Privacy Policy

1. Introduction

AlphaCore Solutions ("we", "us", or "our") operates AlphaCore Solutions and provides Discord bot services. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services. We are committed to protecting your privacy and complying with the EU General Data Protection Regulation (GDPR), the UK Data Protection Act 2018, and other applicable data protection laws.

2. Data Controller

For the purposes of GDPR, the data controller is:

• Name: AlphaCore Solutions
• Contact: Discord: https://discord.gg/ZsNFh56YzU
• Website: https://www.alphacore.solutions

3. Legal Basis for Processing

We process your personal data under the following legal bases:

• Consent: You have given clear consent for us to process your personal data for specific purposes (e.g., Discord OAuth login)
• Contract: Processing is necessary for a contract we have with you (e.g., subscription services)
• Legal Obligation: Processing is necessary to comply with the law (e.g., tax records, fraud prevention)
• Legitimate Interests: Processing is necessary for our legitimate interests (e.g., improving services, security) provided your interests do not override these

4. Information We Collect

We collect and process the following categories of personal data:

4.1 Information You Provide Directly

• Discord Account Information: When you authenticate via Discord OAuth, we collect your Discord username, user ID, discriminator, email address, and avatar URL
• Server/Guild Information: Discord server IDs, server names, and your permissions in servers where you use our bots
• Payment Information: Transaction IDs, subscription status, and plan details (payment processing is handled securely by PayPal; we do not store credit card information)
• Backup Data: When using our Backups Bot, we store Discord server configuration data including roles, channels, categories, and emojis

4.2 Information Collected Automatically

• Usage Data: IP addresses, browser type, device information, pages visited, time spent on pages, and interaction data
• Cookies and Tracking Technologies: Session cookies, authentication tokens, and preference cookies (see Section 9 for details)
• Log Data: Server logs including timestamps, request URLs, and error messages for security and debugging purposes

5. How We Use Your Information

We use your personal data for the following purposes:

• Service Provision: To provide, maintain, and improve our Discord bot services and web dashboard
• Authentication: To verify your identity and manage your account access
• Subscription Management: To process payments, manage subscriptions, and provide customer support
• Communication: To send you service-related notices, updates, security alerts, and support messages
• Analytics: To monitor and analyze usage patterns, trends, and service performance
• Security: To detect, prevent, and respond to fraud, abuse, security incidents, and other harmful activities
• Legal Compliance: To comply with applicable laws, regulations, legal processes, and enforceable governmental requests
• Service Improvement: To develop new features, test functionality, and enhance user experience

6. Information Sharing and Disclosure

We do not sell, rent, or trade your personal information. We may share your information only in the following limited circumstances:

6.1 Third-Party Service Providers

• Discord: For authentication and bot functionality (subject to Discord's Privacy Policy)
• PayPal: For payment processing and subscription management (subject to PayPal's Privacy Policy)
• Hosting Providers: For server infrastructure and data storage

6.2 Legal Requirements

We may disclose your information if required by law, court order, or governmental regulation, or if we believe disclosure is necessary to:

• Comply with legal obligations
• Protect and defend our rights or property
• Prevent or investigate possible wrongdoing
• Protect the personal safety of users or the public

6.3 Business Transfers

In the event of a merger, acquisition, reorganization, or sale of assets, your information may be transferred as part of that transaction. We will notify you via email and/or prominent notice on our website of any such change in ownership.

7. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that are different from the laws of your country. When we transfer personal data from the European Economic Area (EEA) or UK to other countries, we ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other legally approved transfer mechanisms

8. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law:

• Account Data: Retained while your account is active and for 30 days after account deletion (unless you request immediate deletion)
• Backup Data: Retained until you delete the backup or your account is deleted
• Transaction Records: Retained for 7 years for tax and accounting purposes as required by law
• Log Data: Retained for 90 days for security and debugging purposes
• Marketing Consent: Retained until you withdraw consent

After the retention period expires, we will securely delete or anonymize your personal data.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience. You can control cookie preferences through your browser settings.

9.1 Types of Cookies We Use

• Essential Cookies: Required for authentication and core functionality (e.g., session management, login state)
• Preference Cookies: Remember your settings and preferences (e.g., language, theme)
• Analytics Cookies: Help us understand how you use our services to improve performance

9.2 Managing Cookies

You can set your browser to refuse all or some cookies, or to alert you when cookies are being sent. However, if you disable or refuse cookies, some parts of our services may become inaccessible or not function properly.

10. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction:

• Encryption of data in transit using TLS/SSL protocols
• Secure authentication mechanisms and session management
• Regular security assessments and vulnerability testing
• Access controls and authentication for database access
• Regular backups and disaster recovery procedures
• Employee training on data protection and security practices

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee absolute security.

11. Your Rights Under GDPR

If you are located in the European Economic Area (EEA) or UK, you have the following rights regarding your personal data:

11.1 Right of Access

You have the right to request a copy of the personal data we hold about you and information about how we process it.

11.2 Right to Rectification

You have the right to request correction of inaccurate or incomplete personal data.

11.3 Right to Erasure ("Right to be Forgotten")

You have the right to request deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected, or if you withdraw consent.

11.4 Right to Restriction of Processing

You have the right to request that we restrict processing of your personal data in certain circumstances, such as when you contest the accuracy of the data.

11.5 Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.

11.6 Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

11.7 Right to Withdraw Consent

Where we rely on consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before withdrawal.

11.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority, in particular in the EU member state of your habitual residence, place of work, or place of the alleged infringement.

11.9 Exercising Your Rights

To exercise any of these rights, please contact us via Discord at https://discord.gg/ZsNFh56YzU. We will respond to your request within 30 days. We may ask you to verify your identity before processing your request.

12. Children's Privacy

Our services are not intended for and may not be used by children under the age of 13 (or under 16 in the EEA/UK). We do not knowingly collect personal information from children under these ages. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal data from children without verification of parental consent, we will take steps to delete that information from our servers within 72 hours.

13. Automated Decision-Making and Profiling

We do not use automated decision-making or profiling that produces legal effects or similarly significantly affects you. Any automated processing we perform (such as fraud detection algorithms) is subject to human review and does not make decisions solely based on automated processing.

14. Third-Party Links

Our services may contain links to third-party websites, services, or applications (such as Discord and PayPal). We are not responsible for the privacy practices or content of these third parties. We encourage you to review the privacy policies of any third-party services you access through our platform.

15. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify you and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR. The notification will include the nature of the breach, the likely consequences, and the measures taken or proposed to address the breach.

16. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by:

• Posting the updated Privacy Policy on this page with a new "Last updated" date
• Sending you a notification via email or Discord (for material changes)
• Displaying a prominent notice on our website

We encourage you to review this Privacy Policy periodically. Your continued use of our services after changes are posted constitutes your acceptance of the updated Privacy Policy. If you do not agree to the changes, you must stop using our services and may request deletion of your account.

17. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Data Controller: AlphaCore Solutions
• Discord: https://discord.gg/ZsNFh56YzU
• Website: https://www.alphacore.solutions

We will respond to all requests, inquiries, or concerns within 30 days.