Privacy Policy

• Uploaded documents: Sent to OpenAI for review generation, then stored so you can view the review later. Documents from anonymous users are deleted after 7 days if unclaimed.
• Email: Account login, review-ready notifications, password reset. We do not sell your email or send marketing without consent.
• Payment: Processed entirely by Stripe. We store pass/credit records but never card details.
• Server logs: Used for debugging and abuse prevention. Retained for 30 days.

• OpenAI: Submitted papers are sent to OpenAI's API for review generation. See OpenAI's privacy policy. API inputs are not used for model training per OpenAI's data usage policy.
• Stripe: Payment processing. See Stripe's privacy policy.
• DigitalOcean: Hosting and storage infrastructure.

• Anonymous uploads: Stored for 7 days, then automatically deleted.
• Account data: Retained while your account is active. Delete your account to remove your data.
• Reviews: Retained indefinitely as part of the Service. Public leaderboard reviews are visible to all users.

• Access: Request a copy of your data by emailing us.
• Deletion: Request account deletion. We will remove your account and personal data within 30 days.
• Correction: Update your account information through settings.

• buyer_session: Links your browser to your review pass. HttpOnly, Secure, SameSite=Lax.
• user_session: Authenticates logged-in users. HttpOnly, Secure, SameSite=Lax.

We do not use tracking cookies, analytics cookies, or third-party advertising cookies.