Effective Date: 25th November 2025

Last Updated: 25th November 2025

Introduction

Welcome to the Privacy Policy of Penguin’s Development (“we”, “us”, or “our”). This Policy explains how we collect, store, use, and protect user data across our platforms, including our website, Discord server, automated bots, premium services, and any affiliated third-party tools (collectively, the “Services”).

By accessing or using our Services, you agree to the practices described in this Policy. If you do not agree, please discontinue use of the Services.

Definitions

• “Services” — all websites, Discord bots, premium features, scripts, digital products, automated systems, and community spaces operated by Penguin’s Development.

• “User”, “You” — any individual accessing or using the Services.

• “We”, “Us”, “Our” — Penguin’s Development and its operators.

• “Data Controller” — Penguin’s Development, responsible for determining how personal data is processed under GDPR.

1. Information We Collect

We collect only the information necessary to operate our Services, manage access, prevent abuse, and provide premium or purchased features.

1.1 Identifiers

We may collect the following identifiers:

• Discord User ID and associated metadata

• IP address (temporarily, for security and anti-abuse)

• Usernames and display names

• Internal service identifiers (e.g., bot-generated IDs)

We do not request or store real names, home addresses, phone numbers, or payment card details.

1.2 Account and Profile Data

• Discord roles, permissions, or tags

• User ranks or premium entitlements

• Registration or join dates (Discord or service-specific)

• Uploaded avatars or profile data (if voluntarily provided)

1.3 Usage, Bot, and Automation Data

• Command usage logs

• Rate-limit logs

• Anti-abuse system flags

• Automation decisions (muting, blocking, restricting access)

• Error logs and technical event logs

1.4 Communication Data

• Messages sent to support or contact forms

• Bug reports, feedback, or moderation requests

• Limited message event metadata from Discord (not message content unless explicitly provided to staff)

1.5 Purchase and Premium Data

• Items, licenses, or digital content you purchase

• Transaction confirmations from third-party processors

• Delivery/entitlement logs

Note: Payment information (card number, address, etc.) is handled exclusively by Stripe, PayPal, or Discord — we do not store or access it.

1.6 Technical & Analytics Data

• Browser type, device type, user agent

• Page visits and general interaction data

• Website logs for security and performance

• Cookies used by embedded services (if applicable)

2. Why We Collect Your Data (Purposes of Processing)

We process data only for legitimate reasons under GDPR, including:

2.1 Account & Access Management

• Verify your Discord identity

• Provide access to premium or purchased features

• Record permissions, roles, and user state

Legal basis: Contract necessity; Legitimate interest.

2.2 Security, Abuse Prevention & Moderation

• Detect spam, automated misuse, or malicious activity

• Enforce rules, restrictions, and bans

• Protect community safety

Legal basis: Legitimate interest.

2.3 Platform Functionality

• Operating bots and automation features

• Keeping logs required for stable functionality

• Role synchronization and entitlement delivery

Legal basis: Contract necessity.

2.4 Purchases & Premium Services

• Deliver digital goods or premium items

• Maintain entitlement records

• Prevent fraud, chargebacks, and misuse

Legal basis: Contract necessity; Legitimate interest.

2.5 Analytics & Service Improvement

• Improve bot performance and stability

• Evaluate site usage and technical issues

Legal basis: Legitimate interest.

3. How We Store and Protect Your Data

3.1 Data Security Measures

We implement appropriate technical and organizational measures including:

• Access control & staff permission restrictions

• Encryption of sensitive data where applicable

• Routine log rotation and system audits

• Secure hosting infrastructure

• Protection against unauthorized access and tampering

3.2 Data Retention

• Account & entitlement data: Retained indefinitely unless deletion is requested

• Moderation logs: Retained to prevent repeated abuse

• IP addresses: Stored temporarily for security, then purged

• Purchase records: Retained as required for service verification and anti-fraud

4. Data Sharing and Third-Party Access

4.1 No Selling of Personal Data

We never sell or rent your data.

4.2 Internal Access

Only trusted staff may access user data, and only when required for:

• Support

• Moderation

• Abuse prevention

• Premium entitlement delivery

4.3 Third-Party Integrations

The following services may receive or process data:

• Discord — identity, roles, interactions

• Stripe / PayPal — purchases and payments

• Hosting providers — server infrastructure

• Analytics tools — site activity data

Each third party has its own privacy policy, which you must also comply with.

5. Cookies & Website Analytics

5.1 Cookies

The pengs.dev website may use:

• Essential cookies for website operation

• Third-party cookies from embedded widgets (e.g., Discord)

• Analytics cookies (if enabled)

5.2 Analytics

Analytics (if used) are anonymized and not linked to Discord or user identifiers.

6. Your Rights Under GDPR

Depending on your location, you may exercise the following rights:

6.1 Right of Access

You may request a copy of the personal data we hold about you.

6.2 Right to Rectification

You may request correction of inaccurate or incomplete information.

6.3 Right to Erasure (“Right to Be Forgotten”)

You may request deletion of:

• Account data

• Premium entitlement data

• Moderation logs

• Automation logs

• Identity identifiers

Note: Deleting required data may revoke access to bots, premium services, or purchased items.

6.4 Right to Restrict Processing

You may request limited processing of your data.

6.5 Right to Object

You may object to processing based on legitimate interest (e.g., analytics or moderation).

If processing is essential for security or service functionality, we may not be able to continue providing service.

6.6 Right to Data Portability

We can provide your data in a standard, machine-readable format (e.g., JSON).

6.7 Right to Withdraw Consent

If any processing is based on consent, you may withdraw it at any time.

7. Automated Decision-Making and Profiling

Our anti-abuse systems and bots may make automated decisions such as:

• Rate limiting

• Muting or restricting bot access

• Flagging suspicious behavior

• Blocking harmful or abusive activity

You may request human review of an automated action by contacting us.

8. Children’s Privacy

Our Services are not intended for users under 13 years old.

If we discover that a child under 13 has accessed our Services without proper consent, we will delete related data and restrict access.

9. Changes to This Policy

We may update this Privacy Policy periodically. When changes are made:

• The “Last Updated” date will be revised

• Significant updates may be posted on the website or Discord

Continued use of the Services after updates means acceptance of the revised Policy.

10. Contact Us

For GDPR requests, data inquiries, or privacy concerns, contact:

Email: contact@pengs.dev

Website: https://pengs.dev

Discord: Linked via our website and community portal

Penguin’s Development is the Data Controller for all personal data processed through our Services.