Hana processes AI prompts using Google Gemini (Enterprise Tier), Groq (Llama 3), and Inception AI. We pay premium rates for enterprise-level APIs that provide the following strict data protections:
- No AI Training: Data processed via our connected APIs is never used to train or improve their foundational AI models. Your conversations are your own.
- No Human Review: Your prompt interactions are strictly programmatic and are never stored for human review at these external endpoints.
- Transient Context: Your server's message history is processed in-memory purely for conversational context and is not permanently stored in any external knowledge base.
To provide advanced features like the global economy, AI chat limits, and robust moderation, we store required data persistently:
- Exhaustive Universal Usage Logging: Absolutely every interaction you have with Hana (slash commands, button clicks, modal submissions, autocompletes, and text mentions) is recorded via comprehensive JSON payloads. We log the full scope of the interaction, including:
- User Data: ID, username, global name, roles array, and active guild permissions.
- Server & Channel Data: Guild ID, Guild Name, owner ID, member count, Channel ID, Channel Name, Channel Type, and NSFW status.
- Payload Data: Exact command arguments, raw interaction data, message content, attachment metadata, timestamps, locale, and application permissions.
This exhaustive telemetry ensures complete system auditability, malicious actor tracking, and zero-tolerance abuse prevention.
- Identification: User IDs and Guild (Server) IDs are stored to link settings, levels, and balances to specific accounts.
- Economy & Interactions: Portfolios, stock market activity, roleplay consent states (e.g., Pacifist mode), and daily API usage limits are stored persistently.
- Age Verification Records: We explicitly store the Discord User IDs of individuals who have legally affirmed their age via the
/ageverif clickwrap agreement to grant access to restricted channels.
- Configuration: Server-specific settings such as custom AI instructions, AutoMod filters, and custom Color Roles are saved to disk.
Hana requires access to Message Content to function. We utilize a Hybrid AI Architecture for speed and reliability. Here is the strict lifecycle of that data:
- Contextual History Reading: To maintain conversational memory and provide zero-waste
/caption autocomplete, Hana temporarily reads recent message history. This data is processed in-memory and securely transmitted to our Enterprise AI providers.
- Processing Scope: Data sent to external AI providers is transmitted solely for the purpose of generating a response. It is absolutely never sold to third parties.
- AI Interaction Logging: We keep local text logs of specific AI conversations (prompts and generations) on our private host server strictly for debugging pipeline errors and model hallucinations.
- Auto-Moderation: Messages are scanned in real-time by Hana's internal heuristic engine for banned words and spam. This happens in the bot's active memory (RAM) and is not permanently stored unless a violation triggers a case log.
Features that involve media manipulation (e.g., /compress, /caption, /download) work as follows:
- Temporary Storage: When you upload media for processing via FFmpeg or Pillow, it is temporarily downloaded to the bot's local storage (
/tmp).
- Automatic Deletion: Processed media files and artifacts are permanently deleted from the server immediately after the command is completed. We do not build a database of user images.
- Cloud CDN & Routing: Files exceeding Discord's native 25MB limit or custom persona avatars are securely routed to
Catbox.moe. Proprietary bot assets (like roleplay GIFs) are served via our dedicated Cloudflare R2 bucket.
Hana utilizes trusted third-party APIs to deliver its services. By using these features, data may be processed by:
We take appropriate security measures to prevent unauthorized access to our server files and logs.
- Data is stored on secured Linux servers with restricted SSH access.
- Sensitive configuration files, API keys, and JSON databases are strictly sequestered and not accessible via the public web.
- We do not collect or store Personally Identifiable Information (PII) such as real names, addresses, or IP addresses.
We retain data based on the type of information:
- Configuration & Economy Data: Retained persistently to ensure game state and server settings survive bot restarts.
- Usage & System Logs: Our Exhaustive Universal Usage Logs (tracking all interactions and metadata payloads) and standard system logs are stored locally and automatically rotated/deleted every 30 days to enforce data minimization.
Right to Erasure: You may request the absolute deletion of data associated with your User ID (including economy balances, marriage states, and AI limits) by contacting us in our Support Server.