Privacy Policy

Introduction

This Privacy Policy explains how Pro-tonn ("we", "us", or "our") collects, uses, processes, and protects your personal information when you use our Discord bot services (the "Service"). By using our Service, you agree to the collection and use of information in accordance with this policy.

We are committed to protecting your privacy and ensuring that your personal information is handled in a safe and responsible manner. This policy applies to all users of our Service, including server administrators and end users.

Information We Collect

We collect several types of information to provide and improve our Service:

Discord Account Information

When you authenticate with Discord OAuth, we collect:

• Discord user ID (unique identifier)
• Username and discriminator
• Email address (if provided)
• Avatar URL
• Account creation date and login timestamps

Server Information

For servers where our bot is present, we collect:

• Server ID, name, and icon
• Server ownership and staff permissions
• Channel configuration and settings
• Server member count and basic statistics
• Bot configuration preferences and enabled features
• Workflow automation data and triggers

Usage Data

• Bot command usage and frequency
• Feature engagement and preferences
• Support ticket interactions and communications
• Error logs and performance metrics
• Subscription and billing information
• Audit logs for security and administrative actions

Browser and Device Data

• User preferences stored locally (theme settings, interface preferences)
• Cached application data for performance optimization
• Service worker registration and cache storage
• Browser type and version for compatibility
• Device type (mobile/desktop) for responsive design

Note: Local browser storage and caching technologies are covered in detail in our Cookie Policy.

How We Use Your Information

We use the collected information for the following purposes:

• Service Provision: To provide, maintain, and improve our Discord bot services
• Authentication: To authenticate users and maintain secure access to accounts
• Server Management: To enable server configuration, moderation, and feature management
• Premium Features: To manage subscriptions, promotional codes, and premium feature access
• Support: To provide customer support and resolve technical issues
• Analytics: To analyze usage patterns and improve service performance
• Communications: To send service-related notifications and announcements
• Security: To monitor for abuse, fraud, and security threats
• Performance Optimization: To cache content locally for faster loading and better user experience
• Workflow Automation: To execute custom automation workflows and triggers for Discord servers

Local Data Storage and Processing

Pro-tonn uses modern web technologies to enhance your experience by storing certain data locally on your device:

What's Stored Locally

• User Interface Data: Theme preferences, dashboard layouts, and customized settings
• Performance Cache: Page content and assets for faster loading on repeat visits
• Offline Functionality: Essential application data to provide limited functionality without internet
• Form Data: Temporary storage of form inputs to prevent data loss during navigation

What's NOT Stored Locally

• Authentication Credentials: Login tokens and session data remain on our secure servers
• Sensitive Data: Payment information, private server data, and user credentials
• Personal Information: Email addresses, Discord tokens, and personal identifiers
• Real-time Data: Live notifications, fresh server metrics, and dynamic content

Data Control

You have full control over locally stored data:

• Clear all local data through your browser's privacy settings
• Use incognito/private browsing to prevent local storage
• Disable service workers in browser settings if desired
• Local data is automatically updated when we release new versions

Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following limited circumstances:

• Discord Platform: We interact with Discord's API to provide bot functionality, which may involve sharing necessary data with Discord
• Payment Processing: Billing information may be processed by secure payment processors like Paddle for subscription management
• Cloudflare Services: Performance and security data may be processed by Cloudflare for CDN and protection services
• Legal Requirements: When required by law, regulation, or legal process
• Safety and Security: To protect the rights, property, or safety of Pro-tonn, our users, or others
• Business Transfers: In connection with a merger, acquisition, or sale of business assets

Important: Data stored locally on your device through service workers or browser storage is not shared with third parties as it remains under your control.

Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction:

Server-Side Security

• Encrypted data transmission using HTTPS/TLS protocols
• Secure database storage with access controls and encryption
• Regular security audits and vulnerability assessments
• Limited access to personal data on a need-to-know basis
• Secure authentication and session management
• Regular data backups with encryption
• Cloudflare protection against DDoS and security threats

Client-Side Security

• Local storage is domain-isolated and cannot be accessed by other websites
• Service worker caches are secured by browser same-origin policies
• No sensitive authentication data is stored locally on your device
• Local data is automatically encrypted by modern browsers
• Cache data is automatically cleaned up and updated

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your information, we cannot guarantee absolute security.

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy:

Server-Stored Data

• Active Accounts: Data is retained while your account remains active
• Inactive Accounts: Account data may be retained for up to 2 years after last activity
• Server Data: Server configuration data is retained while the bot remains in the server
• Support Data: Support tickets and related communications may be retained for up to 3 years
• Audit Logs: Administrative and security logs retained for 1 year for security purposes
• Legal Requirements: Some data may be retained longer if required by law

Locally Stored Data

• Cache Data: Automatically updated when we deploy new versions
• User Preferences: Persist until you clear browser data or change settings
• Temporary Data: Form inputs and temporary data cleared on session end
• Service Worker Cache: Managed automatically with version updates and browser limits

You may request deletion of your personal data at any time by contacting our support team. Local browser data can be cleared at any time through your browser settings.

Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information:

Data Rights

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information
• Portability: Request transfer of your data to another service
• Restriction: Request restriction of processing in certain circumstances
• Objection: Object to processing based on legitimate interests
• Withdrawal: Withdraw consent where processing is based on consent

Local Data Control

• Browser Settings: Clear cached data, cookies, and local storage through browser privacy settings
• Selective Clearing: Use browser developer tools to manage specific cached content
• Service Worker Control: Unregister service workers to stop local caching
• Private Browsing: Use incognito/private mode to prevent local data storage

To exercise your data rights related to server-stored information, please contact us through our Discord server or support system.

Payment Processing

For premium subscriptions and payments, we work with third-party payment processors such as Paddle. These processors handle billing information according to their own privacy policies and security standards:

• Payment data is processed securely by certified PCI-compliant payment processors
• We do not store full credit card or payment information on our servers
• Billing records are maintained for tax, accounting, and subscription management purposes
• Refund and chargeback information may be retained as required by financial regulations
• Payment processor cookies and local storage may be used for fraud prevention

Please review the privacy policies of our payment processors for more information on how they handle your payment data.

Children's Privacy

Our Service is intended for users who meet Discord's minimum age requirements (typically 13 years or older, depending on jurisdiction). We do not knowingly collect personal information from children under the applicable minimum age.

If we become aware that we have collected personal information from a child under the applicable age without parental consent, we will take steps to delete such information from both our servers and any locally cached data. If you believe we may have collected information from a child, please contact us immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have different data protection laws than your country:

Server Data Processing

• Our primary servers are located in secure data centers with appropriate protections
• Cloudflare's global network may process data at edge locations worldwide
• Database replication may occur across multiple geographic regions for reliability
• Backup data may be stored in different geographic locations for disaster recovery

Local Data Storage

• Data cached by service workers remains on your local device
• Local storage preferences are tied to your specific browser and device
• No local cached data is transmitted internationally without your explicit action

When we transfer your personal information internationally, we ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy and applicable laws.

Third-Party Services

Our Service integrates with several third-party platforms and services. Each has their own privacy practices:

Essential Third-Party Services

• Discord: Core platform integration for bot functionality and user authentication
• Cloudflare: CDN, security, and performance optimization services
• Paddle: Payment processing and subscription management
• Font Providers: Google Fonts and other typography services

Data Sharing with Third Parties

• We only share data necessary for service functionality
• Third-party processors are bound by data processing agreements
• We do not share personal data for marketing or advertising purposes
• Local cached data remains on your device and is not shared automatically

We strongly advise you to review the privacy policies of these third-party services:

• Discord Privacy Policy
• Cloudflare Privacy Policy
• Paddle Privacy Policy
• Google Privacy Policy

Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

• Immediate Response: Take immediate steps to contain and assess the breach
• Investigation: Conduct a thorough investigation to understand the scope and cause
• User Notification: Notify affected users within 72 hours when feasible
• Regulatory Reporting: Report to appropriate authorities as required by law
• Remediation: Implement additional security measures to prevent future breaches
• Transparency: Provide clear information about what data was affected and steps taken

Local data stored on your device through service workers and browser storage is not affected by server-side breaches, providing an additional layer of protection for cached content.

Data Processing Legal Basis

We process your personal information based on the following legal grounds:

• Contractual Necessity: Processing necessary to provide our Discord bot services
• Legitimate Interest: For service improvement, security, and fraud prevention
• Consent: For optional features like marketing communications and advanced analytics
• Legal Obligation: When required to comply with applicable laws and regulations
• Vital Interests: To protect the safety and security of our users and services

For local data storage and caching, we rely on legitimate interest to provide enhanced performance and user experience, while ensuring you maintain full control over this data.

Compliance and Regulations

Pro-tonn is committed to complying with applicable privacy laws and regulations:

GDPR Compliance (EU Users)

• Lawful basis for processing personal data
• Data subject rights including access, rectification, and erasure
• Data protection by design and by default
• Appropriate technical and organizational measures
• Data breach notification procedures

CCPA Compliance (California Users)

• Disclosure of personal information collection and use
• Right to know about personal information collected
• Right to delete personal information
• Right to opt-out of sale of personal information (we do not sell data)
• Non-discrimination for exercising privacy rights

Other Jurisdictions

We strive to comply with privacy laws in all jurisdictions where our users are located, including but not limited to PIPEDA (Canada), LGPD (Brazil), and other applicable data protection regulations.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes, we will:

• Post the updated Privacy Policy on our website
• Update the "Effective Date" at the top of this policy
• Notify users of significant changes through our service announcements
• Provide advance notice for material changes that affect your rights
• Update information about new technologies like service workers or caching methods
• Ensure compliance with evolving privacy regulations

Your continued use of our Service after any changes constitutes your acceptance of the new Privacy Policy. For significant changes affecting local data storage or processing, we may seek additional consent where required.