Legal

Privacy Policy

Last updated: 7 June 2026

This Privacy Policy explains how Exiom ("Exiom", "we", "us", "our") collects, uses, and protects your information when you use our Discord bot, our website at exiom.net, and our dashboard (together, the "Service").

1. Information We Collect

• Discord account information — when you log in with Discord, we receive your Discord user ID, username, avatar, and a list of the servers you belong to (so we can show you which ones you can manage). We only request the identify and guilds scopes — we never see your password, and we don't request your email address.
• Server (guild) data — if you add Exiom to a Discord server, we store the configuration you choose to set (e.g. a log channel) and a record of moderation actions taken there (warnings, kicks, bans, etc.) so they can be shown in your dashboard's activity log.
• Account records — we keep a record of every Discord account that has signed in (user ID, username, avatar, and the dates you first/last signed in) so we can run the Service and, where applicable, manage subscriptions.
• Technical data — like most websites, our hosting provider may log technical information such as IP addresses and request logs, used only for security and reliability.
• Session cookies — we use a single essential cookie to keep you signed in. It contains a random session identifier, not personal data, and expires automatically after 7 days of inactivity.
• Payment information — if you purchase a paid plan, your payment is handled entirely by our payment processor. We don't store, and never have access to, your full card details — we only receive confirmation that a payment was made and which plan it relates to.

2. How We Use Your Information

We use the information above to:

• provide, operate, and maintain the Service — for example, letting you log in, see your servers, and configure settings
• display moderation activity and statistics in your dashboard
• provide customer support
• detect, prevent, and address technical issues or abuse
• manage paid subscriptions, where applicable

We do not sell your personal data, and we do not use it for advertising.

3. Who We Share It With

We share information only where it's necessary to run the Service:

• Discord — to authenticate you and retrieve the data described above (see Discord's Privacy Policy)
• Our hosting provider — to run the Service and store its data
• Payment processors — to process subscription payments, if you purchase a paid plan

We do not sell, rent, or trade your personal information to third parties for marketing purposes.

4. How Long We Keep Your Information

Session cookies expire automatically after 7 days of inactivity. Account, plan, and server-configuration records are kept for as long as your account exists, or for as long as Exiom remains in your server — and are deleted on request (see "Your Rights" below).

5. Your Rights

Depending on where you live, you may have rights over your personal data, including the right to:

• access the personal data we hold about you
• ask us to correct inaccurate data
• ask us to delete your data ("right to be forgotten")
• object to, or ask us to restrict, certain processing
• ask for a copy of your data in a portable format

To exercise any of these rights, email us at [email protected]. If you're in the UK or EU, you also have the right to complain to your local data protection authority — in the UK, that's the Information Commissioner's Office (ICO).

6. Children's Privacy

Discord requires users to be at least 13 years old (or the minimum age required where you live). Exiom is not intended for, and we do not knowingly collect personal data from, anyone below that age. If you believe a child has provided us with personal data, please contact us and we'll remove it.

7. International Users

Exiom is based in the United Kingdom, and the Service is available to Discord users and servers around the world. By using the Service, you understand that your information may be processed and stored in the UK or in other countries where our service providers operate, which may have different data protection laws than your own — we take steps to keep your data protected wherever it's processed.

8. Security

We take reasonable technical and organisational measures to protect your information, but no method of storage or transmission over the internet is 100% secure, and we cannot guarantee absolute security.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we'll update the "Last updated" date above and, where appropriate, let you know through the Service.

10. Contact Us

Questions or requests about your data? Email us at [email protected].