Log in
← Back to homepage

MidnightBot Privacy Policy

Last updated: June 4, 2026
Personal Data Administrator (ADO): UNIversal Developers, unidevelopers.co@gmail.com

1. What data do we collect?

Data necessary for bot operation:

  • Discord server ID (guild_id) — server identification
  • Discord user ID (user_id) — for features: reminders, message limits, watched streamers
  • Channel and role IDs — bot configuration

Optional data (provided by the server administrator):

  • DeepSeek API keys — encrypted (AES-256-GCM), never stored in plaintext
  • Bot settings — feature configuration

Dashboard login data (via Discord OAuth):

  • Discord ID, username, avatar
  • Access token (stored temporarily in session)

2. How do we collect data?

  • Through interaction with the bot on the Discord server
  • Through the admin panel (dashboard) after logging in via Discord OAuth

3. Purpose of data processing

  • Providing Discord bot services (welcome messages, tickets, AI chat, etc.)
  • Enabling bot management via the admin panel
  • Ensuring security (message limits, monitoring)
  • Statistical purposes — anonymous aggregated data about bot usage to improve features

4. Storage and security

  • Data stored on a MySQL server (bot-hosting.net)
  • DeepSeek API keys are encrypted (AES-256-GCM) — no one, not even the administrator, has access to the full key
  • The database connection is password-protected

5. Data sharing

5.1. Responsibility for AI content (DeepSeek)

  • MidnightBot enables the use of the DeepSeek AI model on Discord servers
  • AI-generated content is created automatically by an external model (DeepSeek) and is NOT subject to moderation or control by the Bot Administrator
  • The MidnightBot Administrator is not responsible for AI-generated content — responsibility lies with the user who uses this feature on their server
  • The user adds their own DeepSeek API key at their own risk and is required to comply with the DeepSeek terms of service

5.2. Third-party API keys

The AI Chat feature requires the server owner to provide their own third-party API key (DeepSeek). MidnightBot does not provide, resell, or manage API keys. All API usage is billed directly by the third-party provider and is separate from the MidnightBot Premium subscription.

  • API keys are encrypted (AES-256-GCM) before being stored in the database.
  • The server owner is solely responsible for obtaining, securing, and managing their own API keys.
  • MidnightBot has no access to API key billing, usage limits, or account management at the third-party provider.
  • The server owner is responsible for all costs incurred through their API key usage.

6. Data retention period

  • Data is stored until the bot is removed from the Discord server or at the request of the server administrator
  • The server administrator can delete all their server data through the admin panel

7. Your rights (GDPR)

  • In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council (GDPR), every user has the right to:
    • Access — obtaining information about processed data
    • Rectification — correcting inaccurate data
    • Erasure ("right to be forgotten") — removing the bot from the Discord server results in the immediate deletion of all data associated with that server
    • Restriction of processing — in cases specified in the GDPR
    • Data portability — receiving your data in a structured format
    • Objection — to data processing in specific situations
  • To exercise your rights, contact the Personal Data Administrator (ADO): unidevelopers.co@gmail.com

8. Cookies

  • The dashboard uses cookies solely for session authentication (httpOnly, secure)
  • We do not use cookies for tracking or advertising

9. Changes to the privacy policy

  • We reserve the right to make changes
  • We will notify about changes on the bot's website

10. Contact