QRShield logo

QRShield Enterprise

 ← Back to Scanner

Privacy Policy

Effective Date: April 2026
Developed By: Team Eagle (BS Cyber Security & Digital Forensics, The Islamia University of Bahawalpur)

1. Information We Collect

QRShield operates as an academic cybersecurity research product designed to detect malicious QR codes and URLs. When you use our service, we collect limited non-personally identifiable information required for structural threat analysis:

  • QR Code Imagery: Images containing QR codes submitted for analysis. These images are kept temporarily in memory for deep learning evaluation and discard mechanisms.
  • Scanned URLs: Decoded Uniform Resource Locators (URLs) extracted from the QR codes to analyze structural and lexical threats via Machine Learning.
  • Global Live Threat Feed Data: The application timestamps and broadcasts non-private scanned domains on the public live threat ticker for statistical academic demonstration.

2. Uncollected Information

Because QRShield is an active security mitigation product, we deeply respect our users' privacy. We do not collect:

  • Personally Identifiable Information (PII) such as Names, Addresses, or Contact Numbers.
  • Camera hardware or continuous system level recordings (images capture is explicitly manual).
  • Personal credentials or data accessed maliciously by analyzed URLs.

3. Real-Time Tracking & Database Retention

URLs processed through the engine are added to an internal academic log database for system tuning and to power the Live Global Threat Feed simulator. The associated labels (Malicious, Suspicious, Safe) and domain names will be visible to concurrent system users. Database structures are ephemeral and subject to erasure during server rebuilds.

4. Academic and Commercial Limitations

This software is produced as a Senior Design Capstone Project for the Department of Information and Communication Engineering at IUB. The developers (Team Eagle) are not liable for direct, indirect, incidental, or consequential damages resulting from false positives or false negatives during threat analysis. All data generated acts as a tool for cyber forensics and does not constitute legally binding determinations of domain intent.

5. Contact Information

For research queries regarding data management or internal Machine Learning parameter requests, please reach out to Team Eagle via the Contact Team page.