Privacy Policy — PaperDue

01

Information We Collect

A

Information You Provide to Us

Account Information

When you register for an account, we collect your name, email address, and password (stored as a one-way hash). If you register using a third-party login (Google, Facebook, or Apple), we receive a unique identifier and basic profile information from that provider as authorized by you.

Payment Information

When you subscribe to the Service, payment information (such as credit card number, billing name, billing address, and ZIP code) is collected and processed by our third-party payment processors, Stripe, Inc. and PayPal, Inc. We do not store full payment card numbers on our servers. We retain a limited record of the transaction, the last four digits of the card, the card brand, and a tokenized identifier supplied by the processor.

Communications

If you contact our support team, we collect the contents of your message and any attachments, along with your email address and any other information you choose to provide.

Submitted Content

When you use TextChecker or the AI Writing Assistant, we collect the documents and text you submit for analysis or generation. Uploaded files are deleted from our servers promptly after text extraction; the extracted text and your scan or generation results are stored with your account so you can return to them later. We also retain a one-way similarity fingerprint of submitted text, compared across submissions to the Service to recognize duplicate or resubmitted documents; it cannot be converted back into readable text. Your submissions are never added to our library of paper examples or to the plagiarism-comparison corpus.

B

Information We Collect Automatically

Usage Data

We collect information about how you use the Service, including pages viewed, papers accessed, search queries entered, features used, and time spent on the Service.

Device and Connection Data

We collect IP address, browser type and version, operating system, device type, referring URL, language preference, and time zone.

Cookies and Similar Technologies

We use cookies and similar technologies for authentication, session management, security, analytics, and to remember your preferences. See Section 6 below for details.

C

Information from Third Parties

Third-Party Login Providers

If you sign in using Google, Facebook, or Apple, that provider shares with us the information you have authorized them to share, typically your name, email address, and a unique account identifier.

Payment Processors

Stripe and PayPal share transaction confirmation data with us, including the amount, currency, time, status, and a tokenized payment identifier.

Analytics Providers

Third-party analytics services may provide us with aggregated or pseudonymized data about how the Service is used.

02

How We Use Your Information

We use the information we collect to:

Create and maintain your account
Provide, operate, and improve the Service
Process payments and manage subscriptions, trials, renewals, and refunds
Authenticate you and protect your account from unauthorized access
Send you transactional communications (account notices, billing notices, security alerts, and customer support responses)
Send you product updates and marketing communications you have opted into (you can unsubscribe at any time)
Personalize the Service to your interests, including suggesting relevant papers, topics, and writing tools
Detect, investigate, and prevent fraud, abuse, and violations of our Terms of Service
Comply with legal obligations and enforce our agreements
Conduct analytics and research to understand and improve the Service

03

How We Share Your Information

We share information only as described below.

A

Service Providers

We use third-party service providers to operate, deliver, and improve PaperDue. We share only the data each provider needs to perform their specific function. All providers operate under contractual data-protection terms.

The following providers process certain customer data on our behalf:

Stripe (payment processing) — card transactions, subscription billing. stripe.com/privacy
PayPal (payment processing) — alternative payment method. paypal.com/privacy
Authorize.net (payment processing) — payment processing services. authorize.net/privacy
Amazon Pay (payment processing) — alternative payment method. amazon.com/gp/help/customer/display.html
Postmark (transactional email) — recipient email addresses and message contents for delivery of account-related emails. postmarkapp.com/privacy
Anthropic (AI processing) — user-submitted prompts and text for AI writing assistance features. Anthropic does not use customer-submitted data to train its models under commercial API terms. anthropic.com/legal
Rackspace (cloud storage) — files and content stored on your behalf. rackspace.com/legal

These vendors are contractually obligated to handle your information consistent with this Privacy Policy.

B

Legal and Safety

We may disclose information when we believe in good faith that disclosure is necessary to comply with a subpoena, court order, or other legal process; to enforce our Terms of Service or Student Honor Code; to protect the rights, property, or safety of PaperDue, our users, or the public; or to detect and prevent fraud or security issues.

C

Business Transfers

If Electronic Inspiration LLC is involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or a portion of its assets, your information may be transferred as part of that transaction, subject to standard confidentiality terms.

D

With Your Consent

We may share information with third parties when you direct us to or otherwise consent to such sharing.

No third-party marketing

We do not rent, sell, or otherwise share your personal information with third parties for their own marketing purposes.

04

Your Choices and Rights

A

Account Information

You can review and update your account information at any time by signing in and visiting your account settings.

B

Marketing Communications

You can opt out of marketing emails by clicking the "unsubscribe" link in any marketing email or by updating your communication preferences in your account settings. You will continue to receive transactional and account-related communications.

C

Cookies

Most browsers allow you to refuse or accept cookies and to delete cookies that have been placed on your device. If you disable cookies, some features of the Service may not function properly.

D

Account Deletion

You may request deletion of your account by contacting [email protected]. We will delete your personal information within a reasonable time, subject to legal retention obligations (for example, tax records, fraud prevention records, and records required to resolve disputes).

E

Rights Under Specific Laws

Depending on where you live, you may have additional rights regarding your personal information:

CA

California Residents

CCPA / CPRA

California residents have the right to:

Know what personal information we collect, use, disclose, and sell about them
Request deletion of personal information
Request correction of inaccurate personal information
Opt out of the sale or sharing of personal information (we do not sell personal information)
Limit the use of sensitive personal information
Not be discriminated against for exercising these rights

EU

EU / UK / EEA Residents

GDPR / UK GDPR

If you are located in the EEA, UK, or Switzerland, you have the right to:

Access your personal data
Correct inaccurate or incomplete data
Request erasure ("right to be forgotten")
Restrict or object to processing
Data portability
Withdraw consent where processing is based on consent
Lodge a complaint with your supervisory authority

To exercise these rights, email [email protected]. We may verify your identity before fulfilling the request.

Our lawful bases for processing are: performance of a contract (providing the Service you signed up for), legitimate interests (improving and securing the Service, preventing fraud), consent (where required, e.g. marketing), and legal obligation (tax, accounting, and other regulatory requirements).

05

Data Retention

We retain your information for as long as your account is active and for a reasonable period thereafter to allow you to reactivate your account, to comply with legal obligations, to resolve disputes, and to enforce our agreements.

Account data

Profile, settings, login credentials

Life of account

Transaction records

Required by tax and accounting regulations

7+ years

Support communications

Tickets, emails, chat transcripts

Up to 3 years

Logs and usage data

Server logs, analytics events

Up to 24 months

Submitted content & results

TextChecker scans, AI tool inputs and outputs; similarity fingerprints are retained as anonymized data

Life of account

Backups

Rolling encrypted backups

Standard schedule

After the applicable retention period, we securely delete or anonymize the information.

06

Cookies and Tracking Technologies

We use the following categories of cookies:

You can control non-essential cookies through your browser settings and, where available, through our cookie preference center.

07

Data Security

We implement reasonable administrative, technical, and physical safeguards to protect your information, including:

HTTPS / TLS encryption in transit for all pages
Encryption at rest for sensitive database fields
Password hashing using industry-standard algorithms
Tokenized payment processing through PCI-compliant providers (Stripe, PayPal)
Role-based access controls for internal staff
Regular security review of our infrastructure

No system is perfectly secure

We cannot guarantee the absolute security of your information, and you use the Service at your own risk. If we become aware of a security incident affecting your information, we will notify you and the relevant authorities as required by applicable law.

08

Children's Privacy

The Service is intended for users 18 years of age or older, or for users 13 years of age or older with the consent and supervision of a parent or legal guardian.

We do not knowingly collect personal information from children under 13. If we learn we have collected personal information from a child under 13, we will delete it as soon as possible. If you believe a child under 13 has provided us with personal information, please contact [email protected].

09

International Data Transfers

PaperDue is operated from the United States. If you access the Service from outside the United States, your information will be transferred to and processed in the United States, which may have data protection laws different from those of your country of residence.

Where required, we use appropriate safeguards for international transfers of personal data, such as the Standard Contractual Clauses approved by the European Commission.

10

Third-Party Links and Services

The Service may contain links to third-party websites and services (for example, Wikipedia references, citation sources, and external research databases). We are not responsible for the privacy practices or content of those third parties. We encourage you to review their privacy policies before providing any personal information.

11

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email (using the address associated with your account) or by posting a prominent notice on the Service prior to the change taking effect. The "Last Updated" date at the top of this Policy reflects the most recent revision.

Your continued use of the Service after the effective date of any update constitutes acceptance of the revised Privacy Policy.

12

Contact Us

If you have any questions or concerns about this Privacy Policy or our information practices, please contact:

Privacy inquiries

Electronic Inspiration LLC Attn: Privacy Officer PaperDue.com Miami, Florida, United States

Privacy & Data Requests [email protected] General support [email protected]

For data subject requests under the GDPR, CCPA, or similar laws, please use the email above and include Data Subject Request in the subject line. We aim to respond within 30 days.