Privacy Policy
This Privacy Policy explains how ServerGPT collects, uses, discloses, retains, and protects personal data when you use our website, dashboard, Discord integrations, AI tools, generated images, bot workflows, billing features, support, and related services.
ServerGPT is built around Discord server creation and AI-assisted workflows. That means we may process account details, Discord server data, prompts, generated layouts, generated images, usage logs, credits, subscriptions, and payment references so the product can work.
Questions about these policies can be sent through our support page.
1. Personal data we collect
We collect personal data you provide, data generated by your use of ServerGPT, and data received from connected services where you choose to connect them. The exact data depends on the features you use, your plan, your Discord permissions, your payment choices, and your account settings.
- Account information, such as name, username, email address, Discord identifiers, avatar, account preferences, plan, credit balance, hosted bot allowance, support messages, and account status.
- Discord information, such as servers you can access, server names, server IDs, icons, channels, categories, roles, permissions, bot connection status, and metadata needed to display, edit, cache, or sync a server layout.
- Content you provide, such as prompts, chat messages, uploaded or selected images, generated image instructions, customisation settings, server descriptions, research instructions, feedback, and other material you submit to the Services.
- Generated content and workspace data, such as chat history, generated server layouts, generated images, image prompts, server identity choices, saved editor state, changed items, and sync results.
- Usage, billing, and log data, such as AI usage, model name, reasoning level, intent, input and output token counts, credits charged, profit and cost reporting, IP-derived approximate location, browser type, device data, timestamps, errors, rate-limit events, and product interactions.
- Payment information processed through our payment provider, such as customer IDs, subscription IDs, payment method references, card brand, last four digits, expiry date, transaction history, invoices, top ups, auto top-up events, refunds where applicable, tax details, and fraud signals. We do not intentionally store full card numbers.
2. How we use personal data
- To provide, operate, maintain, secure, personalize, troubleshoot, and improve ServerGPT.
- To authenticate users, maintain sessions, process logout, protect accounts, enforce limits, prevent abuse, and detect fraud or security threats.
- To show Discord servers, connect bots, cache server lists, generate and edit server layouts, create images, answer questions, run research, sync changes to Discord, and maintain workspace history.
- To meter AI usage, deduct credits, process subscriptions and top ups, enable auto top ups, provide billing support, maintain accounting records, and comply with tax, chargeback, anti-fraud, and financial obligations.
- To communicate with you about support, security, billing, product changes, policy updates, outages, surveys, and service messages.
- To enforce our Terms and Usage Policy, investigate misuse, comply with legal obligations, respond to lawful requests, and protect the rights, safety, privacy, and property of users, ServerGPT, Discord communities, and third parties.
3. AI providers and generated content
ServerGPT uses AI models and related providers to classify requests, generate text, create and edit images, run web-informed research where enabled, and transform your instructions into server structures. We send the content needed to fulfil your request to those providers, which can include prompts, recent chat context, selected images, compact server information, and relevant customisation settings.
AI output can contain personal data if you provide it or ask us to generate it. You should avoid submitting sensitive personal data unless it is necessary for your use of the Services and you have the right to provide it. We may log AI usage metadata for billing, safety, debugging, and reporting.
4. Discord data and connected services
When you connect Discord, we process Discord access tokens, refresh tokens, server information, and bot-related information as needed to display your servers, verify permissions, connect bots, cache guild lists, and sync changes you request. We do not control Discord, and Discord processes your data under its own terms and privacy policies.
If you disconnect, delete data, log out, revoke permissions, or remove our bot from a Discord server, some cached data may remain for a limited period unless you delete it through available data controls or contact support. Discord may retain its own records independently.
6. Legal bases for processing
Where UK or European data protection law applies, we rely on different legal bases depending on the activity. We process data to perform our contract with you when we provide accounts, AI responses, Discord integrations, subscriptions, top ups, and support. We process data based on legitimate interests when we secure, debug, improve, measure, and protect the Services, provided those interests are not overridden by your rights. We process data to comply with legal obligations for tax, accounting, consumer, payment, safety, and lawful request obligations. Where required, we rely on consent, such as for optional communications or certain cookies.
7. Retention
We keep personal data for as long as needed to provide the Services, maintain your account, comply with legal obligations, resolve disputes, enforce agreements, prevent abuse, maintain security, and keep financial records. Retention periods vary based on the type of data, your settings, whether the data is still needed, and legal requirements.
Data you delete through in-product controls is removed from active systems within a reasonable period unless we need to keep it for security, fraud prevention, legal compliance, billing, backups, dispute resolution, or enforcement. Backups and logs may persist for a limited period before deletion or overwrite.
8. Data controls
- You can delete saved chat data and generated images in dashboard Data Controls where available.
- You can log out, revoke Discord access through Discord, remove our bot from a server, or stop using a connected server.
- You can update account settings, customisation settings, appearance preferences, auto top-up settings, payment methods, and plan settings where available.
- You can contact support to request access, correction, deletion, portability, restriction, objection, or other privacy rights that apply in your location.
9. Children
ServerGPT is not directed to children under 13, and we do not knowingly collect personal data from children under 13. Users under 18 must have permission from a parent or guardian. If you believe a child has provided personal data without appropriate permission, contact us through support so we can review and take appropriate action.
10. Security
We use reasonable technical and organizational measures designed to protect personal data, including access controls, session controls, database protections, logging, and provider security practices. No internet service can be guaranteed to be perfectly secure, and you are responsible for protecting your own devices, Discord account, payment methods, and account credentials.
11. International transfers
We and our service providers may process and store personal data in the United Kingdom, United States, European Economic Area, and other countries where we or our providers operate. Where required, we use appropriate safeguards for international transfers, such as contractual protections or other lawful transfer mechanisms.
12. Changes to this Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will publish the updated version and update the date above. If changes are material, we will take reasonable steps to provide additional notice where required.