PotUtopia

privacy • transparency • control
PotUtopia Discord Bot Suite

Privacy Policy

Effective: 2026-02-22 Operator: sins4skins (Discord) Hosting: Contabo VPS (France, EU)

This policy is written to meet the transparency expectations of UK GDPR, EU GDPR, and US privacy expectations for a primarily US player base (including California CCPA/CPRA style notices). It is not legal advice, but is designed to be implementation-ready and review-friendly.

1) Scope

This Privacy Policy describes how the following Discord bots (the “Bots”) collect, use, store, and protect information:

  • PotUtopia Support
  • PotUtopia Stats
  • PotUtopia Boo
  • PotTunes
  • PotUtopia Player Count

It also covers this website (potutopia.sins4skins.co.uk) and any bot-related web endpoints you choose to enable (for example, deletion-request endpoints).

2) Controller / Business Contact

Data Controller / Business Operator: sins4skins (Discord username).
Website: https://sins4skins.co.uk/
Primary contact for privacy requests: message sins4skins on Discord.

In many cases, a Discord server owner/admin also determines how and why data is used in their community. For larger servers, see the DPA for role clarification and processor terms.

3) Categories of Data We Process

The Bots may process the following categories depending on enabled features and configuration:

  • Alderon IDs and Alderon names (player identifiers)
  • In‑game chat messages received via PotBot.xyz webhooks
  • Server IP address and server port
  • Server RCON credentials (sensitive credentials)
  • Discord server (guild) IDs and Discord channel IDs

We do not intentionally collect passwords, payment card data, government IDs, or Discord private messages (DMs). Where Discord platform identifiers are involved, we only use the minimum required for routing and configuration.

4) Sources of Data

  • Discord (guild/channel identifiers needed for routing outputs and configuration).
  • PotBot.xyz (statistics and in-game events delivered to the Bots via webhooks).
  • Server administrators (server connection details, including IP/port and RCON where configured).

5) Purposes of Processing

  • Bot-to-server communication: server IP/port and RCON are used exclusively to communicate with your game server as configured.
  • Statistics & tracking: Alderon IDs/names and webhook events are used to generate player/server statistics and tracking features.
  • Message routing: Discord guild/channel IDs are used to deliver bot messages to the correct server/channel.
  • Integrity & abuse prevention: limited logging may be used to prevent misuse and maintain service reliability.

6) Legal Bases (UK/EU GDPR)

Where UK/EU GDPR applies, processing is based on one or more of the following:

  • Legitimate interests (operating the Bots, providing requested functionality, preventing abuse, and maintaining reliability).
  • Contractual necessity (providing features you enable or request when using the Bots).
  • Consent (where a server admin voluntarily configures optional features or integrations that are not strictly necessary).
  • Legal obligation (where applicable, e.g., responding to lawful requests).

7) Disclosure / Sharing

  • No sale of data: we do not sell personal information.
  • No “sharing” for targeted ads: we do not share personal information for cross-context behavioural advertising.
  • Hosting: data is stored on a private VPS hosted via Contabo in France (EU).
  • Webhook source: PotBot.xyz provides webhook payloads; we process those payloads for bot features.
  • Legal compliance: we may disclose information if required by law or to protect rights, safety, and security.

8) International Users & Transfers

Our infrastructure is hosted in the EU (France). Users and server operators may be located in the UK, USA, and elsewhere. Data may be accessed from other jurisdictions for support and operations, but storage is on EU-based infrastructure.

9) Data Retention

We retain data only for as long as needed to provide bot functionality, maintain statistics continuity, and protect service integrity. Retention varies by feature. For example:

  • Configuration data (guild/channel routing, server connectivity) is retained while the bot is configured/installed and for a short period after removal to support safe cleanup.
  • Statistics data may be retained longer to provide historical trends, unless deletion is requested.
  • Chat event logs are retained only as needed to power enabled features and troubleshooting, and may be minimized where feasible.

10) Security (including RCON)

We apply reasonable technical and organisational measures to protect the data we process. RCON credentials are treated as sensitive data and are stored/handled as encrypted or otherwise protected private configuration data. Access is restricted to the minimum necessary for operation.

No system is 100% secure. If you believe credentials have been exposed, rotate them immediately and contact us on Discord.

11) Your Rights (UK/EU GDPR) and How to Exercise Them

If UK/EU GDPR applies, you may have the right to request: access, correction, deletion (erasure), restriction, objection, and portability (depending on context). Requests are handled without undue delay and typically within one month, extendable in limited cases for complex requests.

To request deletion or access, contact sins4skins on Discord with:

  • your Discord server (guild) ID,
  • the bot(s) involved,
  • the scope (server configuration data and/or statistics data), and
  • proof you’re authorised (e.g., server admin role confirmation).

12) California (CCPA/CPRA-style) Notices

If you are a California resident, you may have rights such as: the right to know, delete, correct, opt out of sale/sharing, and non-discrimination for exercising your rights. We do not sell or share personal information for cross-context behavioural advertising. Requests are typically handled within 45 days, extendable with notice where allowed.

Note: Some CCPA/CPRA obligations apply only if a service meets certain thresholds. We still provide the above rights process as a best practice.

13) Children

The Bots and this website are not intended for children under 13. We do not knowingly collect personal data from children under 13.

14) Changes to This Policy

We may update this Policy from time to time. The “Effective” date will change when updates are made. Continued use of the Bots after an update means you accept the updated Policy.

15) Contact

Contact sins4skins on Discord for privacy questions, requests, or concerns.

PotUtopia
Privacy Policy • Effective 2026-02-22
Home · Terms · DPA · Cookies
© 2026 Sins4Skins Network.