Privacy Policy
This Privacy Policy describes how GSv2.0 ("we", "us", "our") collects, uses, stores, and protects your personal data when you use the Kiksi Discord bot ("Bot") and the web dashboard at kiksi.gsv2.com ("Dashboard"), collectively referred to as the "Service."
We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR) and applicable German data protection law.
1. Data Controller
GSv2.0
Germany
Email: [email protected]
2. Data We Collect
2.1 When you use the Bot
- Discord identity — User ID, username, avatar URL. Used to identify you within the Service.
- Guild (server) ID and name — To associate configurations with your server.
- Message content — Read for AI responses, moderation (spam/profanity/toxicity detection), and translation. Raw messages are not stored; active conversation history is held in memory (RAM) only and discarded after 7 days of inactivity. Short derived facts (e.g. stated preferences) may be saved to long-term memory — see Section 5. AI processing involves external providers (see Sections 5, 8, 8.1).
- Vote history and coin balance — Earned through voting for the Bot on third-party platforms.
- Moderation logs — Records of moderation actions. Retained for 90 days.
- Spam detection logs — Retained for 60 days.
- GlobalChat warnings and bans — Warnings retained 180 days; permanent bans retained indefinitely for platform safety.
- AI mood tracking data — Aggregated mood analysis derived from messages in AI channels. Retained for 180 days.
- Translation cache — Cached translations for performance. Retained for 7 days.
- Giveaway participation records — Retained for 30 days after the giveaway ends.
- Server configuration — All module settings you configure for your server. Deleted 30 days after the Bot is removed from your server.
2.2 When you use the Dashboard
- Discord OAuth2 data — Via the "identify" and "guilds" scopes: your Discord ID, username, avatar, and list of servers where you have administrator permissions. We do not request access to your email, direct messages, or the ability to act on your behalf.
- Session tokens — Authentication tokens that expire automatically and are cleaned every 6 hours.
- Vote link clicks — IP address and user agent string, retained for 7 days only.
- Vote reminder preferences — Notification method, timezone, timing (opt-in only).
- Premium key records — Key activation date and expiration.
- Custom profile — Avatar, bio text, public profile visibility toggle.
- Music playlists and favorites — Playlist names, track URLs, share codes.
- Bug reports and feature requests — Text and optional attachments you submit voluntarily.
3. How We Use Your Data
- Service operation — To provide, maintain, and improve the Bot and Dashboard. Legal basis: contract performance (Art. 6(1)(b) GDPR) and legitimate interest (Art. 6(1)(f) GDPR).
- AI features — Conversational responses, language detection, mood analysis, memory, and outreach following bot removal. Processing uses an external AI provider pool located in the US, EU, and China (see Sections 5, 8 and 8.1). Legal basis: legitimate interest (Art. 6(1)(f) GDPR).
- Content moderation — Spam, profanity, and toxicity detection to maintain a safe environment. Processed via our AI provider pool (see Sections 5, 8). Legal basis: legitimate interest (Art. 6(1)(f) GDPR).
- Cross-server communication (GlobalChat) — Relaying messages between servers including translation. Legal basis: consent (Art. 6(1)(a) GDPR) — server admins opt in by enabling GlobalChat; users consent by sending messages in the designated channel.
- Translation — Via our AI provider pool (see Sections 5, 8) when flag emoji reactions are used or when GlobalChat auto-translation is active. Legal basis: consent and legitimate interest (Art. 6(1)(a), (f) GDPR).
- Virtual economy — Tracking voting activity and coin balances. Legal basis: contract performance (Art. 6(1)(b) GDPR).
4. Data Retention Summary
| Data Type | Retention Period |
|---|---|
| Dashboard sessions | Until expiration (cleaned every 6 hours) |
| Vote link clicks (IP, user agent) | 7 days |
| Translation cache | 7 days |
| Spam detection logs | 60 days |
| Moderation logs | 90 days |
| Giveaway participation | 30 days after giveaway ends |
| AI mood tracking data | 180 days |
| AI long-term memory (derived facts) | Fades when unused; deleted on request |
| GlobalChat warnings | 180 days |
| Server data after bot removal | 30 days, then permanently deleted |
| Churn-recovery direct messages | Up to 180 days after the conversation is closed; deleted automatically with the related server record |
| GlobalChat bans | Indefinite (platform safety) |
| Vote history and coin balance | Until deletion request |
| User account and profile data | Until deletion request |
5. AI Processing
Kiksi's AI features — conversational responses in AI channels, content moderation (spam / profanity / toxicity detection), language detection, translation, mood analysis, conversation summarization, and the long-term memory described below — are powered by a pool of OpenAI-compatible AI providers with automatic failover. We are working toward locally hosted inference; until that migration is complete, the following external providers may process data on our behalf:
- United States: Groq, OpenRouter, Cerebras, SambaNova, and Cohere.
- European Union (France): Mistral AI.
- China: Z.AI (Zhipu AI).
When a feature runs, the relevant data — your message content, the bot's prompt, and (for conversations) recent conversation history — is transmitted to whichever provider in the pool handles the request, solely to generate a result that is returned within Discord. These providers do not retain message content for model training under their respective terms, and we do not opt in to any data-retention features they offer. International transfers are described in Section 8.1.
Active AI conversation history is held in volatile memory (RAM) only and is discarded after 7 days of inactivity; it is not written to a database. From AI-channel conversations the bot may extract and store short derived facts about you (for example a preference such as "always reply in German", or a hobby you mention) in a long-term memory store. This store is capped at a small number of entries per user, fades automatically when entries are not used, and can be deleted on request (see Section 11). Raw messages themselves are not stored. Churn-recovery direct messages are an exception: they are persisted in our database for the duration of the recovery conversation (see Section 4 retention).
6. Voice Recording
Voice recording and transcription is a planned feature that is currently not active. When implemented, voice channel audio will be processed entirely on-device using locally hosted speech recognition (Whisper). No audio will be transmitted to external services. This Privacy Policy will be updated before the feature goes live.
7. GlobalChat — Cross-Server Messages
When you send a message in a GlobalChat-enabled channel, your username, avatar, and message content are relayed to all other servers participating in GlobalChat. Your message may be automatically translated into other languages via our AI provider pool (see Section 8). Messages are not persistently stored by the Bot; however, messages flagged for moderation review are held until reviewed by an administrator, then retained with the moderation record (see Section 4).
8. Third-Party Services
We do not sell your data. We share data with third parties only as strictly necessary:
| Service | Data Shared | Purpose |
|---|---|---|
| Discord | OAuth2 tokens, user identity, guild list | Authentication and bot operation |
| Cloudflare | HTTP requests, IP addresses | CDN and security for gsv2.com and kiksi.gsv2.com |
| Top.gg / Discord Bot List | Discord ID, vote timestamps | Vote tracking and rewards |
| Stripe (planned) | Payment details | Premium purchases — not yet active |
| Groq (United States) | AI prompt content, conversation history, message text (transient) | AI text generation, moderation, translation, background tasks (provider pool) |
| OpenRouter (United States) | AI prompt content, conversation history, message text (transient) | AI text generation and related tasks (provider pool, failover) |
| Cerebras (United States) | AI prompt content, conversation history, message text (transient) | AI text generation, translation, related tasks (provider pool) |
| SambaNova (United States) | AI prompt content, conversation history, message text (transient) | AI text generation, moderation, translation, memory (provider pool) |
| Cohere (United States) | AI prompt content, conversation history, message text (transient) | AI text generation and moderation (provider pool, failover) |
| Mistral AI (European Union — France) | AI prompt content, conversation history, message text (transient) | AI text generation and background tasks (provider pool) |
| Z.AI / Zhipu AI (China) | AI prompt content, conversation history, message text (transient) | AI text generation, moderation, background tasks (provider pool, failover) |
8.1 International Data Transfers
Our AI provider pool spans three jurisdictions. Mistral AI is located in the European Union (France); processing there takes place within the EU/EEA and requires no additional transfer safeguards. Groq, OpenRouter, Cerebras, SambaNova, and Cohere are located in the United States. Z.AI (Zhipu AI) is located in China.
When a request is routed to a provider outside the EU/EEA, the prompt content, recent conversation history, and your message text are transmitted to that provider for the sole purpose of generating a result. For the United States providers, transfers rely on Article 49(1)(b) GDPR (transfer necessary for the performance of a contract concluded in your interest) for AI features a server administrator has explicitly enabled, and, where the provider offers them, on Standard Contractual Clauses under Article 46(2)(c) GDPR. The transfer to China is not covered by an EU adequacy decision; we rely on your explicit consent under Article 49(1)(a) GDPR — given by choosing to interact in an AI-enabled channel — together with the contractual-necessity ground in Article 49(1)(b). Across all providers, message content is transmitted in transit only and is not authorised to be retained for model training.
If you do not wish your message content to be processed by external AI providers, you can: (a) disable AI channels on your server (server administrators), (b) refrain from interacting with AI-enabled channels, or (c) decline to respond to a churn-recovery outreach message. You may also exercise your right to object under Article 21 GDPR, or request deletion of your AI memories, by contacting us at [email protected].
9. Cookies
The Dashboard uses session cookies for authentication only. These are strictly
necessary and do not track your activity across other websites. We do not use
advertising or analytics cookies. Cloudflare may set security cookies
(e.g. __cf_bm) as part of its bot protection service.
10. Data Security
All data is stored in a single database on a server located in Germany, not accessible from the public internet. The Dashboard backend runs on localhost and is protected by Cloudflare. AI processing uses external providers as described in Section 5. We implement session-based authentication, CORS controls, rate limiting, and input validation across all API endpoints.
11. Your Rights (GDPR)
If you are in the European Economic Area, you have the following rights:
- Access (Art. 15) — Request a copy of data we hold about you.
- Rectification (Art. 16) — Request correction of inaccurate data.
- Erasure (Art. 17) — Request deletion of your data. Upon request we will delete your profile, coin balance, vote history, playlists, bug reports, feature requests, vote reminders, AI long-term memories, and all associated records. Ban records may be retained where necessary for platform safety.
- Restriction (Art. 18) — Request restriction of processing under certain conditions.
- Portability (Art. 20) — Receive your data in a machine-readable format.
- Object (Art. 21) — Object to processing based on legitimate interest.
- Withdraw consent (Art. 7(3)) — Withdraw consent at any time without affecting prior processing.
- Lodge a complaint — You may file a complaint with the German federal data protection authority: bfdi.bund.de, or with your local supervisory authority.
To exercise any right, email us at [email protected]. We will respond within 30 days.
12. Children's Privacy
The Service is not directed at children under 13. We do not knowingly collect personal data from children under 13. If you believe we have done so inadvertently, contact us at [email protected] and we will delete the data promptly.
13. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be announced via the Bot or Dashboard. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of the Service after changes constitutes acceptance of the updated policy.
14. Contact
For any privacy-related questions or requests:
[email protected]