Privacy Policy

Personal data (hereinafter "data") within the meaning of Art. 4 Para. 1 of Regulation (EU) 2016/679 (General Data Protection Regulation, "GDPR") is all information relating to an identified or identifiable natural person.

We process this data exclusively within the scope of necessity and for the purpose of providing our functional website as well as providing our services within the framework of the Discord bot "Notoq" and the associated dashboard.

With this privacy policy, we inform you about the type, scope, purpose, duration and legal basis of the processing we carry out.

The controller within the meaning of Art. 4 Para. 7 GDPR for the processing of personal data is:

Notoq

Inh. Julian Maschke

Fährstraße 217

40221 Düsseldorf

Deutschland

As a data subject, you have the following rights under the GDPR:

• Right of access (Art. 15 GDPR): You can request information about your personal data processed by us.
• Right to rectification (Art. 16 GDPR): You can request the correction of inaccurate data or the completion of your data stored with us.
• Right to erasure (Art. 17 GDPR): You can request the deletion of your data stored with us ("right to be forgotten").
• Right to restriction of processing (Art. 18 GDPR): You can request the restriction of the processing of your data.
• Right to data portability (Art. 20 GDPR): You can request to receive your data in a structured, commonly used and machine-readable format.
• Right to lodge a complaint (Art. 77 GDPR): You have the right to lodge a complaint with a data protection supervisory authority.

Right to object under Art. 21 GDPRYou have the right to object at any time, on grounds relating to your particular situation, to the processing of your data based on Art. 6 Para. 1 lit. f GDPR (data processing on the basis of a balance of interests).

1. Hosting & Infrastructure

a) Website & Security (Cloudflare)Our website is provided via the Content Delivery Network (CDN) of Cloudflare (Cloudflare, Inc., 101 Townsend St, San Francisco, CA 94107, USA). Cloudflare routes data traffic through its servers to optimize loading times and protect our site from attacks (e.g. DDoS attacks). Technical data such as your IP address is processed. This is based on our legitimate interest in secure and fast provision (Art. 6 Para. 1 lit. f GDPR).

b) Bot, API & Database (Google Cloud)For the backend, databases and operation of the Discord bot, we use the infrastructure of Google Cloud (Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland). Data processing takes place physically on servers provided by Google. The legal basis is our legitimate interest in scalable infrastructure as well as contract fulfillment towards our users.

2. Cookies

Our website uses technically necessary cookies. These are small text files that your browser stores to enable basic functions (e.g. to save your login status for the dashboard). The legal basis for this is Art. 6 Para. 1 lit. b GDPR (contract fulfillment) or Art. 6 Para. 1 lit. f GDPR (legitimate interest).

3. Customer Account and Authentication (Dashboard)

To use the dashboard, you can log in with your Discord account (OAuth2). We receive your Discord user ID, username and avatar URL from Discord Inc. This data is necessary to provide your dashboard account and link it to your servers.

The legal basis is the fulfillment of our contract with you (Art. 6 Para. 1 lit. b GDPR) for the provision of dashboard services.

4. Use of the Notoq Bot (Functionality & Data Storage)

The Notoq bot offers extensive functions for server management, moderation and entertainment. In order to technically provide these functions (e.g. backups, statistics, tickets), comprehensive storage of interactions and configurations is necessary.

• Identification & Master Data: We permanently store IDs, names, discriminators, avatar URLs (links), nicknames and role memberships of users on the respective servers in order to correctly display profiles, rankings and permissions.
• Comprehensive Server Logs & Moderation: For traceability and security (audit logging), we store detailed logs of events on the server. These include:
  • User events (join, leave, ban, kick, timeout, channel changes, verifications).
  • Moderation actions (who banned/kicked whom and when, including reason and duration).
  • Server changes (creation/deletion/editing of channels, roles or emojis).
  • Security violations (triggering of AntiSpam or AntiNuke filters).
• Activity Tracking & Statistics: To provide leveling systems and statistics, we collect metadata on usage: number of messages sent, reactions given, exact times in voice channels (join/leave/move), games played (game activity) and general Discord status.
• Content (Tickets, Embeds & Giveaways): As part of certain functions, we also store content created by users:
  • Ticket System: For documentation purposes, we store transcripts of ticket conversations.
  • Custom Content: Texts for embeds, welcome messages, ticket panel texts.
  • Giveaways: History of giveaways, participant lists and winners.
• Backups & Templates: If the backup function is activated, we store a structural image of the server (channels, permissions, roles, server settings) in order to be able to restore the server state.
• User Uploads: We store images that users upload to personalize functions (e.g. backgrounds for level cards, welcome cards or profile banners).

The processing of this data is absolutely necessary to provide the functions desired by the server administrator (Art. 6 Para. 1 lit. b GDPR). Server administrators can deactivate individual modules (e.g. logging) in the dashboard to reduce data collection.

6. Application System

If you use the application system provided by us (a feature of the Notoq bot) to apply to a server team, we process the data you enter (e.g. application text, Discord ID).

This data is stored and made available to the respective server management in order to process the application procedure. The legal basis is the implementation of pre-contractual measures at your request (Art. 6 Para. 1 lit. b GDPR).

7. Server List & Web Profile (Public Visibility)

Parts of our service (server list, server info page) are visible on the open internet, even for people without a Discord account.

• Public Team Lists: If you hold a role on a Discord server that has been configured as a "team role" by the server administrator, your Discord username, avatar and role will be displayed on the public profile page of the server. This serves the transparency of the server team. Legal basis: Legitimate interest of the server operator (Art. 6 Para. 1 lit. f GDPR).
• Reviews: If you submit a review for a server, it will be displayed publicly with your username, avatar, review date and text. You can edit or delete your review at any time via the dashboard.
• Personalization (History & Recommendations): If you are logged in, we store locally in your history which server profiles you have visited in order to provide you with the "Recently viewed" function. We also use aggregated usage data to recommend servers to you ("Recommended"). This data is not passed on to third parties.

8. Leaderboards & Rankings

The Notoq bot collects activity data from users on participating Discord servers to create rankings ("leaderboards").

• Processed Data: To calculate the rank, we process the number of messages sent, the duration of presence in voice channels (voice time), experience points received (XP), virtual currency ("Economy") and game statistics (e.g. "Counting", "Flag Game").
• Public Display: On the leaderboard website, your Discord username, avatar, rank and specific statistics (e.g. "500 messages", "10 hours voice") are displayed.
• Legal Basis: The processing is based on the legitimate interest of the server operator in promoting community activity and gamification (Art. 6 Para. 1 lit. f GDPR).

For the purchase of paid premium services, we use the payment service provider Paddle.com (Paddle Payments Ltd, Judd House, 18-29 Mora Street, London, EC1V 8BT, UK).

Paddle acts as "Merchant of Record" (MoR). This means that Paddle is your direct contractual partner for the purchase and payment processing and is responsible for processing your payment and billing data (e.g. name, address data, payment details).

We only transmit your Discord ID to Paddle for identification and activation of premium status. We do not receive or store your complete payment data.

The legal basis for the transmission of your ID is the fulfillment of the premium contract (Art. 6 Para. 1 lit. b GDPR).

We do not pass on your data to uninvolved third parties. However, we use processors to provide our service:

• Hosting (Google Cloud): Our API, the bot and the databases are hosted at Google Cloud (Google Ireland Limited, Ireland).
• Website CDN & Security (Cloudflare): For the delivery of the website and DDOS protection, we use Cloudflare (Cloudflare Inc., USA). Cloudflare acts as our processor.
• Payment Service Provider (Paddle): As described under V., Paddle acts as "Merchant of Record" and is responsible for the payment data itself.
• Discord Inc.: The bot necessarily interacts with the Discord platform (Discord Inc., USA) to provide the services.

We only store data for as long as necessary for the purpose. We follow strict deletion routines to avoid unnecessary data storage.

• User-related Data (Inactivity): Your personal data (statistics, level, profiles) remain stored as long as you are a member of at least one server that uses our bot. As soon as you are onno server together with the bot anymore, your data will be after a period of 30 days automatically deleted.
• Server-related Data (Kick): If the bot is removed from a server, all specific configurations and data of this server (e.g. backups, logs, settings) will also be after a grace period of 30 days automatically deleted.
• Immediate Deletion (Right to be Forgotten): Regardless of the automatic deadlines, you can request the immediate deletion of your data at any time (Art. 17 GDPR). Please contact us directly for this purpose.

We maintain online presences within social networks to communicate with prospects and users and to offer support.

• Discord: We operate a support server on the Discord platform (Discord Inc., USA). When using Discord, Discord's privacy policy applies. We process data on our server (e.g. support requests, messages) to provide support (Art. 6 Para. 1 lit. b or f GDPR).

We reserve the right to adapt this privacy policy so that it always complies with current legal requirements or to implement changes to our services in the privacy policy.