rifle · Privacy Policy

Effective date: May 2026

Your privacy is important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the rifle dashboard and associated selfbot infrastructure ("Service").

1. Information We Collect

We collect the following types of information:

• Account Information: Username, email (if provided), hashed password, role, whitelist status, ban status.
• Discord Tokens: You may provide Discord user tokens to host selfbots. These tokens are stored encrypted and used only to authenticate with Discord API on your behalf.
• Log Data: When you use the Service (via selfbot), we automatically collect certain logs, including:
  • Message content (including deleted and edited messages) – only from servers/channels where the selfbot is present.
  • Command usage – what commands were executed, by which user, and when.
  • Reaction adds, message deletions, edits, and other Discord events.
  • Heartbeat data (token ID, guild count, timestamps).
• Usage Data: IP addresses, browser type, pages visited, time spent on dashboard, and similar analytics (via Vercel logs).

2. How We Use Your Information

We use collected information for:

• Providing and maintaining the Service (e.g., displaying logs, controlling tokens).
• Improving and personalising your experience.
• Securing the platform (detecting abuse, enforcing bans).
• Communicating with you (e.g., service announcements).
• Complying with legal obligations.

3. Data Storage and Security

All data is stored on Supabase servers (EU region). We use industry‑standard encryption (AES‑256 for tokens at rest) and access controls. However, no method of transmission over the Internet is 100% secure. You use the Service at your own risk.

4. Sharing of Information

We do not sell or rent your personal data. We may share aggregated, anonymised statistics (e.g., total logs stored) publicly. We may disclose information if required by law or to protect our rights.

5. Your Rights

You may request deletion of your account and associated data via the dashboard (admin may delete users). Logs may be retained for up to 30 days after account deletion for security auditing.

6. Children's Privacy

The Service is not intended for persons under 13. We do not knowingly collect information from children under 13.

7. Changes to This Policy

We may update this Privacy Policy from time to time. The latest version will be posted here with a new effective date.