SarqirBeta

Privacy Policy

Last updated: July 2, 2026

This Privacy Policy explains what personal data Sarqir collects, how we use it, who we share it with, and the choices you have.

Sarqir is a browser-based furniture design and configuration tool, currently operated as an unregistered product/service under the brand name “Sarqir” (“Sarqir,” “we,” “us,” or “our”).

This Privacy Policy applies to Sarqir, including our website, browser-based furniture design and configuration tool, applications, accounts, exports, and related services (the “Service”).

If you have any questions about this Privacy Policy, contact us at support@sarqir.com.

1. Data Controller / Operator

For purposes of applicable privacy and data-protection laws, Sarqir is the operator or controller of the personal data described in this Privacy Policy, unless stated otherwise.

Operator: Sarqir
Legal status: Unregistered product/service
Contact: support@sarqir.com

2. Data We Collect

We collect only the data needed to provide, secure, and improve the Service.

Account datayour email address, account ID, account timestamps, and session and authentication information. If you register with email and password, we store a secure password hash. We never store your plain-text password.

Google Sign-In dataif you sign in with Google, we receive your Google account identifier, email address, name, and profile image, where provided. We use this data only to create, connect, and access your Sarqir account.

Designs and contentthe furniture designs you create and save, including names, dimensions, panels, shelves, dividers, doors, drawers, selected materials, thicknesses, colors, textures, grain direction, and export settings.

Password-reset datawhen you request a password reset, we store a hash of the reset token, its expiry, and related security metadata. Reset tokens expire after 1 hour and are invalidated after use or expiry.

Email datato send transactional emails such as password-reset emails and account notices, we may share your email address, email content, delivery status, timestamps, and related technical metadata with our email provider, Resend.

Technical and security datasuch as IP address, browser and device information, log data, session data, authentication events, error data, and security events needed to operate, troubleshoot, and protect the Service.

3. How We Use Data

We use personal data to:

  • create and manage accounts and authenticate users;
  • save and load designs;
  • generate previews, panel data, material data, and exports;
  • send password-reset and account-related emails;
  • keep the Service secure;
  • detect, prevent, and investigate abuse, fraud, errors, and unauthorized access;
  • troubleshoot, maintain, and improve the Service;
  • comply with legal obligations.

We do not sell your personal data.

We do not use your private saved designs in public marketing materials without your permission.

We do not use Google user data for advertising, personalized ads, sale to data brokers, or unrelated purposes.

4. Legal Bases for Processing

Where applicable law requires a legal basis, we rely on one or more of the following:

  • performance of a contract — to provide the Service to you;
  • legitimate interests — to secure, maintain, troubleshoot, and improve the Service;
  • consent — where required, including where you choose to connect a third-party account such as Google;
  • legal obligations — where we need to comply with applicable law.

5. How We Share Data

We share personal data only with:

  • service providers that help us run the Service, such as hosting and infrastructure providers, database and storage providers, Google for authentication, Resend for email, and, if used in the future, analytics or error-monitoring providers;
  • professional advisers, where necessary;
  • authorities, courts, regulators, or other parties where required by law or where necessary to protect rights, safety, security, or the integrity of the Service.

Service providers may process personal data only as needed to provide services to us and under applicable legal and contractual obligations.

6. Google User Data

If you use Google Sign-In, Sarqir accesses Google user data only for authentication, account creation, account connection, and login.

We may use your Google email address, name, profile image, and account identifier to create your Sarqir account, sign you in, display your account information, and protect your account from unauthorized access.

We do not use Google Sign-In to access your Gmail, Google Drive, Google Calendar, contacts, photos, files, or other Google services.

We do not sell Google user data, transfer it to advertising platforms, data brokers, or resellers, or use it for targeted advertising or unrelated purposes.

If our use of Google user data changes, we will update this Privacy Policy and request any required consent before using that data for a new purpose.

7. Cookies and Similar Technologies

Sarqir uses cookies and similar technologies that are necessary for authentication, security, sessions, and core functionality.

If we introduce analytics, advertising, or other non-essential cookies in the future, we will update this Privacy Policy and, where required, ask for consent.

8. Data Retention

We keep personal data only for as long as reasonably necessary.

Account data and saved designs are kept until you delete them, delete your account, or request deletion, unless we need to keep certain data longer for legal, security, dispute-resolution, or abuse-prevention reasons.

Password-reset tokens expire after 1 hour and are invalidated after use or expiry.

Email records, security logs, technical logs, and error logs are kept for a limited period for delivery, security, troubleshooting, and legal purposes.

Deleted data may remain in backups or technical archives for a limited period before being removed or overwritten.

Some data may be kept longer where required by law, to resolve disputes, prevent abuse, or enforce agreements.

9. Your Rights and Choices

Depending on your location and applicable law, you may have the right to:

  • access your personal data;
  • correct inaccurate or incomplete personal data;
  • delete your personal data;
  • export or receive a copy of your personal data;
  • object to certain processing;
  • restrict certain processing;
  • withdraw consent where processing is based on consent;
  • lodge a complaint with a data-protection authority.

You can also request account deletion, or use any account-deletion feature available in the Service.

To exercise these rights, contact us at support@sarqir.com. We may need to verify your identity before completing your request.

10. Security

We use reasonable technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, and disclosure.

However, no online service can guarantee absolute security. You are responsible for keeping your account credentials safe and notifying us if you suspect unauthorized access.

11. International Data Transfers

Sarqir and its service providers may process personal data in locations outside your place of residence, where data-protection laws may differ from those in your jurisdiction.

Where required by applicable law, we use appropriate safeguards for international transfers.

12. Children

Sarqir is not intended for children under 16 years old, or under the minimum age required by applicable law to use online services without parental consent.

If we learn that we have collected personal data from a child without required consent, we will take reasonable steps to delete it.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date above.

For material changes, we may provide additional notice where appropriate, such as through the Service or by email.

14. Contact

Questions or requests about this Privacy Policy can be sent to support@sarqir.com.

Operator: Sarqir
Legal status: Unregistered product/service

Privacy Policy | Sarqir