Privacy Policy

Last updated: 17 May 2026

Summary: We collect and store data needed to run your merchant account, process payments via Stripe, calculate platform fees, and keep the service secure. By registering, you consent to this processing as described below.

1. Who we are

The data controller for the QMetrics platform (“QMetrics”, “we”, “us”) is the operator identified on our website. This Privacy Policy explains how we collect, use, store, and share personal data when you use our Service as a merchant (business user). It should be read with our Terms of Service.

2. Data we collect

2.1 Account data: name, email address, date of birth, password (hashed), login timestamps, and authentication provider identifiers (e.g. Google ID if you use Google sign-in).

2.2 Business profile: merchant handle, display name, business country, and settings you enter in the dashboard.

2.3 Payment and transaction data: offering titles and prices, payment amounts, currencies, statuses, Stripe session and payment identifiers, customer email addresses supplied at checkout (where provided by Stripe), platform fees applied, and monthly processing volume used for automated fee tiers.

2.4 Stripe Connect data: Stripe connected account ID and onboarding status (e.g. whether charges are enabled). Identity and bank details are collected directly by Stripe under Stripe’s privacy policy.

2.5 Technical and security data: IP address, browser type, device information, session cookies, and logs used for fraud prevention, debugging, and service operation.

2.6 Communications: emails we send (verification, password reset, service notices) and support correspondence if you contact us.

2.7 Consent records: timestamps and policy versions when you accept the Terms of Service and this Privacy Policy.

3. How we use your data

We process personal data to:

  • create and manage your merchant account;
  • provide hosted payment pages and dashboards;
  • integrate with Stripe Connect and apply platform fees;
  • calculate monthly processing volume and fee tiers;
  • send verification and account-related emails;
  • maintain security, prevent abuse, and comply with law;
  • improve and develop the Service; and
  • enforce our Terms and protect our legal rights.

4. Legal bases (UK / EEA)

Where UK GDPR or EU GDPR applies, we rely on: contract (to provide the Service); legitimate interests (security, analytics, improving the Service, fraud prevention); legal obligation (where required); and consent (where you tick acceptance boxes at registration or for optional communications).

5. Storage and retention

5.1 Data is stored on servers used to operate QMetrics (which may be located in the UK or other countries). We retain account and transaction records while your account is active and for a reasonable period afterward for legal, tax, and dispute purposes (typically up to seven years where required for financial records, unless a shorter period applies).

5.2 You may request deletion of your account subject to legal and Stripe retention requirements; some data may remain in backups for a limited time.

6. Sharing your data

We share data only as needed with:

  • Stripe — payment processing and Connect onboarding;
  • Google — if you choose Google sign-in;
  • Hosting and email providers — to run the Service;
  • Authorities — when required by law or to protect rights and safety.

We do not sell your personal data.

7. Customer data

If your customers pay through QMetrics, you are responsible for your own privacy notices to them. We process limited Customer data (such as email and payment metadata) on your behalf to complete transactions. You must have a lawful basis to share that data with us and Stripe.

8. International transfers

Where data is transferred outside the UK/EEA, we use appropriate safeguards (such as standard contractual clauses or adequacy decisions) where required by law.

9. Security

We use reasonable technical and organisational measures (including encryption in transit, access controls, and hashed passwords). No system is completely secure; you must keep your password confidential.

10. Your rights

Depending on your location, you may have rights to access, rectify, erase, restrict, object to processing, data portability, and withdraw consent. You may also complain to the ICO (UK) or your local supervisory authority. To exercise rights, contact us using the details on our website. We may need to verify your identity.

11. Cookies

We use essential session cookies to keep you logged in and operate the Service. We do not use non-essential marketing cookies without consent where required.

12. Children

The Service is for merchants aged 16 and over. We do not knowingly collect data from children under 16.

13. Changes

We may update this policy by posting a new version with an updated date. Material changes may be notified by email or in the dashboard. Continued use after changes constitutes acceptance where permitted by law.

14. Contact

For privacy questions or requests, contact QMetrics using the details published on our website.

← Back to home