Last updated: [10, 29, 2025]

This Privacy Policy explains how Blink B.V. (“Company”, “we”, “our”, “us”) collects, uses, and protects your personal data when you use Wavrr, a digital platform for consent forms and ink passports in the tattoo industry (the “Service”), available at https://wavrr.app.

Wavrr is part of Blink B.V., registered in the Netherlands.

1. Introduction

Blink B.V. (“we”, “our”, “us”) respects your privacy and is committed to protecting your personal data.
This Privacy Policy outlines how we handle information when you use Wavrr to sign, manage, or store digital consent forms and ink passports for tattoo artists, studios, and clients.

We comply with the General Data Protection Regulation (EU) 2016/679 (GDPR) and other applicable privacy laws.

2. Data We Collect

a) Information You Provide

We collect data directly from you when you use the platform, such as:

• Personal details: name, email address, date of birth, signature, and contact information.

• Tattoo-related information: studio name, artist name, and appointment details.

• Consent form data: medical disclosures (e.g., allergies, medications, or conditions relevant to tattooing).

• Identification or verification data, if required by the tattoo studio or local regulation.

This information may include special category data (health-related), collected only with your explicit consent.

b) Automatically Collected Information

When using Wavrr, we automatically collect:

• Technical data: IP address, device type, operating system, and browser version.

• Usage data: pages visited, actions taken, and interaction logs for security and performance.

• Cookies and similar technologies to improve functionality and analytics (see section 10).

3. Purpose of Data Processing

We process your data only for legitimate purposes, including:

• To create and store digital consent forms and ink passports.

• To enable tattoo studios and artists to verify client consent and maintain legal compliance.

• To manage user accounts and provide access to saved forms or records.

• To ensure security, prevent fraud, and comply with regulatory obligations.

• To improve and maintain the performance of Wavrr.

• For marketing or communications, only with your explicit consent.

4. Legal Basis for Processing

Under the GDPR, we process personal data based on:

• Article 6(1)(b) – contractual necessity: to provide the Service you use.

• Article 6(1)(c) – legal obligation: to comply with regulations that require tattoo consent documentation.

• Article 6(1)(f) – legitimate interest: for platform security and service improvement.

• Article 6(1)(a) & Article 9(2)(a) – explicit consent: for processing health-related or special category data.

You may withdraw consent at any time without affecting the lawfulness of prior processing.

5. Data Sharing

We do not sell personal data.
We may share data only with:

• Tattoo studios and artists you explicitly authorize by signing or submitting a form.

• Service providers who support the operation of Wavrr (e.g., hosting, storage, analytics, payment processing) under GDPR-compliant data processing agreements.

• Legal authorities if required by law, court order, or to protect legal rights.

• Corporate transactions (e.g., merger, acquisition) under strict confidentiality safeguards.

All processors are bound by contractual obligations ensuring data protection and confidentiality.

6. Data Retention

We retain your data only for as long as necessary to:

• Fulfill the purpose for which it was collected (e.g., storing consent forms).

• Comply with legal or regulatory obligations applicable to tattoo documentation.

• Resolve disputes or enforce agreements.

When no longer required, personal data is securely deleted or anonymized.
You may request deletion of your data at any time (see section 9).

7. International Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards such as:

• EU Standard Contractual Clauses (SCCs), or

• Transfers to countries with an adequacy decision by the European Commission.

You can request a copy of the relevant safeguards by contacting us.

8. Security Measures

We implement industry-standard technical and organizational measures to protect your data, including:

• Encryption in transit and at rest.

• Access controls and secure authentication.

• Routine security audits and monitoring.

While we take all reasonable steps, no online platform can guarantee absolute security.

9. Your Rights

Under the GDPR, you have the right to:

• Access your personal data.

• Request correction or deletion.

• Restrict or object to processing.

• Withdraw consent at any time.

• Request data portability.

To exercise these rights, contact privacy@wavrr.app.
If you believe your data protection rights have been violated, you may lodge a complaint with your local Data Protection Authority.

10. Cookies & Analytics

Wavrr uses cookies and similar technologies to:

• Maintain secure logins and user sessions.

• Remember preferences.

• Analyze usage patterns to improve performance.

You can adjust or disable cookies in your browser settings.
For more details, see our Cookie Policy.

11. Third-Party Services

Our platform may link to or integrate with third-party services (e.g., payment processors or analytics tools).
We are not responsible for their privacy practices and recommend reviewing their policies.

12. Changes to This Policy

We may update this Privacy Policy from time to time.
Significant updates will be communicated through the platform or via email.
The current version is always available at https://wavrr.app/privacy.

13. Contact Us

For questions or privacy concerns, contact:

Blink B.V.
📍 Herengracht 123, 1015 BS Amsterdam, The Netherlands
📧 support@useblink.app
🌐 https://wavrr.app

© Blink B.V. — All rights reserved.

This Privacy Policy complies with the GDPR and applies to all users of Wavrr within the European Union.