Queuerd

Queuerd Legal

Privacy Policy

Official policy document by Patmos Software LLC.

Privacy Policy

Effective date: March 14, 2026
Last updated: March 14, 2026

This Privacy Policy describes how Patmos Software LLC ("Patmos", "we", "us", or "our") collects, uses, and shares information in connection with the Queuerd platform (queuerd.com) and all related services ("Service").

Queuerd operates primarily in the Americas (United States, Latin America, and Canada). Our infrastructure is hosted in US and Brazil AWS regions.

1. Information We Collect

1.1 Information You Provide to Us (Customers / Tenants)

When you create an account and use the Queuerd dashboard, we collect:

  • Account information: name, email address, company name, domain name
  • Billing information: payment method details (processed by Stripe — we do not store raw card data), billing address
  • Configuration data: queue settings, waiting room branding, protected paths, webhook URLs, IP allowlists
  • Communications: emails, support tickets, or other messages you send us

1.2 Information Collected Automatically (Customers)

When you use the dashboard or interact with our APIs, we collect:

  • Usage data: pages visited, features used, API calls made, timestamps
  • Log data: IP address, browser type, operating system, referring URLs
  • Performance data: response times, error rates

1.3 Information About Your Visitors (End Users)

When your visitors encounter a Queuerd-powered waiting room, we process on your behalf:

  • Anonymous visitor identifier: a UUID generated per session, stored in a cookie (qt_visitor, qt_token) — never linked to personal identity
  • IP address: used for IP allowlist checks and bot detection, not stored permanently
  • Queue data: position in queue, wait time, destination URL, admission status
  • Minimal behavioral data: join time, admission time, whether the visitor abandoned the queue

We deliberately collect the minimum data necessary to operate the queue. We do not collect names, email addresses, payment information, or any personally identifiable information from your visitors.

1.4 Cookies and Tracking

On the Queuerd dashboard (queuerd.com):

  • Session cookies for authentication
  • Preference cookies (theme, language)
  • Analytics cookies (see Section 3)

On your visitors' browsers (via the JS Snippet or Middleware):

  • qt_token (HttpOnly, SameSite=Lax): JWT access token, expires per your configured TTL
  • qt_visitor (HttpOnly, SameSite=Lax): anonymous visitor ID, expires in 1 hour

These cookies are strictly necessary to provide the queue functionality. They do not track visitors across other websites.

2. How We Use Information

2.1 Customer Information

We use your information to:

  • Create and manage your account
  • Provide, operate, and improve the Service
  • Process payments and send billing communications
  • Send service-related notifications (downtime alerts, security notices)
  • Respond to your support requests
  • Comply with legal obligations

We do not use your information to serve you third-party advertising.

2.2 Visitor Data

We use visitor data to:

  • Operate the virtual queue on your behalf
  • Generate aggregate analytics visible in your dashboard (queue depth, wait times, admission rates, abandonment rates)
  • Detect and mitigate abusive traffic patterns
  • Improve the performance and reliability of our queue infrastructure

We do not sell visitor data. We do not use visitor data for advertising. We do not identify individual visitors across different tenant domains.

2.3 Aggregate and Anonymized Data

We may use aggregated, anonymized data (with no individual identifiable) to understand usage patterns, improve the Service, and publish industry benchmarks.

3. Analytics

We use Vercel Analytics on our dashboard and landing page to understand aggregate usage patterns. This collects anonymized page view data and does not use cookies or fingerprinting.

We do not use Google Analytics or other invasive tracking tools on our core platform.

4. How We Share Information

We do not sell your information. We share information only in the following circumstances:

4.1 Service Providers (Sub-processors)

We work with trusted third-party providers to operate the Service:

ProviderPurposeLocation
VercelHosting, Edge Network, QueuesUnited States
SupabaseDatabase, AuthenticationUnited States
UpstashRedis (queue state)United States / Brazil
StripePayment processingUnited States
Resend / PostmarkTransactional emailUnited States

All sub-processors are bound by data processing agreements and are required to process data only as instructed by us.

4.2 Legal Requirements

We may disclose information if required by law, court order, or governmental authority, or if we believe disclosure is necessary to prevent harm or illegal activity.

4.3 Business Transfers

If Patmos Software LLC is involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email or dashboard notice before your information is transferred and becomes subject to a different privacy policy.

4.4 With Your Consent

We may share information with third parties when you explicitly consent to such sharing.

5. Data Retention

Data TypeRetention Period
Account and billing dataDuration of account + 7 years (tax requirements)
Queue configurationDuration of account + 30 days after deletion
Visitor log (anonymous)90 days rolling
Real-time queue state (Redis)TTL of 1 hour per visitor session
Access logs30 days

After account deletion, all personal data is purged within 30 days. Anonymized aggregate statistics may be retained indefinitely.

6. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS 1.2+) for all data
  • Encryption at rest for database and storage
  • Row-level security on all database tables (tenants cannot access each other's data)
  • JWT tokens with short expiration windows
  • API key hashing (we never store raw API keys)
  • Regular security reviews

No system is perfectly secure. If you believe you have found a security vulnerability, please report it to security@queuerd.com.

7. Your Rights and Choices

7.1 Account Data

You may access, update, or export your account data at any time from the dashboard. You may request deletion of your account and data by emailing privacy@queuerd.com.

7.2 Visitor Data (on behalf of your visitors)

As a tenant, you are responsible for responding to data requests from your own visitors. We will assist you in responding to such requests upon written request. Since we store only anonymous visitor identifiers, it is generally not possible to identify or retrieve data for a specific individual visitor.

7.3 Marketing Communications

You may opt out of non-essential marketing emails at any time by clicking "Unsubscribe" in any email or by updating your notification preferences in the dashboard.

7.4 California Residents (CCPA)

If you are a California resident, you have the right to:

  • Know what personal information we collect and how it is used
  • Request deletion of your personal information
  • Opt out of the "sale" of personal information (we do not sell personal information)
  • Non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@queuerd.com.

7.5 Other US State Privacy Laws

Residents of Virginia, Colorado, Connecticut, Texas, and other states with comprehensive privacy laws have similar rights as described above. Contact privacy@queuerd.com to exercise your rights.

8. Children's Privacy

The Service is not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such information, contact us at privacy@queuerd.com and we will delete it promptly.

9. International Transfers

Our primary infrastructure is located in the United States (us-east-1) with a read replica in Brazil (sa-east-1). If you are located outside the United States, your data may be transferred to and processed in the United States, which may have different data protection laws than your country.

We currently do not serve customers in the European Economic Area and do not rely on EU adequacy decisions or SCCs. If this changes, we will update this policy accordingly.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by email or dashboard notice at least 14 days before the changes take effect. The "Last updated" date at the top of this page reflects the most recent revision.

11. Contact

For privacy-related questions or requests:

Patmos Software LLC
privacy@queuerd.com
queuerd.com