Privacy
Last updated: 25 May 2026
Data we collect
When you sign in with Discord, RetailScrapers receives and stores your Discord user ID, display name, and profile avatar URL. These are the fields Discord's OAuth provider returns for theidentify emailscope. We also store the Discord webhook URLs you configure inside the platform, encrypted at rest with AES-256-GCM. Authenticated actions — sign-ins, configuration changes, watchlist edits, and on-demand stock checks — are written to an internal activity log used solely for operator observability.
Data we do not collect
We do not collect payment information; commercial arrangements with the operator are handled out-of-band. We do not run third-party analytics, advertising trackers, marketing pixels, session replay tools, or A/B testing services. We do not request Discord scopes beyond identify email. We do not read or store messages, channel content, or any data from your Discord server beyond the webhook destination you provide.
Cookies
The only cookies set by RetailScrapers are session cookies issued by NextAuth to keep you signed in. There are no tracking cookies, no advertising cookies, and no cookies set by third parties.
Data retention
Activity log rows are automatically pruned after 90 days. Account data — Discord identifiers, encrypted webhook URLs, and configuration — is retained for as long as your account remains active and is deleted when the account is revoked.
Encryption
All webhook URLs are encrypted at rest with AES-256-GCM using a server-side key. Decrypted webhook URLs are never written to log files, error messages, or any other persistent location.
Your rights
You may request deletion of your account at any time. Because the platform is invite-only and there is no public contact form, deletion requests are made out-of-band through the same community channel that issued your invitation.
Jurisdiction
RetailScrapers is operated from Australia. This policy is governed by the laws of New South Wales, Australia.