inklee

Privacy Policy

Last updated: April 2026 - subject to review by a lawyer before public launch

Data we collect

Artists: email address, display name, Instagram handle, bio, location, timezone, logo image, booking preferences.

Customers (via booking form): Instagram handle, email address, tattoo description, reference images, preferred date or slot. Customers do not create accounts.

How we use it

To operate the booking service: authenticate artists, route booking requests, send transactional emails, and maintain an audit log of booking status changes.

Subprocessors

  • Supabase (EU/Frankfurt) - database, authentication, file storage. DPA available.
  • Vercel (EU region) - application hosting. DPA available.
  • Resend (EU) - transactional email delivery.
  • Plausible - privacy-friendly analytics. No cookies. No personal data collected.

Cookies

inklee uses strictly necessary cookies only - specifically, session cookies required for artist authentication (Supabase Auth). No tracking cookies, no third-party advertising cookies. Plausible analytics is cookie-free.

Retention

Rejected and cancelled booking images are deleted after 30 days. Booking records are retained until an artist deletes their account.

Your rights (GDPR)

You have the right to access, correct, and delete your data. To exercise these rights, email hello@inklee.app. We will respond within 30 days.

Contact

hello@inklee.app