Privacy Policy
Introduction
Welcome to Happy Waiver. This Privacy Policy explains how Tensor Wave Inc. ("Company," "we," "our," or "us") collects, uses, discloses, and protects information in connection with our website and digital waiver platform.
Happy Waiver is a platform that enables businesses ("Business Users") to create, distribute, and manage digital waivers. Individuals who sign waivers created by Business Users are referred to as "Signers" throughout this policy.
By accessing or using Happy Waiver, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our services.
Effective date: 2026-03-01. Last updated: 2026-03-01.
Our Role: Data Controller and Data Processor
Understanding our role in relation to your data is important:
- For Business Users: We act as a data controller. We determine the purposes and means of processing your account information, payment data, and usage information.
- For Signers: We act as a data processor on behalf of our Business Users, who are the data controllers for the waiver data collected from their Signers. We process Signer data only as instructed by the Business User and in accordance with our Terms of Service.
If you are a Signer and have questions about how your data is used, we recommend contacting the business that asked you to sign the waiver. If you need to exercise your privacy rights regarding data we process, you may also contact us directly at hey@happywaiver.com.
Information We Collect
Information from Business Users
When you create an account and use Happy Waiver as a Business User, we may collect:
- Name, email address, and phone number
- Business or organization name, address, and contact information
- Payment and billing information (processed securely by Stripe; we do not store full card numbers)
- Account credentials and authentication data
- Waiver documents and templates you create
- Usage data including features accessed, pages viewed, and actions taken
- Communications with us (support requests, feedback)
Information from Signers
When you sign a waiver through our platform, the Business User determines what information to collect from you. This may include:
- Name (first, middle, last)
- Email address
- Phone number
- Physical address
- Date of birth
- Electronic signature or initials
- Responses to custom questions, checkboxes, and form fields
- Information about minors (if signing on behalf of a minor)
Automatically Collected Information
When you visit our website or sign a waiver, we may automatically collect:
- Device information: IP address, browser type and version, operating system, device type
- Usage data: Pages viewed, referring website, time spent on pages, actions taken
- Geolocation data: If your browser permits, we may collect precise location data (latitude and longitude) during the waiver signing process. This is used to document the location where a waiver was signed. You can prevent this by denying the location permission prompt in your browser or disabling location services on your device.
- HTTP request data: Request headers including user agent, language preferences, and referrer information are recorded at the time of waiver submission as part of the signing audit trail.
How We Use Your Information
For Business Users
- Provide, maintain, and improve our platform and services
- Process transactions and manage subscriptions
- Send service-related communications (account notifications, security alerts, billing updates)
- Send marketing communications (only with your consent; you may opt out at any time)
- Provide customer support
- Analyze usage patterns to improve our product
- Detect, prevent, and address fraud, abuse, and security issues
- Comply with legal obligations
For Signer Data
- Process and store waiver submissions on behalf of the Business User
- Generate PDF copies of signed waivers
- Send confirmation emails (when enabled by the Business User)
- Record audit trail information (IP address, device data, geolocation, timestamp) to support the legal validity of electronic signatures
- Enable Business Users to search, review, and manage submissions
Electronic Signatures and Audit Trail
Happy Waiver facilitates electronic signatures pursuant to the Electronic Signatures in Global and National Commerce Act (ESIGN Act), the Uniform Electronic Transactions Act (UETA), and comparable international laws.
To support the validity and integrity of electronic signatures, we record the following audit trail information for each waiver submission:
- Date and time of submission
- IP address of the signer
- Browser and device information
- Geolocation data (if available)
- The electronic signature or initials provided
This information is stored as part of the submission record and is available to the Business User who created the waiver.
How We Share Your Information
We do not sell your personal information. We may share information in the following circumstances:
- With Business Users: Signer data is shared with the Business User who created the waiver. Business Users are responsible for their own use of Signer data in compliance with applicable laws.
- With service providers (sub-processors): We use trusted third-party services to operate our platform. See the "Sub-Processors" section below.
- For legal compliance: We may disclose information if required by law, regulation, legal process, or governmental request, or to protect the rights, property, or safety of Happy Waiver, our users, or the public.
- Business transfers: In connection with a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.
Sub-Processors
We use the following third-party service providers to operate our platform. Each sub-processor processes data only as necessary to provide their specific service:
| Provider | Purpose | Data Processed | Location |
|---|---|---|---|
| Vercel | Website hosting and serverless functions | All request data, IP addresses | United States |
| MongoDB Atlas | Database storage | All account and submission data | United States |
| Cloudflare R2 | PDF file storage | Generated PDF copies of signed waivers | United States |
| Stripe | Payment processing | Business User payment and billing information | United States |
| Resend | Transactional email delivery | Signer email addresses, waiver confirmation content | United States |
| Google Analytics | Website analytics (with cookie consent) | Usage data, IP addresses (anonymized) | United States |
| HubSpot | CRM and customer communication (with cookie consent) | Business User contact information | United States |
| Google (Gemini API) | AI waiver content generation | Waiver subject descriptions (no personal data) | United States |
We will update this list when we add or change sub-processors. We encourage you to check this page periodically.
Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience. Non-essential cookies (analytics, marketing) are only loaded after you provide consent via our cookie banner.
For detailed information about the cookies we use and how to manage them, please see our Cookie Policy.
Data Retention
We retain information as follows:
- Business User account data: Retained for the duration of your account and for a reasonable period thereafter to comply with legal obligations, resolve disputes, and enforce agreements.
- Signer waiver submissions: Retained according to the retention period (time-to-live) configured by the Business User for each waiver document. This may range from 1 day to indefinite storage. When a submission expires, it is automatically removed.
- PDF copies of signed waivers: Retained for the same period as the corresponding submission record.
- Payment records: Retained as required by applicable tax and financial reporting laws.
- Analytics data: Aggregated analytics data may be retained indefinitely. Individual analytics records are subject to the retention policies of our analytics providers.
If a Business User's account is cancelled or not in good standing, we reserve the right to delete stored waiver data associated with that account in accordance with our Terms of Service.
Data Security
We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include:
- Encryption of data in transit (TLS/SSL)
- Secure cloud infrastructure with access controls
- Authentication and authorization controls for platform access
- Regular monitoring of our systems for vulnerabilities
However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.
Your Privacy Rights
Depending on your location, you may have certain rights regarding your personal information. We honor privacy rights requests regardless of your location where technically feasible and legally applicable.
- Access: Request a copy of the personal information we hold about you.
- Correction: Request correction of inaccurate or incomplete information.
- Deletion: Request deletion of your personal information, subject to legal exceptions (such as data needed for legal claims or required by law).
- Portability: Request transfer of your data in a structured, commonly used format.
- Objection: Object to certain types of processing of your personal information.
- Withdrawal of consent: Where processing is based on consent, withdraw your consent at any time.
To exercise any of these rights, please contact us at hey@happywaiver.com. We will respond within the timeframe required by applicable law (generally 30–45 days).
Note for Signers: If you signed a waiver and wish to exercise your rights regarding that data, we recommend first contacting the business that collected your information, as they are the data controller. You may also contact us directly and we will assist in facilitating your request.
California Residents — CCPA/CPRA Rights
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with additional rights regarding your personal information.
Your California Privacy Rights
- Right to know: You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purposes for collecting the information, and the categories of third parties with whom we share it.
- Right to delete: You have the right to request deletion of personal information we have collected, subject to certain exceptions.
- Right to correct: You have the right to request correction of inaccurate personal information.
- Right to opt-out of sale or sharing: You have the right to opt out of the "sale" or "sharing" of your personal information.
- Right to non-discrimination: We will not discriminate against you for exercising your privacy rights.
We Do Not Sell or Share Personal Information
Happy Waiver does not sell personal information as defined by the CCPA/CPRA. We do not share personal information for cross-context behavioral advertising purposes. We do not have actual knowledge that we sell or share the personal information of consumers under 16 years of age.
Categories of Personal Information Collected
In the preceding 12 months, we may have collected the following categories of personal information:
- Identifiers: Name, email address, IP address, account name
- Customer records: Name, address, telephone number, financial information
- Internet activity: Browsing history on our site, interactions with our platform
- Geolocation data: Precise location (during waiver signing, with permission)
- Sensory data: Electronic signature images
- Professional information: Business name and role
How to Exercise Your Rights
To submit a verifiable consumer request, contact us at hey@happywaiver.com. You may also designate an authorized agent to make a request on your behalf. We may require verification of your identity before processing your request.
European Economic Area, United Kingdom, and Switzerland — GDPR Rights
If you are located in the European Economic Area (EEA), United Kingdom (UK), or Switzerland, the General Data Protection Regulation (GDPR) and equivalent local laws provide you with additional rights.
Lawful Basis for Processing
We process personal information on the following lawful bases:
- Contract performance: Processing necessary to provide our services to Business Users and to process waiver submissions.
- Legitimate interests: Processing necessary for our legitimate business interests, such as improving our services, preventing fraud, and ensuring security, provided these interests are not overridden by your rights.
- Consent: Where you have given explicit consent, such as for marketing communications or non-essential cookies.
- Legal obligation: Where processing is necessary to comply with applicable laws.
Your GDPR Rights
In addition to the general rights listed above, you have the right to:
- Restrict processing: Request restriction of processing in certain circumstances.
- Lodge a complaint: File a complaint with your local data protection authority if you believe your rights have been violated.
International Data Transfers
Your personal information is transferred to and processed in the United States, where our servers and service providers are located. The United States may not provide the same level of data protection as your home country.
We rely on appropriate safeguards for international data transfers, including Standard Contractual Clauses (SCCs) approved by the European Commission. We are also committed to compliance with applicable data transfer frameworks.
For questions about international data transfers or to request a copy of the transfer safeguards, contact us at hey@happywaiver.com.
Other U.S. State Privacy Laws
Residents of Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Montana, Indiana, Kentucky, Rhode Island, and other states with comprehensive privacy laws may have similar rights to those described above, including the right to access, correct, delete, and port personal data, and to opt out of targeted advertising.
We honor these rights for all U.S. residents. To exercise your rights, contact us at hey@happywaiver.com. We will respond within the timeframe required by your state's law.
Children's Privacy
Happy Waiver is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13 on our own behalf.
Our platform allows Business Users to create waivers that may be signed by parents or guardians on behalf of minors. In these cases, the Business User is responsible for complying with the Children's Online Privacy Protection Act (COPPA) and applicable child privacy laws. Happy Waiver processes this data as a data processor on behalf of the Business User.
If you are a parent or guardian and believe your child's personal information has been collected without proper consent, please contact us at hey@happywaiver.com and we will take steps to remove such information.
Do Not Sell or Share My Personal Information
Happy Waiver does not sell your personal information as defined under the CCPA/CPRA or any other applicable privacy law. We do not share your personal information for cross-context behavioral advertising purposes.
If you have any concerns, you may contact us at hey@happywaiver.com.
Links to External Websites
Our website may contain links to third-party websites not operated by us. We are not responsible for the privacy practices of these websites. We encourage you to review the privacy policies of any third-party sites you visit.
Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated policy on this page with a revised "Last updated" date. For material changes, we will notify Business Users via email or a prominent notice on our platform. Your continued use of Happy Waiver after changes are posted constitutes acceptance of the updated policy.
Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Email: hey@happywaiver.com
- Mailing address: To request our mailing address, please email hey@happywaiver.com.
We are committed to resolving complaints about your privacy and our collection or use of your personal information. We will respond to inquiries within 30 days.