Privacy Policy

Last updated: 28 March 2026

We take the protection of your personal data seriously. This Privacy Policy explains what data we collect, how we use it, and what rights you have under the General Data Protection Regulation (GDPR) and applicable national data protection law.

1. Data Controller

korrektur.de / Benjamin Lohrer
Rintheimer Straße 34
76131 Karlsruhe
Germany
Email: kontakt@plagiarism-checker-online.net

2. Data We Collect

2.1 Order and Service Data

When you place an order, we collect:

• Email address — used to deliver your report and provide order confirmation.
• Uploaded document — your file is processed to perform the plagiarism or AI scan and then deleted after 14 days.
• Payment information — handled entirely by Stripe. We do not store your card details on our servers. See Section 7 for details.
• Order metadata — order ID, scan type, page count, timestamp.

2.2 Server Log Data

When you visit our website, our hosting provider automatically logs:

• IP address (anonymized after 7 days)
• Browser type and version
• Operating system
• Referring URL
• Date and time of access
• Requested page

This data is collected for security, performance monitoring, and error diagnosis. It is not linked to individual user identities.

2.3 Cookies

We use only technically necessary cookies required for the website to function. We do not use marketing cookies, tracking pixels, or cross-site analytics. If we introduce optional analytics in the future, we will update this policy and request your consent.

3. Purpose of Processing

We process your data for the following purposes:

• Performing plagiarism and AI detection scans on uploaded documents
• Delivering scan reports to your email address
• Processing payment via Stripe
• Responding to support inquiries
• Operating and improving the technical infrastructure of the service
• Complying with legal obligations (e.g., tax records)

4. Legal Basis for Processing (GDPR Art. 6)

We process personal data on the following legal bases:

• Art. 6(1)(b) GDPR — Performance of a contract: processing your order, delivering results, and managing payment.
• Art. 6(1)(c) GDPR — Legal obligation: retaining transaction records for tax and accounting purposes as required by German law.
• Art. 6(1)(f) GDPR — Legitimate interest: server log data for security and operational monitoring.

5. Data Retention

• Uploaded documents: Deleted from our servers 14 days after upload.
• Scan results: Stored for 28 days, then permanently deleted.
• Email address: Retained for the duration of your order, plus 28 days, then deleted unless required for legal retention obligations.
• Transaction records: Retained for 10 years as required by German tax law (§ 147 AO).
• Server logs: IP addresses are anonymized after 7 days; log files are deleted after 30 days.

6. Your Rights Under GDPR

As a data subject, you have the following rights:

• Right of access (Art. 15 GDPR): You may request a copy of the personal data we hold about you.
• Right to rectification (Art. 16 GDPR): You may request correction of inaccurate data.
• Right to erasure (Art. 17 GDPR): You may request deletion of your data where there is no overriding legitimate interest or legal obligation to retain it.
• Right to restriction of processing (Art. 18 GDPR): You may request that we limit how we process your data in certain circumstances.
• Right to data portability (Art. 20 GDPR): You may request your data in a structured, machine-readable format.
• Right to object (Art. 21 GDPR): You may object to processing based on legitimate interest.
• Right to lodge a complaint: You may file a complaint with a supervisory authority. In Germany, the relevant authority is the Landesbeauftragter für den Datenschutz und die Informationsfreiheit Baden-Württemberg (LfDI BW).

To exercise your rights, contact us at: kontakt@plagiarism-checker-online.net

7. Payment Processing via Stripe

All payments are processed by Stripe Payments Europe, Ltd. (Block 4, Harcourt Centre, Harcourt Road, Dublin 2, Ireland). When you complete a payment, you are subject to Stripe's own privacy policy, available at stripe.com/privacy.

We receive payment confirmation and an order reference from Stripe, but we do not store your card number, CVC, or bank account details. Stripe is certified to PCI DSS Level 1.

8. Data Transfers Outside the EU

We process data primarily within the European Union. Stripe, as our payment processor, may transfer data to the United States under Standard Contractual Clauses (SCCs) approved by the European Commission. No other transfers of personal data to third countries take place.

9. Security

We use HTTPS/TLS encryption for all data transmission. Uploaded documents are stored in an access-controlled environment and are not accessible to unauthorized parties. Employees who access order data do so only for the purpose of delivering your report and providing support.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The current version is always available at plagiarism-checker-online.net/privacy-policy. We will notify users of material changes where technically feasible.

11. Contact for Data Protection Inquiries

korrektur.de / Benjamin Lohrer
Rintheimer Straße 34, 76131 Karlsruhe, Germany
Email: kontakt@plagiarism-checker-online.net