Articles on: General

Understanding Data Privacy on Apprentice

Understanding Data Privacy on Apprentice

Learn how Apprentice protects your personal information and what data we collect.



Overview


At Apprentice, we take your privacy seriously. This article explains what data we collect, how we use it, how we protect it, and your rights regarding your personal information. Our platform is designed with privacy and security as core principles.


What Data We Collect


Account Information

  • Personal Details: Name, email address, phone number, date of birth (for age verification)
  • Profile Information: Profile picture, bio, location, social media links (optional)
  • Authentication Data: Encrypted password, authentication tokens
  • User Role: Artist, client, or shop admin designation


Project and Appointment Data

  • Tattoo Projects: Design descriptions, reference images, AI-generated designs, collaboration history
  • Appointments: Scheduling data, appointment status, check-in times
  • Preparation Forms: Health questionnaires, consent forms (required for legal compliance)
  • Payment Information: Transaction history, deposit records (card details are stored securely by Stripe, not on our servers)


Communication Data

  • Chat Messages: Conversations between artists and clients
  • Notifications: Notification history and preferences
  • Email and SMS: Communication logs for delivery tracking


Usage Data

  • Activity Logs: Login times, feature usage, page views
  • Analytics: Aggregate usage patterns to improve the platform
  • Device Information: Browser type, IP address, device identifiers


Shop and Business Data (For Artists and Shop Admins)

  • Portfolio: Uploaded tattoo images and flash designs
  • Pricing Information: Rates, promotions, pricing rules
  • Calendar: Availability schedules, Google Calendar integration data
  • Team Information: Shop member details and relationships


How We Use Your Data


Essential Platform Functions

  • Account Management: Create and maintain your account
  • Booking and Scheduling: Facilitate appointments between artists and clients
  • Communication: Enable chat, email, and SMS notifications
  • Payment Processing: Process deposits and payments securely
  • Design Collaboration: Support AI generation and collaboration features


Service Improvement

  • Platform Analytics: Understand how users interact with Apprentice to improve features
  • Customer Support: Respond to your inquiries and resolve issues
  • Security Monitoring: Detect and prevent fraud, abuse, and security threats


  • Record Keeping: Maintain records for legal and tax compliance
  • Consent Management: Store consent forms for tattoo procedures
  • Dispute Resolution: Provide evidence in case of payment or service disputes


Marketing (Optional)

  • Product Updates: Send newsletters about new features (you can opt out)
  • Promotional Content: Share special offers and platform announcements (you can opt out)


Important: We never sell your personal data to third parties. Your information is only used to provide and improve the Apprentice platform.


How We Protect Your Data


Security Measures

  • Encryption: All data transmitted to and from Apprentice is encrypted using TLS/SSL
  • Database Security: Your data is stored in secure, encrypted databases with restricted access
  • Password Protection: Passwords are hashed and salted using industry-standard algorithms
  • Access Controls: Role-based access ensures users only see data they're authorized to view
  • Payment Security: Credit card data is handled by Stripe (PCI DSS compliant) and never stored on our servers


Infrastructure Security

  • Cloud Hosting: Hosted on secure Vercel and Supabase infrastructure with 99.9% uptime SLAs
  • Regular Backups: Automated daily backups to prevent data loss
  • Monitoring: 24/7 security monitoring and intrusion detection
  • Audits: Regular security audits and vulnerability assessments


Privacy by Design

  • Minimal Data Collection: We only collect data necessary for platform functionality
  • Data Isolation: User data is isolated using row-level security policies
  • Automatic Deletion: Inactive accounts and old data are automatically purged per retention policies


Your Privacy Rights


Access Your Data

  • View Your Information: Access all your personal data through your account settings
  • Download Your Data: Request a complete export of your data (feature in development)


Control Your Data

  • Update Information: Edit your profile, contact information, and preferences at any time
  • Notification Preferences: Control how and when you receive communications
  • Marketing Opt-Out: Unsubscribe from marketing emails at any time


Delete Your Data

  • Account Deletion: Request permanent deletion of your account and associated data
  • Right to Erasure: Request removal of specific personal information (subject to legal requirements)
  • Data Retention: See What Happens to My Data If I Delete My Account for details


Data Portability

  • Export Your Projects: Download your tattoo designs and project data
  • Export Chat History: Request transcripts of your conversations


Third-Party Integrations


Apprentice integrates with trusted third-party services to provide features. These services have their own privacy policies:


Payment Processing


Communication Services


AI Services


Calendar Integration

  • Google Calendar: Optional calendar sync for artists
  • Privacy Policy: https://policies.google.com/privacy
  • Permissions: We only access calendar events you explicitly grant permission for


Analytics

  • LogSnag: Platform monitoring and analytics
  • Google Tag Manager: Anonymous usage analytics


Important: When you use these integrations, you're also agreeing to their privacy policies. Review their policies if you have concerns about specific services.


Data Sharing and Disclosure


When We Share Your Data


We only share your data in these limited circumstances:


  • Artist-Client Communication: Sharing contact information when you book an appointment
  • Shop Team Members: Shop admins can view team member activity and client relationships
  • Public Profiles: Information you choose to make public (artist portfolios, public booking pages)


For Platform Functionality

  • Service Providers: Third-party services mentioned above that enable features
  • Payment Processors: Stripe receives payment information to process transactions


  • Law Enforcement: If required by law, court order, or legal process
  • Safety and Security: To protect against fraud, abuse, or security threats
  • Business Transfers: In the event of a merger, acquisition, or sale of assets (users will be notified)


When We Don't Share Your Data

  • ❌ Never sold to advertisers or data brokers
  • ❌ Never shared with competitors
  • ❌ Never used for purposes other than platform functionality


Data Retention


Active Accounts

  • Account Data: Retained while your account is active
  • Project History: Retained indefinitely for record-keeping
  • Chat Messages: Retained while project is active; archived after project completion


Inactive Accounts

  • Grace Period: Accounts inactive for 2 years are flagged for deletion
  • Notification: You'll receive email notifications before deletion
  • Deletion: After 30-day warning period, data is permanently deleted


Deleted Accounts

  • Immediate Removal: Personal information is deleted within 30 days
  • Legal Retention: Some records may be retained for legal/tax compliance (anonymized when possible)
  • Backups: May persist in backups for up to 90 days before permanent deletion


Financial Records

  • Tax Compliance: Payment records retained for 7 years per tax law requirements
  • Anonymization: Personal identifiers removed after 90 days; transaction totals retained


Children's Privacy


Apprentice requires users to be 18 years or older (or the age of majority in their jurisdiction). We do not knowingly collect data from minors.


  • Age Verification: Date of birth is collected during registration
  • Parental Consent: Not applicable as service is restricted to adults
  • Reporting: If you believe a minor is using the platform, contact support immediately


International Data Transfers


  • Data Location: Primary data storage is in the United States
  • Supabase Infrastructure: Data is hosted on Supabase's US servers
  • International Users: By using Apprentice, you consent to data transfer to and storage in the US
  • Protection Standards: We use standard contractual clauses and ensure adequate safeguards


Cookies and Tracking


Essential Cookies

  • Authentication: Keep you logged in
  • Security: Prevent fraud and protect your account
  • Preferences: Remember your settings


Analytics Cookies

  • Usage Analytics: Understand how users interact with the platform
  • Performance Monitoring: Track errors and performance issues
  • Opt-Out: You can disable analytics cookies in your browser settings


No Advertising Cookies

  • Apprentice does not use advertising or tracking cookies for marketing purposes


Updates to Privacy Policy


  • Notifications: You'll be notified of significant privacy policy changes via email
  • Review: Privacy policy is reviewed and updated quarterly
  • Version History: Previous versions available on request


Your Privacy Questions


How to Exercise Your Rights

  1. Sign in to your Apprentice account
  2. Go to Settings → Privacy
  3. Use the privacy controls to manage your data


For additional requests:


Data Protection Officer

For privacy-related inquiries, contact our data protection team:


Updated on: 16/01/2026

Was this article helpful?

Share your feedback

Cancel

Thank you!