Privacy, in plain English.

We don't sell your data. We don't track you around the internet. We don't have ads to optimise. You send us photos and emails so we can run your website — that's the whole relationship. Here's the detail.

Who we are

Beeinked Software ("Beeinked", "we", "us") is a managed website service for tattoo artists, based in Wales, UK. We're not yet registered as a limited company, so the service is operated by the founder directly as a sole trader. If you want to reach a real human, email hello@beeinked.co.

What we collect

Only what we actually need to build and run your website:

• Contact details — your name, email, phone/WhatsApp number
• Studio details — business name, address, opening hours, the stuff that goes on your site
• Tattoo photos and copy — whatever you send us to put on your website
• Billing info — handled by our payment processor (we never see your card details)
• Basic analytics — aggregate page views via Cloudflare. No cookies, no fingerprinting, no individual tracking

Why we have it (the legal bit)

Under UK GDPR we need a lawful basis for holding your data. Ours are:

• Contract — we need your details to deliver the service you're paying us for
• Legitimate interests — running the business, preventing fraud, keeping backups
• Legal obligation — keeping invoices and tax records for the period HMRC requires

We don't rely on "consent" for any of this, because you've explicitly asked us to run your site. That's not a cookie banner situation.

Who else sees it

We use a small number of third-party services to actually make the website work. Each one only sees the minimum they need:

• Cloudflare — hosting, CDN, and privacy-friendly analytics
• Google Workspace — our email (so if you email us, Google technically touches it)
• WhatsApp (Meta) — if you choose to send updates via WhatsApp, Meta carries those messages
• A payment processor — for billing, once we turn on payments
• AI tools — we use AI to help with image optimisation and drafting SEO copy. We never send client photos or personal data to public AI services. Anything that touches AI is routed through our own tooling with data isolation

We do not sell or rent your data to anyone. Ever. We also don't share it with advertisers, because we don't have any.

How long we keep it

• While you're a customer — as long as needed to run your site
• After you leave — we keep a backup of your site for 30 days in case you change your mind, then delete it
• Billing records — we hold these for 6 years because HMRC says so

Your rights

Under UK GDPR you can ask us to:

• Show you a copy of the data we hold about you
• Correct anything that's wrong
• Delete your data (where we're not legally required to keep it)
• Export your data in a portable format
• Stop processing it for a specific purpose

Just email hello@beeinked.co and say what you need. We'll respond within 30 days — usually a lot faster.

Cookies

We don't use tracking cookies. Cloudflare's analytics is cookieless by design — it counts visits in aggregate without setting anything on your device. That's why you didn't see one of those annoying consent banners when you arrived.

Complaints

If you think we've mishandled your data, tell us first — we'll try to fix it properly. If you're still unhappy, you can complain to the UK's Information Commissioner's Office at ico.org.uk.

Changes to this policy

If we change anything material, we'll update the date at the top and email existing customers. We won't quietly edit it and hope nobody notices.

Contact

Questions, requests, or a general chat about data protection: hello@beeinked.co.