Privacy Policy

Last updated: March 26, 2026

1. Introduction

This explains what data ServerSweep collects, how we use it, and how long we keep it. Using ServerSweep means you agree to this.

2. What we collect

2.1 Scan stats (stored indefinitely)

To avoid counting the same user twice, we store a one-way SHA-256 hash of Discord User IDs when someone is flagged by TASE. This hash can't be reversed or traced back to anyone. No original IDs, usernames, avatars, or personal info are stored.

2.2 Server config data

When you configure ServerSweep in your server, we store:

  • Server ID -your Discord server's numeric ID
  • Auto scan settings -whether it's on and which channel to post results to
  • Auto action settings -what to do with flagged users (none, kick, ban, or manual review)
  • Filter settings -score thresholds, server count limits, etc.
  • Whitelist -Discord User IDs excluded from auto scans
  • Management role settings -which roles can manage the bot
  • Appeal settings -whether appeals are on and which channel to use

2.3 Temporary data (auto-deleted)

  • Weekly scan results -stored for 7 days then deleted
  • Appeal and live scan requests -kept until approved or denied, then deleted
  • Downtime queue -member joins queued temporarily if the bot is in downtime mode

2.4 What we don't store

  • Message content
  • Usernames or avatars
  • IP addresses
  • Email addresses or personal info
  • Chat logs

2.5 Logs

We collect logs of bot commands including scan operations, with timestamps, guid id (if done in a guild), and user id for debugging and abuse prevention. If it gets sent to an external api like TASE or Rotector it will be logged. These are private and will only be seen by one person.

3. How we use it

  • Scan Discord users against TASE and Rotector
  • Store your server's config
  • Auto-scan new members when that's turned on
  • Apply automatic actions based on your settings
  • Run the appeal system

4. Third-party APIs

We use these APIs. Only numeric IDs are sent, no usernames or personal data.

  • TASE API -scans Discord user IDs for condo server links
  • Rotector API -scans Roblox accounts by numeric ID. Rotector may pull public Roblox data like bios and friend lists on their end; we only send the ID.
  • Roblox API -fetches Roblox user info and friends lists

We don't control these APIs. Check their own privacy policies if you have concerns.

5. Data sharing

We don't sell or share your data. The only exceptions are user IDs sent to TASE and Rotector for scanning, and anything required by law.

6. Data retention

  • Hashed scan IDs -kept indefinitely for deduplication only
  • Server config -kept until you remove the bot
  • Temporary data -auto-deleted after expiration

7. Your rights

Remove the bot from your server to stop using it and clear your config. To dispute a flag, appeal through TASE or Rotector directly, then submit an unban request to the server that actioned you.

8. Security

We use encrypted database connections, secure API key storage, rate limiting, and regular updates. But nothing on the internet is 100% secure.

9. Children's privacy

ServerSweep is for Discord server moderators aged 13 or older per Discord's Terms of Service. We don't knowingly collect data from anyone under 13.

10. Changes

We may update this from time to time. The date at the top will reflect any changes. Continued use means you're OK with it.

11. Contact

Questions? Join our support server.