Privacy Policy

To provide advanced features like the global economy, wick-level security, and cross-server synchronization, Hana persistently stores and processes specific data vectors:

• Universal Usage Logging: Every interaction you have with Hana (slash commands, button clicks, modal submissions, autocompletes, and text mentions) is recorded via a RAM-buffered asynchronous logging system. We log the full scope of the interaction, including User IDs, global names, channel and server IDs, and command arguments. These telemetry logs are kept in a local usage.log file and are automatically pruned after 30 days.
• Aesthetic Customizer Logging: When server administrators modify Hana's local appearance using the /hana_profile command, we log the User ID, Guild ID, and direct image attachment URLs in our secure Supabase style_audit table. This is done solely to monitor, prevent, and log potential DMCA, copyright, or explicit content violations.
• Moderation Case Logs: Actions taken by moderators (warns, mutes, kicks, bans) are logged and stored in the guild’s configuration, including custom moderator notes on user profiles.

Hana utilizes a high-performance, cloud-native storage architecture powered by Supabase PostgreSQL combined with a local RAM cache.

• Zero-Egress Read Caching: All user preferences, leveling XP, inventory balances, and configuration states are cached directly in the bot's system RAM. This ensures near-zero latency and completely eliminates excessive database query calls.
• Non-Blocking Threaded Writes: When updates occur (such as earning Chips, gaining XP, or changing settings), the data is safely written back to our secure cloud database asynchronously using background threads, preventing chat flow interruptions.
• Data Isolation: Stored data is indexed strictly by numeric Discord snowflakes (User IDs, Guild IDs, and Role IDs). We do not store real-world names, physical addresses, or payment details.

Hana requires access to Message Content to process AI conversations, image generation, and vision analysis commands in active channels.

• Conversational History Context: When you chat with Hana, she temporarily reads the recent message history of the channel (up to 25 messages) to build a coherent dialogue context. This history is parsed entirely in-memory and is never stored permanently.
• AI Vision Processing: Images or videos attached to chats are analyzed using parallelized low-latency vision cascades (utilizing Gemini Vision). The image data is converted to an in-memory base64 string, processed to extract a textual description, and then immediately discarded.
• Strict Anti-Spam Filtering: To prevent voice chat and text buffer overloads, Hana processes all text inputs through an anti-bypass transliteration matrix, translating homoglyphs and clearing malicious characters before the AI processes the prompt.

Hana supports both Guild Installations (added to a server) and User Application Installations (authorized directly on your personal Discord account).

• User-Level Invocations: When you invoke Hana as a User-Installed App in private DMs, Group Chats, or third-party servers, we process your user ID, the command invoked, and any attachments or context necessary to complete the interaction.
• Data Minimization in External Chats: When running commands in group chats or servers where Hana is not a joined member, we only read the specific message invoking the command and its immediate attachments. We do not read or scrape the general chat history of that external channel.

Hana provides specialized profile and server utility tools that process and store user-submitted data vectors:

• Timezones & Nickname Syncing: If configured, we store your selected timezone. If you enable nickname syncing, the bot will periodically update your nickname in all mutual guilds to append your local timezone abbreviation.
• Birthdays & Zodiacs: Storing your birthday allows Hana to calculate your zodiac and next birthday countdown. If requested, we will send an automated DM to your subscribed friends at midnight in your local timezone. You can completely customize your global or server-specific visibility.
• Inactivity Kick Queue: To safely clean servers, Hana’s inactivity module monitors last-active timestamps based on message and voice events, compiling a drip-feed kick queue that processes members while respecting Discord's API limits.

Hana supports a web-based dashboard allowing you to customize your preferences (Timezone, VC TTS, Roleplay blocks, and Economy settings) on our website.

• Secure Dashboard API: The bot runs an internal web server listening on Port 80 to communicate with our PHP frontend. All requests are protected by a secure authorization token (API_SECRET_TOKEN).
• Zero Plaintext Credentials: Your website login is handled securely via Discord OAuth2. We never request, see, or store your Discord password.

In full compliance with the General Data Protection Regulation (GDPR) and global privacy laws, we provide effortless tools to wipe your data:

• Instant In-App Deletion: You can permanently wipe your data at any time using our built-in commands: /timezone-remove, /birthday remove, and the global /rp-wipe (which completely obliterates all of your roleplay stats, preferences, and daily limits in Supabase).
• Data Erasure Requests: If you wish to have all data associated with your Discord User ID (including economy balances, inventories, and case history) wiped permanently, you can submit a manual erasure request by opening a ticket on our Support Server. All requests are processed within 30 days.