Privacy Policy

Turninspect is operated by academi.cx Inc. (“academi.cx”, “we”, “us”, or “our”), a corporation incorporated under the Canada Business Corporations Act (corporation number 1777537-7), with its registered office at 200 Bay Street, North Tower, Suite 1200, Toronto, Ontario, M5J 2J2, Canada. We operate the website and service available at turninspect.com.

This Privacy Policy explains what personal information we collect when you use the Service, why we collect it, and what choices you have about it. We act as the “controller” (or equivalent term under your local law, such as “business” under California law) of your personal information.

For privacy questions or requests, contact us at hi@turninspect.com.

We collect only the information needed to operate the service:

• Account information. Your name and email address when you create an account. Authentication is handled by our identity provider, Clerk, which may also collect IP address, browser/device metadata, and (if you enable it) third-party sign-in identifiers such as a Google account ID.
• Uploaded documents.The files you submit for analysis. These are stored temporarily for the sole purpose of generating your report and are deleted on the schedule described in “Data retention” below.
• Reports. The PDF reports generated for you, plus associated metadata (file name, page count, timestamps, similarity/AI score summaries).
• Billing information. Purchases are processed by Stripe, Inc., our payment provider. Stripe collects your payment details directly through their secure checkout — we never see or store your card number, CVV, or expiry date. From Stripe we receive only a transaction reference (Checkout Session ID and Payment Intent ID), the amount, currency, and a confirmation that payment succeeded or failed. If you choose to receive emailed receipts from Stripe, your email address is shared with Stripe for that purpose.
• Usage data. Basic logs such as IP address, user agent, timestamps, error reports, and which actions you took in the dashboard. We use this for security, debugging, and abuse prevention.
• Cookies. Strictly necessary cookies set by us and our authentication provider to keep you logged in and to protect against fraud and abuse.

We use the information we collect to:

• Provide and operate the service, including processing your uploads and delivering reports.
• Authenticate you, secure your account, and prevent fraud and abuse.
• Process payments and issue refunds.
• Communicate with you about your account, transactions, and material changes to the service.
• Comply with legal obligations and enforce our Terms.
• Diagnose technical problems and improve the service.

We do not sell your personal information. We do not use your uploaded documents to train machine-learning models, and we do not share them with anyone except the providers listed below who are strictly required to process them on our behalf.

We share information only with the third-party providers that are necessary to operate the service:

• Clerk— authentication and account management. Privacy policy.
• Neon— managed PostgreSQL database hosting for account, job, and credit records. Privacy policy.
• Cloudflare R2— object storage for uploaded documents and generated reports. Privacy policy.
• Upstash— managed Redis for queues and job state. Privacy policy.
• Vercel— hosting of our web application and associated logs. Privacy policy.
• Fly.io— hosting of our worker that performs document processing. Privacy policy.
• Stripe — payment processing. Privacy policy.
• Turnitin— the third-party detection platform whose systems process the documents you upload. Documents may be retained in Turnitin’s systems according to their policies, which we do not control. Please review their privacy notice.

We may also disclose information if required by law, to comply with a valid legal process, or to protect the rights, property, or safety of Turninspect, our users, or others.

We retain personal information for as long as it is needed to provide the service and to comply with our legal obligations. We do not commit to specific deletion timeframes, but you can request deletion of your data at any time, as described below.

• Uploaded documents and generated reports: stored so that they remain available to you from your dashboard. We do not guarantee any specific retention period, and we may delete documents or reports at any time without notice (for example, to manage storage capacity). You may also request deletion of any document or report at any time by contacting us.
• Account data: retained while your account is active. When you delete your account, we will delete your account record and associated documents and reports, except where we are required to retain limited records (such as payment receipts) for tax, accounting, or fraud-prevention purposes.
• Logs and operational data: retained for as long as our infrastructure providers store them, and used for security, debugging, and abuse prevention.

To request deletion of specific documents, reports, or your entire account, email hi@turninspect.com from the address associated with your account.

Depending on where you live, you may have the right to:

• Access the personal information we hold about you.
• Correct inaccurate information.
• Delete your account and associated personal information.
• Export your data in a portable format.
• Withdraw consent or object to certain processing.
• Lodge a complaint with your local data-protection authority.

To exercise any of these rights, email hi@turninspect.com from the address associated with your account. We may ask you to verify your identity before acting on a request.

We are based in Canada and rely on infrastructure providers located in Canada, the United States, and the European Union. If you access the Service from outside Canada, your information will be transferred to and processed in countries whose data-protection laws may differ from those of your country. We rely on the safeguards provided by our infrastructure partners, including standard contractual clauses and equivalent transfer mechanisms where applicable.

We use industry-standard measures to protect your information, including encryption in transit (HTTPS) and at rest, restricted internal access, and audit logging. No system can be guaranteed 100% secure; if we become aware of a breach that affects your personal information, we will notify you and the relevant authorities as required by law.

The Service is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you are between 13 and the age of majority in your jurisdiction (typically 18), you may use the Service only with the consent of a parent or legal guardian, who agrees to be bound by these Terms and this Privacy Policy on your behalf.

If you believe a child under 13 has provided us with personal information, please contact us at hi@turninspect.com and we will delete it.

We use only the cookies and similar technologies strictly necessary to operate the service — specifically, those required to keep you signed in and to prevent fraud. We do not currently use third-party advertising or behavioral-tracking cookies. If we ever add analytics or marketing cookies, this Policy will be updated and (where required by law) we will request your consent.

We may update this Privacy Policy from time to time. The “Effective” date at the top of this page reflects the most recent update. If we make a material change, we will notify you by email or via the Service.

For privacy-related questions or requests, contact hi@turninspect.com.