Privacy Policy

Nexrole ("we", "our", "us") is a service that connects your Substack payment account to your Discord server. We take privacy seriously — this policy explains exactly what data we collect, why, and how we protect it. We do not sell your data. We do not run advertising. We collect only what we need to do the job.

We collect the minimum data required to operate the service:

• Your account — name, email address, and profile image from your Google or Discord sign-in via NextAuth. We use this to identify your account.
• Stripe connection — when you connect your Stripe Express account, we store your Stripe account ID and OAuth tokens. We use these to read subscription status. We never store or access your bank details, payout information, or full card data.
• Discord connection — your Discord server ID, server name, and the role ID/name you configure. We use these to assign and revoke roles.
• Subscriber records — for each subscriber who clicks your join link, we store their Discord user ID, Discord username, email address (matched from Stripe), subscription status, and the date roles were granted or revoked. This data belongs to you as the creator.
• Activity logs — we log each sync action (grant, revoke, nightly sync) with counts and timestamps. We do not log message content or anything outside role management.
• Billing — for your Nexrole subscription, we store your Stripe customer ID and subscription ID. Full payment processing is handled by Stripe; we never see or store raw card numbers.

• To grant and revoke Discord roles automatically when subscribers pay or cancel on Substack.
• To run nightly safety syncs that catch any missed webhook events.
• To display your dashboard (subscriber list, activity feed, stats).
• To process your Nexrole subscription payment via Stripe.
• To send transactional emails (trial reminders, billing receipts) via Resend. We do not send marketing emails unless you opt in.
• To investigate errors and improve the service. We do not use your subscribers' data for any purpose other than role management.

Nexrole integrates with the following third parties, each with their own privacy policies:

• Stripe — payment processing and subscription data. Read-only OAuth access to your Connect account. stripe.com/privacy
• Discord — role management via the Discord Bot API. We only manage the specific role you configure; we never read messages or access other server data. discord.com/privacy
• Supabase (PostgreSQL) — our database provider. Data is stored in a Supabase-hosted PostgreSQL instance. supabase.com/privacy
• Vercel — hosting and edge functions. vercel.com/legal/privacy-policy
• Resend — transactional email delivery. resend.com/legal/privacy-policy

• Your account and configuration data is retained as long as your Nexrole account is active.
• Subscriber records are retained as long as you maintain your account. You can delete individual subscriber records from your dashboard at any time.
• Activity logs are retained for 90 days, then automatically purged.
• If you cancel your Nexrole account, we delete all your data within 30 days unless required to retain it by law (e.g. for billing records, which are kept for 7 years per standard accounting practice).

Depending on where you live, you may have rights under GDPR (EU/UK), CCPA (California), or similar laws. Regardless of jurisdiction, we honour these requests:

• Access — request a copy of the personal data we hold about you.
• Correction — ask us to correct inaccurate data.
• Deletion — ask us to delete your account and associated data.
• Portability — request your subscriber data as a CSV export.
• Opt-out — unsubscribe from any non-transactional emails at any time.

To exercise any of these rights, email us at privacy@nexrole.io. We respond within 30 days.

We use industry-standard security practices: HTTPS everywhere, encrypted database connections, Stripe OAuth tokens stored encrypted at rest, and minimal permission scopes on all third-party integrations. See our Security page for more detail.

Nexrole is not directed at children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact us at privacy@nexrole.io and we will delete it promptly.

We will notify you of material changes via email or an in-app notice at least 14 days before they take effect. The "last updated" date at the top of this page reflects the most recent revision. Continued use of the service after changes take effect constitutes acceptance.

Questions about this policy? Email privacy@nexrole.io.