Privacy Policy

This privacy policy applies to the website(s) vaneta.xyz and all its associated subdomains — including the dashboard and documentation — and our discord.com bot application Vaneta. Uses of “we”, “us”, and “our” in this document refer to this online service.

Data Storage and Retention

Our database stores the information needed to make the bot and dashboard work. This includes:

  1. Server Configuration Data

    When Vaneta is added to a server, we store the ID of that server and its owner so it can be configured on the dashboard. Module configurations you create — the channels, roles, messages, and other settings each module needs — are stored alongside it.

  2. Module and Activity Data

    Enabled modules store the data they need to function. For example: the Levels module records each member’s XP and level; the member statistics feature records activity counts — messages sent and time spent in voice, streaming, or on camera, per channel per day — but never the content of messages; the moderation modules record punishments and warnings, along with role snapshots so roles can be restored; audit logs record server events to the channels and history you configure; and the invite tracker records which invite each member joined with.

  3. Dashboard Authentication Data

    You sign in to the dashboard with Discord (using only the identify scope) or with a one-time code from the /bot login command, which is valid for one minute and can only be used once. After sign-in, your session is kept in an encrypted browser cookie containing only your Discord user ID — OAuth access tokens are revoked immediately after your identity is verified and are never stored.

We do not store message content (beyond the messages you yourself configure for the bot to send), email addresses, or passwords.

Data is only kept for as long as it is necessary. If the bot is removed from a server, all data relating to that server is swiftly deleted.

Data Security

We take every reasonable precaution to protect your data from unauthorised access and employ a number of security measures to safeguard it. However, absolute data security cannot be guaranteed and, despite any of our best efforts, there will always be a risk of data breaches. In such an event, we will comply with all applicable laws and procedures to protect your data and mitigate any potential harm.

Access to highly sensitive data, such as bot tokens or database credentials, is strictly limited to the bot owner. Dashboard access to a server’s configuration is limited to that server’s managers. Our goal is to provide you with a secure and trustworthy service that respects your privacy and protects your information.

Data Request Procedures

If you wish to have all of your data stored by us deleted or viewed, please reach out in our Discord server. We will take all necessary steps to ensure that your request is processed in a timely and efficient manner, and we will notify you once your data has been deleted or is ready for viewing.

Updates and Changes

We have the discretion to change this policy to reflect updates to our processes, current acceptable practices, or legal or regulatory changes. If we decide to change this policy, we will post the changes here at the same link you are currently using to read this policy. We reserve the right to update this policy at any time without notice.

It is important to note that we have no control over the privacy policies of any external services that may be linked on our website. We are not affiliated with any of the services linked on our website and cannot be held responsible for their privacy practices.

Last Updated

17th of July, 2026