Privacy Policy

Last updated: 17 May 2026 · Operator contact: tobyfoy224@gmail.com

This document explains how Erm, Actually! handles data. It is a practical transparency document and is not legal advice.

Overview

Erm, Actually! is a Discord bot that provides AI assistance, fact-checking, and permission-gated message summaries. It uses a Bring Your Own Key model where each Discord server administrator supplies that server's Gemini API key.

Data We Process

The bot may process:

Discord user IDs.
Discord guild/server IDs.
Command names and command options.
Message content selected by /summarise.
Prompt text submitted to /ai.
Factual statements submitted to /factcheck.
Server cooldown settings.
Encrypted Gemini API keys submitted by server administrators.
Operational metadata such as timestamps and updater Discord IDs.

Gemini API Keys

Gemini API keys are submitted through /initialise, validated, encrypted with AES-256-GCM, and stored in the bot database. The bot stores encrypted key material and metadata, not plaintext keys.

Plaintext keys are used only in memory when needed to call Gemini for that server.

Third-Party Processing

Gemini-backed commands send command input to Google/Gemini for processing. /summarise sends selected recent channel message content to Gemini.

Users should not submit sensitive personal data, confidential information, passwords, API keys, financial data, health data, or other private material to bot commands.

Server administrators who provide a Gemini API key are responsible for their Google/Gemini account, billing, quota, and compliance with Google/Gemini terms.

Data Retention

The bot stores:

Encrypted server Gemini keys until removed with /key remove or deleted by the operator.
Server cooldown settings until changed or deleted.
SQLite metadata needed to operate BYOK storage.

The bot should not intentionally log prompts, transcripts, API keys, encrypted key payloads, or decrypted key material.

Data Deletion

Server administrators can remove the stored Gemini key with /key remove. For other deletion requests, use /data or contact tobyfoy224@gmail.com.

See the Data Deletion page for more detail.

Security

AES-256-GCM encryption for Gemini keys at rest.
Discord mention disabling and neutralization.
Administrator-only BYOK management.
Permission-gated /summarise.
Gemini safety settings and local refusal checks.

No system can guarantee perfect security. Server administrators should rotate their Gemini API key if they suspect exposure.