Controller SIVARO Studio Contact: contact@sivaro.studio
Processed data - Discord OAuth data: user ID, username, avatar, guild list. - Guild/server metadata: guild ID, name, owner ID, feature configuration. - Operations and security data: sessions, consent states, audit metadata, service status. - Feature data only where technically required (for example logging, tickets, FAQ index data).
Purposes and legal bases - Service delivery and contract performance (Art. 6(1)(b) GDPR). - Security, abuse prevention, and operational reliability (Art. 6(1)(f) GDPR). - Legal documentation and compliance obligations (Art. 6(1)(c) GDPR).
Retention - Data is stored only as long as required for operations, security, and traceability. - Feature histories with fixed retention windows remain technically limited (for example logging 30 days).
Recipients and processors - Access is limited to systems and subprocessors required for operation. - Data is not sold for third-party advertising use.
Third-country transfers - If external providers are used (for example AI for FAQ), processing is restricted to the configured purpose and limits.
Data subject rights - Access, rectification, erasure, restriction, portability, and objection rights where applicable. - Right to lodge a complaint with a supervisory authority. - Contact: contact@sivaro.studio
Data provision requirement Without certain technical identifiers (for example Discord user/guild IDs), core platform functions cannot be provided.
Automated decision-making No solely automated decision with legal effect under Art. 22 GDPR is performed.
Guild data deletion Guild owners can trigger full guild-data deletion from the dashboard once the bot is no longer present in that guild.