Right to Access
Request a copy of all personal data we hold about you. Export your data anytime from your Privacy Settings.
GDPR Compliant
GDPR Compliance
Our commitment to protecting your data under the General Data Protection Regulation
Data Controller
Your Data Protection Rights
Under GDPR, you have the following rights regarding your personal data:
Right to Rectification
Update or correct your personal information at any time through your account settings.
Right to Erasure
Request deletion of your personal data. Delete your account from Account Settings.
Right to Portability
Export your data in a machine-readable format (JSON) from your Privacy Settings.
Right to Object
Object to processing of your data for certain purposes, including marketing.
Right to Restrict
Request we limit how we use your data in certain circumstances.
Automated Decisions
You have rights related to automated decision-making and profiling.
Withdraw Consent
Withdraw consent at any time for processing based on consent. Manage in Privacy Settings.
How to Exercise Your Rights
You can exercise most of your rights directly through your account:
- Data Export: Go to Privacy Settings → Download My Data
- Account Deletion: Go to Account Settings → Delete Account
- Cookie Preferences: Go to Privacy Settings → Cookie Preferences
- Marketing Opt-out: Go to Privacy Settings → Email Communications
For requests that cannot be handled through self-service, contact us and we will respond within 30 days.
Legal Basis for Processing
We only process your personal data when we have a lawful basis to do so:
Contractual Necessity
Processing necessary to provide our plagiarism detection service to you as agreed in our Terms of Service.
Legitimate Interests
Processing for our legitimate business interests such as improving our services, preventing fraud, and ensuring security.
Consent
Where you have given explicit consent, such as for marketing communications or optional analytics cookies.
Legal Obligation
Processing required to comply with legal requirements such as tax and accounting obligations.
Cookies & Tracking
We use cookies with your consent. You control which cookies we use:
Log in to Manage PreferencesInternational Data Transfers
We are based in the United States. When we transfer data from the EU/EEA/UK, we ensure appropriate safeguards are in place:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Supplementary technical and organizational measures
- Assessment of recipient country legal framework
- All transfers comply with GDPR Chapter V requirements
Data Security
We implement robust technical and organizational measures to protect your data:
AES-256 encryption at rest
TLS 1.3 encryption in transit
AWS SOC 2 certified infrastructure
bcrypt password hashing
Access logging and monitoring
Regular security audits
Data Retention
We only retain your data for as long as necessary:
Account data
Retained while account is active + 30 days after deletion
Check results
Retained according to your plan settings, or deleted on request
Transaction records
7 years (legal requirement)
Support communications
3 years
Usage logs
90 days for analytics, 1 year for security
Third-Party Processors
We share data with carefully selected service providers who process data on our behalf:
Amazon Web Services (AWS)
Infrastructure and hostingStripe
Payment processingCloudflare
Security and CDNGoogle Analytics
Analytics (with consent)All processors are bound by Data Processing Agreements and appropriate safeguards.
Complaints & Supervisory Authority
If you believe we have not handled your data properly, you have the right to:
- Contact us directly - We will investigate and respond within 30 days
- Lodge a complaint with your local Data Protection Authority
EU/EEA Users
Find your local supervisory authority at EDPB Member List
UK Users
Contact the Information Commissioner's Office (ICO)
Take Action Now
Exercise your rights with our self-service tools — no need to contact support: