Privacy

Artists who sign in to Liner with Google or email magic link, and visitorswho submit an inquiry through a Liner artist's public booking page (URLs of the form liner.studio/book/<slug>).

Artists who connect their Google Workspace also fall under Google's Limited Use requirements, which we commit to below.

• Account. Email address (sign-in identity), and if you sign in with Google: your Google profile name. Stored in Supabase via Supabase Auth.
• Professional data you enter. Client cards, booking dates, session notes, photos, project plans, supply inventory, aftercare reminders, payment-status flags (deposited / awaiting). Stored in Supabase, scoped to your account by row-level security. A local copy lives in your browser (IndexedDB) so the app works offline.
• Public-page content. If you publish a public profile at liner.studio/a/<slug>: your display name, bio, city/region, portfolio photos, social links. By definition public.
• Inbound inquiries. When a visitor submits the booking form on your /book page, their submission lands in your account (visible only to you). See What visitor data we collect below.

Connecting Google Workspace is optional. If you connect, Liner requests the following scopes:

• gmail.modify — read, send, and label emails in your inbox. Used for the per-client Messages section (reading recent threads with each client) and reply composer (sending from your address).
• drive.file — create and manage files Liner itself creates. Used for per-client reference folders (named Liner — Client Name). Liner cannot see any other file in your Drive.
• calendar.events — read and write events on your calendars. Used to push Liner sessions to your primary calendar and surface non-Liner events on the Plan tab.
• userinfo.email, userinfo.profile, openid — display which Google account is connected.

Liner stores a long-lived refresh token for your Google account in our database, encrypted at rest with AES-256-GCM. Access tokens are minted on demand and never persisted. You can disconnect Workspace at any time from /me/connections, which deletes the encrypted token from our database, clears cached references to Drive folders and Calendar events from your client records, and (best-effort) revokes the grant on Google's side. The Drive folders and Calendar events themselves live in your Google account; they are not deleted by disconnecting.

Liner's use and transfer of information received from Google APIs to any other app will adhere to Google API Services User Data Policy, including the Limited Use requirements.

Specifically:

• Liner does not use Google user data to train any generalized AI/ML model. Per-artist agentic features (paste-DM parser, intake summarizer) operate on the artist's own data, send the relevant text to Anthropic's Claude API for that single request, and do not store the request beyond the response.
• Liner does not sell, rent, or transfer Google user data to third parties for advertising, marketing, or any commercial purpose unrelated to running the app.
• Liner does not allow humans to read your Google user data except (a) you, the account owner, viewing it in Liner; (b) with your explicit consent for a support request; or (c) when required by law.

When you submit an inquiry on a Liner artist's booking page (liner.studio/book/<slug>):

• The contact information you provide (name, email, phone, optional social handle).
• The project details you provide (description, body location, style, size, color preferences, timing).
• Health/screening fields you choose to share (age confirmation, pregnant/nursing status, skin conditions, medications, allergies, prior tattoo experience).
• Any reference photos you upload.
• The conversation transcript, if you used the chat intake path.
• Your IP address (for rate-limiting), and an anti-bot verification token from Cloudflare Turnstile.

This data is sent only to the artist you submitted to. We do not display it on any public page, share it with other artists on the platform, or use it for marketing.

• Supabase — primary database + storage + auth.
• Vercel — application hosting.
• Google (when you connect Workspace) — Gmail, Drive, Calendar API providers.
• Anthropic— Claude API, used for inquiry extraction and chat-intake agent. Anthropic's commercial terms prohibit them from using API data to train models.
• Resend — transactional email sender (booking receipts, inquiry notifications, aftercare emails).
• Cloudflare — Turnstile bot detection on public-facing inputs.
• Stripe — payment processor for monthly subscription billing.

Account data lives as long as your account exists. You can request full deletion by emailing us (see Contactbelow); we will remove your account, client records, and all data within 30 days. Disconnecting Workspace specifically (the "Disconnect" button on /me/connections) removes the encrypted refresh token immediately.

Visitor inquiries persist in the artist's account until the artist deletes them. If you submitted an inquiry and want it removed, contact the artist directly first; if that fails, email us with proof of identity and we will remove it.

Liner is not for use by anyone under 18. The public booking form requires age confirmation as a hard stop.

We'll update this page if our practices change. The last revision date appears at the bottom. Material changes will be communicated by email to active artists.

Privacy questions: austin@liner.studio.