- Discord account information (user ID, username, avatar image URL, list of joined servers)
- Usage information (dates the bot was used, per-server configuration)
- Payment-related information (Stripe customer ID and subscription ID). Credit card numbers and other payment details are managed by Stripe and not retained by the Service.
- Communication logs (IP address, User-Agent, access timestamp). These are automatically recorded as logs by our infrastructure providers.
- Provision and operation of the Service
- Tracking usage (e.g., managing monthly usage-day counts for the Free plan)
- Billing and invoice management
- Detecting and preventing fraudulent use, and ensuring the security of the Service
- Improving the Service and responding to user inquiries
- The Service entrusts personal data to the following business operators. These operators are located outside Japan (primarily in the United States) and handle personal data under the legal regime of those countries.
- Discord, Inc. (United States) — authentication and message processing via the bot
- Stripe, Inc. (United States) — payment processing and subscription management
- Cloudflare, Inc. (United States) — hosting and data storage for Workers / D1 / R2 etc.
- Amazon Web Services, Inc. (United States) — speech synthesis via Polly
- Fly.io, Inc. (United States) — hosting for the bot runtime
- Personal data will not be provided to third parties other than those listed above, except as required by law or with the user's consent.
- Personal data is stored on Cloudflare infrastructure for the period necessary to provide the Service.
- When an account is deleted or the Service is terminated, stored personal data will be deleted within a reasonable period. However, information subject to legal retention obligations (such as payment records) will be retained for the required period.
- Encrypted cookies are used to manage login sessions.
- Stripe issues its own cookies on the Stripe payment screens. Please refer to Stripe's privacy policy for details.
- We do not use cookies for analytics or advertising purposes. If introduced, this policy will be updated and users will be notified.
- Users may request disclosure, correction, addition, deletion, suspension of use, or suspension of third-party provision of their own personal data held by the Service.
- Requests should be submitted by email to the contact described in Section 9. To verify identity, we may ask for Discord account information.
- Responses may require a reasonable period for review of the request.
- Access to personal data is limited to those who need it for business purposes, with authentication-based access control in place.
- Communications are encrypted via HTTPS, and sensitive authentication information is stored in encrypted cookies.
- Confidential information such as session tokens is retained only for the minimum necessary period and is invalidated periodically.
- This Policy may be revised from time to time.
- Significant changes will be communicated to users by posting on the Service or by requesting renewed consent.
- The personal data manager is the operator of the Service.
- Contact for inquiries about personal data handling: support@shabemon.com
The original language of this Policy is Japanese. Translations into English or any other language are provided solely for the user's convenience; in the event of any inconsistency between the Japanese version and any translation, the Japanese version shall prevail.