1. Overview

This Privacy Policy explains how grime (the Service) collects, uses, and stores data when you interact with the Discord bot, the web dashboard, and any related integrations. By using the Service, you consent to the data practices described below.

The Service is operated for Discord communities. Server owners and administrators control which features are enabled and what data the bot processes on their behalf.

This document is intentionally detailed so server owners and members can understand exactly what happens to data as it moves through moderation, automation, dashboards, and backups. If a feature is not enabled for a server, the Service does not collect the data required for that feature.

Your relationship with a specific Discord server is governed by that server’s rules. If you have questions about why a particular type of data is being collected in a server, contact the server’s administrators.

2. Definitions

• Service means the grime Discord bot, related APIs, and the web dashboard.
• Server means a Discord guild where the bot is installed.
• Server Owner or Admin means the individuals who configure the bot for a server.
• User means any Discord member interacting with the bot or web dashboard.

Additional terms such as logs, automations, and settings refer to the configuration data and outputs created through the bot and dashboard.

3. Data We Collect

The Service collects only the data required to deliver features that are enabled by the server owner or administrator. Depending on configuration, the data may include:

• Discord identifiers: user IDs, server IDs, channel IDs, role IDs, message IDs, and related metadata.
• User profile data: usernames, display names, avatars, and roles as provided by Discord.
• Message content: content used for moderation checks, automations, or logging if enabled by server configuration.
• Moderation activity: moderation actions, logs, audit references, and rule violations.
• Economy and games data: balances, inventories, wagers, wins, losses, and leaderboard stats.
• Dashboard data: OAuth profile data, session identifiers, IP addresses, user agent strings, and security logs to protect the dashboard.

We do not ask for or require sensitive personal data. If a server owner chooses to store custom notes or identifiers, they are responsible for ensuring that the content complies with applicable law and Discord’s policies.

When you remove the bot from a server, the Service will no longer receive events from that server and data retention policies will apply to stored information as described below.

4. How We Use Data

Data is used to:

• Execute commands and automations requested by users.
• Enforce moderation rules configured by server staff.
• Maintain game sessions, economy balances, and leaderboards.
• Provide audit trails, logs, and safety diagnostics.
• Authenticate and secure the dashboard experience.
• Improve reliability, debugging, and performance of the Service.

We do not use your data for targeted advertising. Usage analytics are limited to operational telemetry and feature health monitoring.

Some actions may create system notifications or logs for administrators. Those logs are intended to help server staff maintain safety and transparency.

5. AI and Automated Analysis

If server administrators enable AI-driven moderation or analysis features, message content and metadata may be processed by automated systems. These features operate only when explicitly enabled and configured by the server owner.

Third-party AI providers may process data solely for moderation and safety evaluation. The Service does not sell or rent user data.

Automated systems are intended to assist moderators and do not replace human decision making. The final responsibility for moderation actions remains with the server’s staff.

If AI features are disabled in a server, no AI processing of that server’s content occurs.

6. Cookies and Sessions

The web dashboard uses cookies or similar session identifiers to keep you logged in and to secure your session. IP addresses and user agent strings may be logged for security and abuse prevention.

Session data is used to detect unauthorized access and to support account security tooling such as login alerts or device validation.

7. Data Retention

Data is retained for as long as required to provide the Service and meet operational, security, and compliance needs. Server owners can delete configuration data, logs, or economy records through the dashboard or by removing the bot from their server.

If you want data removed, contact the server owner or reach out to support. Retention periods may vary depending on server configuration.

Some audit records may be retained longer to support security investigations or compliance requirements. When retention is no longer necessary, data is deleted or anonymized.

8. Data Sharing

We do not sell user data. Data may be shared only with:

• Service providers for hosting, security, and infrastructure.
• Payment processors or commerce platforms when purchases are made.
• Third-party services explicitly configured by the server owner.

When third-party services are used, data sharing is limited to what is required to provide the selected feature. Those providers are expected to maintain industry-standard security practices.

9. Security

We use reasonable administrative and technical measures to protect data, including access controls and audit logging. No system is completely secure, and you acknowledge that you share data at your own risk.

We regularly review access permissions, rotate sensitive credentials, and monitor for suspicious activity. Security updates may be deployed without prior notice to protect the Service.

10. Your Rights

Depending on your location, you may have rights to access, correct, or delete your data. Requests should be directed to your server owner or to our support contact so we can validate the request and respond appropriately.

We may require verification of your identity or server role before fulfilling a request. If a server owner controls the data, we will direct requests to them.

11. Children

The Service is intended for users who meet Discord minimum age requirements. If you are under the legal age in your jurisdiction, you must have permission from a parent or guardian to use the Service.

We do not knowingly collect personal data from children. If we learn that data from a child has been collected in error, we will take steps to remove it.

12. Changes

We may update this Privacy Policy from time to time. Material changes will be posted on this page with an updated revision date.

Continued use of the Service after an update constitutes acceptance of the revised policy.

13. Contact

For privacy questions or data requests, contact the server owner or open a ticket in the official support Discord.

Include the server ID and relevant context so we can route your request accurately and respond as quickly as possible.