Yvonne Privacy Policy

Last updated: July 2, 2026

This Privacy Policy explains how Yvonne ("the Bot", "we", "our") collects, uses, stores, and protects data when the Bot is used in a Discord server. Yvonne is a server security and anti-raid moderation bot. Its privileged Discord data access is used to provide safety features configured by server administrators.

Data We Collect

How We Use Data

Message Content

Message content is primarily processed in memory for real-time safety decisions. The Bot does not build a general archive of server conversations and does not provide searchable chat-history storage.

When a configured safety rule is triggered, the Bot may display limited evidence in Discord alert reports, such as detected invite codes, mention patterns, attachment counts, message metadata, the action taken, and the reason for enforcement. The Bot does not store message content in an off-platform message archive. Short-lived behavioral fingerprints used for spam and raid detection automatically expire after approximately 10 minutes.

Server administrators can disable message-monitoring modules, configure channel/category exclusions, configure role exemptions, or remove the Bot from channels where monitoring is not desired.

Server Members Data

The Bot uses Discord member data to detect new-member raid patterns, screen suspicious accounts, apply role allowlists, verify permissions, avoid acting on server owners or exempt administrators, and ensure the Bot only attempts moderation actions when it has the required hierarchy and permissions.

When an administrator enables existing-member scans, member data may be enumerated for that server to apply the configured safety checks. The Bot does not sell or share member lists for advertising or profiling.

Machine Learning and AI

The Bot's security and moderation detections are rule-based or statistical, such as invite-link matching, mention detection, cross-channel fingerprinting, attachment-count checks, and join-rate analysis. Privileged message-monitoring data is not used to train machine learning or AI models.

The Bot may include an optional AI chat feature that responds when users explicitly mention the Bot or submit supported inputs. To generate those replies, relevant prompt text, attachments, and nearby conversation context may be sent to configured AI service providers. AI chat can be disabled or restricted by server administrators. We do not use this data to train our own models.

Third-Party Services

We do not sell, rent, or share user data with advertising networks or data brokers. Data may be processed by infrastructure and service providers necessary to operate the Bot, such as Discord, hosting providers, PostgreSQL database infrastructure, Cloudflare services, webhook logging destinations, and optional AI providers used only when AI chat features are invoked.

Data Storage and Security

Persistent Bot data is stored on infrastructure managed by the Bot operator, including PostgreSQL and Cloudflare services where applicable. We use access controls, secret-based internal API authentication, parameterized database queries, transport encryption where available, and least-necessary logging practices to reduce unauthorized access and accidental disclosure.

Data Retention and Deletion

User and Administrator Controls

Children's Privacy

The Bot is not directed at children under the age of 13, and we do not knowingly collect personal data from children under 13. If you believe a child under 13 has provided personal data, please contact us so we can review and delete it where appropriate.

Policy Updates

This Privacy Policy may be updated from time to time. Material changes may be announced through the support server or other reasonable channels. Continued use of the Bot after changes means the updated policy applies.

Contact

For privacy-related inquiries, appeal-related data questions, or deletion requests, please join the support server or contact the developer via GitHub.