashing for asset integrity verification
- HMAC-SHA256 cryptographic token signing for payment attestation
- Bcrypt password hashing with automatic salting
- Immutable evidence ledger with chained hash integrity
- Session-based authentication with secure cookie handling
- Device fingerprinting for unauthorized access detection
5. Data Retention
We retain your data for as long as your account is active or as needed to provide the Service. IP protection records and ownership ledger entries are retained permanently to preserve your proof of creation. You may request deletion of your account and personal data by contacting support. Certain records may be retained as required by law.
6. Cookies & Tracking
We use session cookies for authentication and account management. We do not use third-party advertising cookies or tracking pixels. Device fingerprinting is used solely for security and fraud prevention purposes.
7. Your Rights
Depending on your jurisdiction, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your data (subject to legal retention requirements)
- Object to processing of your data
- Data portability — receive your data in a structured format
To exercise these rights, contact support@eternamark02.digital.
8. Children's Privacy
The Service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will delete it promptly.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. Continued use of the Service after changes constitutes acceptance of the updated policy.