Privacy Policy

Last updated: 2025-08-07

1. Introduction

Pagu (“we,” “us,” “our”) operates the Pagu Bot service (“Service”). The bot only receives commands and responds, with no unsolicited messaging.

Pagu is a tool designed for the Pactus blockchain for insights into network status, block rewards, PAC coin prices, Phoenix Testnet features, and related utilities.

This Privacy Policy explains what information (if any) we collect, how we use, share, store, and protect it, and your rights.

2. What Data We May Handle

When you submit a command, we may collect:

  • The command content or query.
  • Timestamp of receipt and response.
  • Platform or client metadata (interface, version).
  • Technical logs, performance, and error metrics.
  • IP or network metadata (for security or abuse detection).
  • User identity or phone number, if provided or needed, to track activity and prevent spam or misuse.

We do not require or collect name, email, or other personal identifiers unless you explicitly provide them via a feature.

3. Purpose of Use

We use this data only for:

  • Responding to your commands accurately.
  • Debugging, diagnostics, and performance monitoring.
  • Abuse or spam prevention and overall system protection.

We will never use the data for advertising, profiling, or sales, unless you explicitly consent.

4. Sharing & Third Parties

  • We will not sell or rent your personal data.
  • Minimal data may be shared with infrastructure providers (hosting, logging) under confidentiality.
  • External APIs you invoke may receive only what they need (e.g. queries for price or blockchain info).
  • Aggregated or anonymized metrics, which cannot identify users, may be published.

5. Retention & Deletion

  • Logs, metadata, and diagnostics are kept only as long as needed (e.g. a few months).
  • Optional identity or phone data (if stored) is kept only while needed for abuse or spam prevention, or until you request deletion.
  • When data is no longer needed, we securely delete or anonymize it.

6. Security Measures

We adopt industry best practices to protect data:

  • Encryption in transit (TLS / HTTPS).
  • Access control, least privilege, role-based access.
  • Secure storage (encryption at rest where feasible).
  • Monitoring, logging, audits, anomaly detection.
  • Incident response protocols.

However, no system is 100% immune to risks; we cannot guarantee absolute security.

7. Your Rights & Control

You may:

  • Request a copy of any data stored about you.
  • Request correction or deletion of data you provided.
  • Withdraw consent for features requiring personal data.

If you choose not to provide optional identity or personal data, core functionalities remain usable (though certain anti-abuse protections may be limited).

8. Changes to This Policy

We may update this policy when new features, integrations, or data practices are introduced. When we do:

  • We will update the “Last updated” date.
  • Material changes will be notified.
  • Continued use after changes implies acceptance.