Last updated: February 19, 2026
This Privacy Policy explains how Certyme, Biblis, Hesse 68647, Germany (βCertymeβ, βweβ, βusβ, or βourβ) collects, uses, processes, and protects personal data when you access or use https://certyme.com (the βServiceβ).
By using the Service, you agree to the processing of your data as described in this policy.
1. Data Controller
Certyme
Biblis, Hesse 68647
Germany
Email: support@certyme.com
2. Data We Collect
Account & Identity Data
β’ Name
β’ Email address
β’ Billing address
Transaction Data
β’ Purchased tokens
β’ Payment status
β’ Transaction identifiers
β’ Order history
Service Usage Data
β’ Uploaded images (processed but not stored)
β’ AI analysis results
β’ Generated certificates
β’ Token usage
Technical Data
β’ IP address
β’ browser type & device information
β’ timestamps
β’ security & access logs
3. How We Collect Data
We collect data when you:
β’ create an account
β’ purchase tokens
β’ upload images for analysis
β’ receive certificates via email
β’ contact support
β’ interact with the website
Technical data is collected automatically for security and system functionality.
4. Purpose of Processing
We process personal data to:
β’ provide and operate the Service
β’ process token purchases and payments
β’ perform AI-based image analysis
β’ generate and deliver certificates
β’ manage user accounts and token balances
β’ prevent fraud and misuse
β’ comply with legal obligations
β’ improve system security and performance
We will request consent if data is used for any additional purpose.
5. AI Processing & Automated Analysis
When images are submitted:
β’ images are transmitted to AI providers (Google Gemini, OpenAI, Anthropic)
β’ processing is performed solely for analysis
β’ images are not permanently stored by Certyme
β’ results are generated probabilistically and may contain inaccuracies
AI analysis supports decision-making but does not guarantee factual accuracy.
Users should avoid uploading images containing sensitive personal data unless strictly necessary.
6. Third-Party Processors
We share data only when necessary to provide the Service.
Payment Processing
Payments are processed via:
β’ Stripe
β’ PayPal
β’ WooCommerce Payments
These providers process payment data under their own privacy policies.
AI Service Providers
Images are processed by:
β’ Google
β’ OpenAI
β’ Anthropic
Processing may occur on servers outside the European Union.
Hosting & Infrastructure
Our website is hosted by:
All-Inkl.com
Germany / EU
Email Delivery
Certificates and transactional emails are delivered via SMTP infrastructure.
7. International Data Transfers
Some service providers may process data outside the European Economic Area (EEA).
Where applicable, transfers rely on appropriate safeguards such as Standard Contractual Clauses.
8. Data Retention
We retain personal data only as long as necessary:
β’ account & transaction data: as required for legal and accounting obligations
β’ security logs: limited retention for fraud prevention
β’ AI analysis results: stored only as required to provide certificates
Anonymous aggregated data may be stored indefinitely.
9. Legal Basis for Processing (GDPR)
Processing is based on:
β’ Art. 6(1)(b) GDPR β contract performance
β’ Art. 6(1)(c) GDPR β legal obligations
β’ Art. 6(1)(f) GDPR β legitimate interests (security, fraud prevention)
β’ Art. 6(1)(a) GDPR β consent (where applicable)
10. Your Rights
You have the right to:
β’ access your personal data
β’ correct inaccurate data
β’ request deletion
β’ restrict processing
β’ data portability
β’ withdraw consent
β’ lodge a complaint with a supervisory authority
To exercise your rights:
11. Security
We implement appropriate technical and organizational safeguards.
However, no internet transmission can be guaranteed to be completely secure.
12. Age Requirement
The Service is intended for legally competent persons.
Minors may use the Service only with parental or legal guardian consent.
13. Changes to this Policy
We may update this Privacy Policy to reflect legal or operational changes.