This Privacy Policy applies to the Innersync platform and the Alphapy Discord bot (collectively, "the Service"), operated by:

Bryan D'Haen acts as the data controller under the General Data Protection Regulation (EU) 2016/679 ("GDPR").

We collect only the minimum data required to operate the Service. Specifically, Alphapy processes the following data when you interact with the bot or the dashboard:

• Discord User ID — a numeric identifier assigned by Discord. We do not collect your username, avatar, email, or any other Discord profile data unless you explicitly provide it.
• Guild (Server) ID & Channel ID — to associate reminders and settings with the correct Discord server and channel.
• Reminder content & timestamps — the message text and scheduled time you configure via bot commands or the dashboard.
• Onboarding responses — answers you provide when completing a server's onboarding flow (e.g., how you found the server, interests). These are stored per guild and visible to that guild's administrators only.
• Support ticket content — titles and descriptions of tickets you create or manage via the dashboard.
• Operational logs & metrics — anonymised error logs and performance metrics used to maintain service reliability.

We do not collect IP addresses, voice data, location data, or the content of general Discord messages outside of explicit bot commands or dashboard input.

We process personal data on the following legal bases under GDPR Art. 6:

• Contract performance (Art. 6(1)(b)) — to deliver the features you or your guild administrator have configured (reminders, onboarding flows, support tickets).
• Legitimate interests (Art. 6(1)(f)) — to maintain service stability, investigate errors, and prevent abuse.
• Consent (Art. 6(1)(a)) — where applicable, such as optional email fields in onboarding flows.

We retain data for the shortest period necessary:

• Reminders — retained until triggered or deleted by a server administrator or the user who created them.
• Onboarding responses — retained as long as the guild remains active or until deletion is requested.
• Support tickets — retained until closed and deleted by an administrator.
• Operational logs & metrics — maximum 30 days, after which they are automatically purged.
• Guild settings — retained as long as the guild uses the Service or until deletion is requested.

Data is stored in cloud-hosted PostgreSQL databases (Railway and Supabase). We apply industry-standard measures including:

• TLS encryption in transit
• Encrypted connections (SSL) to all database instances
• Service role key isolation — no public database access
• Client-side encryption where applicable

We do not sell, rent, or share personal data with third parties for marketing or advertising purposes.

The Alphapy dashboard uses a single httpOnly session cookie solely to authenticate your Discord session. This cookie:

• Contains no personally identifiable information beyond a signed session token
• Is not used for advertising or cross-site tracking
• Is deleted when you log out

We use no analytics scripts, advertising pixels, or third-party trackers on any page of this Service.

As a data subject under GDPR, you have the following rights. To exercise any of them, contact us at support@innersync.tech:

• Right of access — request a copy of the personal data we hold about you.
• Right to rectification — request correction of inaccurate data.
• Right to erasure — request deletion of your data ("right to be forgotten").
• Right to data portability — receive your data in a structured, machine-readable format.
• Right to object — object to processing based on legitimate interests.
• Right to lodge a complaint — you may file a complaint with the Belgian Data Protection Authority (dataprotectionauthority.be).

We will respond to requests within 30 days.

The Service is not directed at children under 13 years of age. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us immediately and we will delete it.

We may update this Privacy Policy from time to time. Material changes will be announced via the Innersync Discord server or this page. Continued use of the Service after changes constitutes acceptance of the revised policy.

Questions, requests, or concerns about this policy: