Privacy

When you register or sign in, we process information you provide (such as email and username) and data needed to operate the service securely—including session identifiers and activity that aligns with your security settings. Passwords are stored with one-way hashing; we do not keep plaintext passwords.

Signed-in sessions use HTTP-only cookies where your deployment is configured that way. Idle timeout and related protections follow your site’s security configuration.

License keys, users, projects, and related records you create are stored to run the reseller dashboard and APIs. Access follows your account role and any sub-account rules your administrator sets.

When enabled by your administrator, eligible accounts can adjust optional display preferences (for example masking certain IP or Discord-related display in applicable views) from the opt-out page. Exact behavior depends on your panel configuration.

Connecting Discord, GitHub, or Google from Account → Security means we process identifiers and profile details returned by those providers, subject to their policies and your link settings.

We may update how the application behaves. For material changes to privacy-related settings, your organization should communicate what matters to your end users for your deployment.