← Back to UPIPE Privacy · Last updated

Privacy Policy

Your privacy matters. Here is exactly what UPIPE does and does not collect.

1. What we collect

  • Form inputs (UPI ID, account number, IFSC, name, amount, note) — processed entirely in your browser to build a UPI link and render a QR code. They are not transmitted to our servers.
  • Standard web logs — Cloudflare records IP addresses, user-agent strings, and timestamps for security and abuse prevention.
  • Analytics (only with your consent) — if you accept the cookie banner, we load a privacy-respecting analytics script to count visits and understand which sections are used. If you decline, no analytics scripts load.

2. What we don’t do

  • We don’t sell your data.
  • We don’t share it with advertisers.
  • We don’t store the contents of the QR codes or payment links you generate.

3. India’s DPDP Act 2023

Under the Digital Personal Data Protection Act, 2023, you have the right to access, correct, or erase any personal data we hold about you, the right to grievance redressal, and the right to nominate someone to exercise your rights. Because UPIPE does not collect personal data beyond standard web logs and (optionally) analytics, most of these rights are satisfied by simply not using the site or by declining analytics consent.

For any data-related request or grievance, contact our Grievance Officer through the contact form. We will respond within the timelines required by the DPDP Act.

4. Cookies

We use only one functional cookie: a small localStorage entry that remembers your theme (light / dark) and consent choice. If you accept analytics, the analytics tool may set its own cookies; you can revoke consent at any time by clearing site data in your browser.

5. Third-party links

UPIPE links to third-party sites (NPCI, banks, payment service providers, Google Forms for contact). We are not responsible for their privacy practices. Review their policies separately.

6. Scope

This service is intended for users in India. We do not target or knowingly collect data from users in the European Union, United Kingdom, or other jurisdictions with comprehensive data protection regimes.

7. Changes

We may update this policy. Material changes will be highlighted at the top of this page for at least 30 days after the change takes effect.