Under Development — Bugs Are Expected Under Development — Bugs Are Expected Under Development — Bugs Are Expected Under Development — Bugs Are Expected

Privacy Policy

How we protect and handle your data

Last Updated: March 23, 2026

Introduction

AntiBots ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our Discord bot moderation service.

By using AntiBots, you agree to the collection and use of information in accordance with this policy.

Information We Collect

Discord Account Information

When you authenticate with Discord, we collect:

  • Discord User ID
  • Username and discriminator
  • Email address (if provided by Discord)
  • Avatar URL
  • Server (guild) information where the bot is installed

Security & Anti-Bot Data

To protect our service from abuse and automated attacks, we collect:

  • IP addresses (hashed and stored temporarily)
  • Browser fingerprints (user-agent, language, screen resolution)
  • Request timestamps and patterns
  • Session cookies (expires after 15 minutes)
  • CSRF tokens
  • Cloudflare Turnstile verification results

Note: Security data is used solely for bot protection and is automatically deleted after 24-48 hours. We do not sell or share this data with third parties.

Bot Configuration Data

We store your bot configuration preferences:

  • Selected Discord server
  • Alert settings and thresholds
  • Away mode schedules
  • Notification preferences

How We Use Your Information

We use the collected information for the following purposes:

  • Service Delivery: To provide and maintain our Discord bot moderation service
  • Authentication: To verify your identity and manage your account
  • Security: To detect and prevent automated attacks, spam, and abuse
  • Bot Protection: To identify and block malicious bots using rate limiting, fingerprinting, and behavioral analysis
  • Communication: To send you alerts and notifications about your server
  • Improvement: To analyze usage patterns and improve our service

Anti-Bot Protection Measures

Our service employs multiple layers of protection to ensure security:

Cloudflare Turnstile

We use Cloudflare Turnstile to verify that you're human. When suspicious activity is detected (such as rapid requests or honeypot triggers), you may be asked to complete a CAPTCHA challenge. This helps us prevent automated abuse while maintaining a smooth experience for legitimate users.

Session Security

Your session is protected by:

  • IP address and user-agent binding
  • Automatic session expiration (15 minutes)
  • CSRF token validation
  • Secure, HTTP-only cookies

Behavioral Analysis

We monitor request patterns to detect bots:

  • Request timing and frequency
  • Identical request intervals
  • Honeypot field interactions
  • Access to trap endpoints

Important: If you trigger our anti-bot protection, you may be required to complete a Turnstile verification. You will not be able to navigate away from the verification page until it's completed.

Data Sharing and Third Parties

We do not sell your personal information. We may share data with:

  • Discord: For authentication and bot functionality
  • Cloudflare: For Turnstile verification and DDoS protection
  • MongoDB Atlas: For secure database hosting

These third parties are contractually obligated to protect your data and use it only for the specified purposes.

Data Retention and Deletion

We retain your data as follows:

  • Account Data: Until you delete your account
  • Security Logs: 24-48 hours (automatically deleted)
  • Session Data: 15 minutes (automatically expires)
  • Bot Configuration: Until you remove the bot from your server

You can request deletion of your data at any time by contacting us or removing the bot from your Discord server.

Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Object to data processing
  • Export your data
  • Withdraw consent at any time

Cookies and Tracking

We use the following cookies:

  • antibot_session: Session management (expires in 15 minutes)
  • csrf_token: CSRF protection

All cookies are essential for the service to function and cannot be disabled. They are automatically deleted when they expire.

Security Measures

We implement industry-standard security measures:

  • HTTPS encryption for all data transmission
  • Bcrypt password hashing (12 rounds)
  • JWT tokens with 7-day expiration
  • Rate limiting and DDoS protection
  • Regular security audits
  • Secure database hosting with MongoDB Atlas

Children's Privacy

Our service is not intended for users under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected data from a child, please contact us immediately.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the "Last Updated" date.

Continued use of the service after changes constitutes acceptance of the updated policy.

Questions about this Privacy Policy? Contact us at privacy@antibots.xyz

© 2026 AntiBots. All rights reserved. | Privacy Policy