Security
EFFECTIVE 2026-07-02 · PRE-LAUNCH (WAITLIST) VERSION
InkGuard will hold records that studios show to health inspectors — including employee training and vaccination records that deserve medical-grade care. Security is a design constraint from day one, not a retrofit. This page describes the commitments the product is being built to.
Data protection
- Encryption in transit — TLS on all connections, including this site and the waitlist API.
- Encryption at rest — databases and stored documents encrypted.
- Least-privilege access — employee health records (Hepatitis B status, training) restricted to the studio owner or an authorized manager, never all staff.
Record integrity
- Append-only history — compliance records are timestamped; edits create new versions instead of overwriting, so history stays credible to an inspector.
- Retention safeguards — records subject to legal retention windows are never auto-purged before those windows elapse.
- Audit logging — access to and changes of sensitive records are logged (who, what, when).
Today (waitlist phase)
The only data this site collects is your waitlist email and optional state — encrypted in transit and at rest, accessible only to the founder. See the Privacy Policy for details.
Reporting a vulnerability
Found something? Please report it responsibly: security@inkguard.app. We read every report.