Grizz Privacy Policy
Effective Date: November 11th, 2025
Last Updated: November 11th, 2025
1. Overview
This Privacy Policy explains what data Grizz collects, how it is used, and your choices. By using Grizz or the dashboard, you agree to this Policy.
2. Data We Collect
Grizz collects the minimum data needed to operate features and billing.
| Category | Examples | Purpose |
|---|---|---|
| Discord Identifiers | guild_id, user_id, role_id, channel_id, message_id |
Identify and scope data per guild |
| Configuration Data | enabled modules, feature settings, economy balances | Operate features per guild |
| OAuth2 Information | username, avatar, guild list | Authenticate dashboard sessions and authorize access |
| Subscription Data | Stripe customer ID, plan, status | Manage billing and entitlements |
| Operational Logs | timestamps, errors, rate limit events | Diagnostics, reliability, and abuse prevention |
| Server Content (conditional) | message text, edits, deletions, attachments, embeds, moderation evidence | Only when an administrator enables modules like logging, audit logging, moderation evidence capture, or similar features |
3. When Message or Content Storage Occurs
By default, Grizz does not read or persist messages. Storage of messages or server content happens only when a server owner or administrator explicitly enables modules that require it, such as:
- Message Logging
- Audit Logging
- Moderation Evidence Capture When such modules are enabled:
- Storage is limited to the guild that enabled the module.
- Data is used only to provide the enabled feature.
- Content is not sold, used for advertising, or used to train external models.
If these modules are disabled, new content is no longer logged. Existing logs are deleted per the guild's retention settings or our default retention window.
4. Data Retention
| Data Type | Retention |
|---|---|
| Guild configuration and settings | Until the guild removes Grizz or requests deletion |
| Server content collected by logging or audit modules | 7 to 90 days based on module settings, unless a shorter or longer period is required by law or expressly configured by the guild |
| Backups | Up to 30 days |
| Billing and subscription records | Retained as required by financial laws |
| Deleted guilds | Purged automatically within 30 days |
Admins can request deletion of guild data at any time.
5. Data Sharing
We do not sell user data. Limited sharing occurs with service providers:
- Discord, Inc. for API access and authentication
- Stripe, Inc. for payments and subscriptions
- Hosting and infrastructure providers for uptime and performance
These providers are contractually obligated to protect data.
6. Security
All communication uses HTTPS. Databases are encrypted at rest where supported. Access to production systems is restricted to authorized maintainers. We perform periodic integrity checks and maintain backups with limited retention.
7. Your Rights and Choices
Depending on your location, you may have rights to access, correct, delete, or export data associated with your account or guild. You can remove Grizz from a guild at any time to stop new data collection for that guild. Requests can be made via email.
8. Cookies and Sessions
The dashboard uses secure cookies for session management and CSRF protection. We do not use advertising or tracking cookies.
9. Children's Privacy
Grizz does not knowingly collect data from children under 13. If such data is discovered, it will be deleted promptly.
10. Changes to this Policy
We may update this Policy as features or legal requirements change. Material updates will be announced in the support server or on the dashboard. The Effective Date shows the latest revision.
11. Contact
Email: [email protected]
Website: https://grizz.bot