Skip to content
Back to home

Privacy Policy

Last updated: April 8, 2026

1. Information We Collect

1.1 Account Information (Server Owners)

When you sign up for Restore Hub, we collect your Discord account information through Discord's OAuth2 flow, including:

  • Discord user ID, username, and display name
  • Email address associated with your Discord account
  • Avatar URL
  • Discord guilds (servers) you manage

1.2 Verified Member Data

When members verify through a Restore Hub-powered verification page or widget, we collect the following data with their explicit consent via Discord's OAuth2 authorization:

  • Discord user ID, username, display name, and avatar
  • Email address
  • Discord guild (server) memberships
  • Locale and Nitro subscription status
  • OAuth2 access and refresh tokens (encrypted at rest with AES-256-GCM)

1.3 Device and Network Information

During the verification process, we automatically collect the following technical data for security and fraud prevention:

  • IP address (encrypted at rest)
  • Browser fingerprint (collected via FingerprintJS)
  • User agent string, device type, and operating system
  • Screen resolution, browser language, and timezone
  • Country, region, city, ASN, and ISP information (via IP geolocation)
  • VPN, proxy, datacenter, and Tor exit node detection results
  • Referrer URL

1.4 Payment Information

Payment processing is handled by Stripe and OxaPay. We do not store credit card numbers or full payment details on our servers. We retain transaction IDs, plan details, and billing history for accounting purposes.

1.5 Usage Data

We collect aggregated usage data including page views, verification funnel metrics, API call counts, feature usage patterns, and dashboard interactions to improve the Service.

1.6 Internationalization / Language Preference

We store your preferred language (via the locale field in your account and the NEXT_LOCALE cookie) to deliver translated emails and UI content. Your language preference is not shared with third parties.

2. How We Use Your Information

  • Verification: To verify Discord server members, assign roles, and enforce server-specific firewall rules
  • Member Recovery: To restore members to Discord servers using stored OAuth2 tokens when requested by the server owner
  • Security & Anti-Abuse: To detect VPNs, proxies, alt accounts, and potential threats; to enforce firewall rules; to detect raids and prevent server nuking
  • Analytics: To provide server owners with verification funnel analytics, geographic distribution, member insights, and growth metrics
  • Marketplace: To facilitate member transfers between servers, process transactions, and prevent fraud
  • Ad Targeting: To serve relevant advertisements on verification pages based on aggregated demographic data (country, language, device type). We do not use individual member profiles for ad targeting.
  • Service Improvement: To analyze usage patterns, diagnose technical issues, and develop new features
  • Communication: To send service-related notifications, security alerts, and (with your consent) promotional updates

3. Data Sharing and Third Parties

We do not sell your personal data. We share data only in the following limited circumstances:

  • Server Owners: Server owners using Restore Hub can view verified member data according to their subscription tier (e.g., Premium+ plans can access email addresses and IP-derived location data)
  • Marketplace Buyers: When members are transferred through the marketplace, their OAuth2 tokens are used to add them to the buyer's server. The buyer does not receive raw token data, email addresses, or IP information.
  • Advertisers: Advertisers on the Restore Hub ad network receive aggregated, anonymized performance metrics (impressions, clicks, geographic breakdown). They never receive individual member data, email addresses, or identifying information.
  • Data Export: Server owners with eligible plan tiers can export member data in CSV, JSON, or XLSX formats. The server owner is responsible for securing exported data.
  • Service Providers: We use third-party services for payment processing (Stripe, OxaPay), fingerprinting (FingerprintJS), IP intelligence, and infrastructure hosting. These providers process data solely on our behalf under data processing agreements.
  • Legal Requirements: We may disclose data when required by law, valid legal process, or to protect the rights, property, or safety of Restore Hub, our users, or the public

4. Third-Party Services

Restore Hub integrates with the following third-party services. Each service has its own privacy policy governing how it handles data:

  • Google Tag Manager: Used as a container management system to deploy and manage tracking tags on our website. Google Tag Manager itself does not collect personal data; it triggers other tags that may collect data as described below.
  • Google Analytics 4 (GA4): Used to collect anonymized usage data including page views, session duration, scroll depth, outbound link clicks, and site search queries. Data is aggregated and used solely for improving the Service. We do not use Google Analytics data to identify individual users.
  • Meta/Facebook Pixel: Used for conversion tracking to measure the effectiveness of our marketing campaigns on Meta platforms. The Pixel may collect page visit data and interaction events. It is never used to build advertising profiles of our users for third-party ad networks.
  • LinkedIn Insight Tag: Used for B2B conversion tracking and to measure the effectiveness of LinkedIn marketing campaigns. The Insight Tag may collect page visit data and professional demographic information in aggregate.
  • Stripe: Handles all payment processing. Stripe collects payment method details (card numbers, billing addresses) directly and is subject to its own privacy policy and PCI-DSS compliance. Restore Hub does not store full payment card data.
  • Brevo (formerly Sendinblue): Used for transactional email delivery (verification confirmations, security alerts, billing receipts). Brevo processes recipient email addresses and email content on our behalf.
  • Cloudflare: Provides CDN, DNS, DDoS protection, and Turnstile captcha verification. Cloudflare may process IP addresses and request metadata as part of its security and performance services.
  • Cloudflare R2: Used for secure file storage including server backups, media uploads, and data exports. Files stored in R2 are encrypted and access-controlled.
  • Discord API: Used for OAuth2 authentication, bot operations, role assignment, member pulling, and server management. Data exchanged with Discord is governed by Discord's own Privacy Policy and Developer Terms.

5. Data Security

We implement industry-standard security measures to protect your data:

  • All OAuth2 tokens are encrypted at rest using AES-256-GCM with per-user derived encryption keys
  • IP addresses and email addresses are encrypted in the database
  • Bot tokens, client secrets, and API keys are encrypted before storage
  • All connections to and from Restore Hub use TLS/HTTPS
  • Rate limiting is applied to all API endpoints
  • Regular security audits and dependency vulnerability scanning
  • Database backups are encrypted and stored securely

6. Database Backups

We perform automated daily encrypted backups of our database to Cloudflare R2 storage. These backups are used solely for disaster recovery and service continuity. Backups are retained for 30 days and are automatically deleted after that period. All backup files are encrypted at rest and access is restricted to authorized infrastructure processes only.

7. Data Retention

  • Verification events and page views: 90 days
  • Audit logs: 1 year
  • Login sessions: 90 days
  • Server backups: According to plan limits (oldest backups are auto-pruned when limits are reached)
  • Database backups: 30 days (automatically deleted after retention period)
  • Member data (tokens, profiles): Retained until the server owner deletes it, the member requests removal, or the account is terminated
  • Payment records: 7 years (as required for accounting and tax purposes)
  • Post-termination: Account data is deleted within 30 days of termination; backups are purged within 90 days

8. Cookies and Tracking Technologies

Restore Hub uses cookies and similar technologies to operate the Service, remember your preferences, and understand how the Service is used. Below is a detailed breakdown of the cookies we use:

8.1 Essential Cookies

These cookies are strictly necessary for the Service to function and cannot be disabled:

  • __Secure-authjs.session-token / authjs.session-token: Maintains your authenticated session after login
  • CSRF protection token: Prevents cross-site request forgery attacks on form submissions
  • rh_logged_in: A non-sensitive indicator used to determine whether to show the logged-in or logged-out navigation experience
  • rh_cookie_consent: Stores your cookie consent preferences so we do not re-prompt on every visit
  • NEXT_LOCALE: Stores your preferred language so the Service can deliver content in the correct locale

8.2 Functional Cookies

These cookies remember your preferences and settings to provide a more personalized experience:

  • Sidebar state: Remembers whether the dashboard sidebar is expanded or collapsed
  • Dashboard preferences: Stores layout and display preferences for your dashboard views
  • Theme: Remembers your selected theme (light, dark, or system)

8.3 Analytics Cookies

These cookies help us understand how visitors interact with the Service so we can improve it. Analytics cookies are only set after you provide consent:

  • Google Analytics (GA4) via Google Tag Manager: Collects anonymized data about page views, scroll depth, outbound link clicks, and site search usage. This data is aggregated and does not identify individual users. We do not sell analytics data to any third party.

8.4 Marketing Cookies

These cookies are used to measure the effectiveness of our marketing campaigns. Marketing cookies are only set after you provide consent:

  • Meta Pixel: Tracks conversions from Meta/Facebook advertising campaigns to measure campaign performance
  • LinkedIn Insight Tag: Tracks conversions from LinkedIn advertising campaigns to measure B2B campaign performance

Marketing cookies are used solely to evaluate our own advertising efforts. They are never used to serve third-party advertisements or participate in ad exchange networks.

8.5 Browser Fingerprinting

During the verification process, we collect browser fingerprints for security purposes (alt-account detection and fraud prevention). This is not used for advertising or cross-site tracking.

8.6 Managing Your Cookie Preferences

You can manage your cookie preferences in the following ways:

  • Cookie banner: On your first visit, a cookie consent banner allows you to accept or decline non-essential cookies
  • Cookie Preferences link: You can update your preferences at any time using the “Cookie Preferences” link in the website footer
  • Browser settings: Most browsers allow you to block or delete cookies through their privacy settings. Note that blocking essential cookies may prevent the Service from functioning correctly.

8.7 Google Consent Mode v2

Restore Hub implements Google Consent Mode v2. All analytics and marketing tracking defaults to denied until you explicitly provide consent through the cookie banner. This means no tracking data is collected by Google Analytics, Meta Pixel, or LinkedIn Insight Tag until you opt in. If you decline or do not interact with the banner, these services remain inactive.

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  • Access: Request a copy of all personal data we hold about you
  • Rectification: Request correction of inaccurate data
  • Deletion: Request deletion of your data from our systems. You can delete your account through the dashboard settings, or contact us for a full data removal request.
  • Data Portability: Request your data in a machine-readable format (JSON export)
  • Objection: Object to specific processing of your data
  • Restriction: Request that we limit processing of your data in certain circumstances
  • Withdrawal of Consent: Withdraw consent for processing at any time (this does not affect the lawfulness of processing before withdrawal)

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

10. International Data Transfers

Restore Hub servers are hosted in the United States and Europe. If you are located outside these regions, your data may be transferred to and processed in these jurisdictions. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required.

11. Children's Privacy

Restore Hub is not intended for users under the age of 13 (or the applicable minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child under 13 has provided us with personal information, please contact us immediately and we will take steps to delete that information.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email or through the Restore Hub dashboard at least 14 days before taking effect. Your continued use of the Service after changes take effect constitutes acceptance of the revised policy.

13. Contact

For privacy-related inquiries, data requests, or concerns, contact us at [email protected].

Restore Hub — Discord Member Backup, Verification & Server Recovery Bot