GATEFATHERSit down, let’s talk
Legal

Privacy Policy

Effective: 2026-04-22 · Last updated: 2026-04-22

Short version

We collect the minimum data needed to run a subscription platform. We don’t sell your data. We don’t sell your subscribers’ data. You can export and delete your account data any time.

Who this applies to

This policy covers:

  • Creators — people with a Gatefather account operating paid Telegram channels.
  • Subscribers — Telegram users paying to access a creator’s channel through a bot operated on Gatefather.
  • Website visitors — anyone visiting gatefather.xyz.

What we collect from Creators

  • Account info — email address, password hash, Telegram user ID, optional display name.
  • Bot credentials — your Telegram bot token, encrypted at rest.
  • Payment processor credentials — API keys for the processors you connect, encrypted at rest.
  • Billing data — the card or payment method you use to pay Gatefather’s platform fee. Card details are held by our payment processor (Stripe); we store only a token.
  • Usage logs — API requests, webhook events, error traces, retained for operational and debugging purposes.

What we collect from Subscribers

When a subscriber interacts with a creator’s bot on Gatefather, we process:

  • Telegram user ID, username, language code (all provided by Telegram to any bot)
  • Subscription plan selected and status
  • Payment events: success, failure, renewal date, amount (no card numbers)
  • Invite link issued to them and its state

We do not process subscriber card details. Those stay with the payment processor. Subscriber data for a given bot is accessible only by the Creator operating that bot and by Gatefather staff for operations and abuse response.

What we collect from Website Visitors

The public website (gatefather.xyz) does not use tracking cookies by default. Our host (Vercel) and DNS/CDN (Cloudflare) log standard access data (IP, user-agent, request path, timestamp) for security and performance. We may add privacy-preserving analytics in the future with prior notice.

Why we process data

  • To provide and operate the Services (performance of contract)
  • To process billing and prevent fraud (legitimate interest, contract)
  • To respond to abuse reports and protect users and infrastructure (legitimate interest)
  • To comply with legal obligations (legal basis: law)

Who we share data with

We share the minimum necessary data with:

  • Neon (hosted PostgreSQL) — Creator account data, subscription records. Data region: US-West.
  • Vercel (web hosting) — public site + dashboard. Data region: US-East.
  • Cloudflare (CDN, DNS, tunnels) — routing layer. Logs IP/user-agent.
  • Synology NAS (bot runtime) — your bot processes run here; data in transit only, encrypted. Located in British Columbia, Canada.
  • Payment processors you connect — they receive the subscriber’s payment and notify us via webhook. We only see what their webhook sends us.
  • Legal authorities — if compelled by valid legal process.

We do not sell personal data. We do not share personal data for third-party advertising.

International transfers

Data may be processed in Canada, the United States, or other jurisdictions where our vendors operate. Where required, we rely on Standard Contractual Clauses or equivalent safeguards for transfers of personal data out of the EU or UK.

Retention

  • Creator accounts: retained while active; deleted within 30 days of cancellation, except where retention is required by law.
  • Subscriber records: retained for the life of the subscription plus 7 years to support tax and chargeback windows.
  • Webhook logs: 90 days.
  • Application error logs: 30 days.

Your rights

Depending on where you live, you may have rights under laws like GDPR (EU/UK), CCPA/CPRA (California), PIPEDA (Canada), and similar regimes, including:

  • Access — request a copy of your personal data.
  • Correction — ask us to fix inaccurate data.
  • Deletion — ask us to erase your data, subject to legal retention obligations.
  • Portability — receive your data in a portable format.
  • Objection / restriction — object to or limit certain processing.
  • Withdraw consent — where processing is based on consent.
  • Complaint — lodge a complaint with your data protection authority.

To exercise any of these rights, email privacy@gatefather.xyz. We respond within 30 days.

Security

Bot tokens and processor credentials are encrypted at rest using per-tenant Fernet keys. Webhooks are signature-verified and deduplicated. Transport is TLS throughout. We follow the principle of least privilege for staff access. No system is 100% secure; if a breach occurs we will notify affected users and regulators as required by applicable law.

Children

Gatefather is not directed to children under 16. We do not knowingly collect data from children. If you believe a child has submitted data to us, contact privacy@gatefather.xyz and we will delete it.

Changes to this policy

Material changes are announced at least 30 days in advance via dashboard banner and email to Creators. Last-updated date always reflects the current version.

Contact

Privacy requests: privacy@gatefather.xyz
General: hello@gatefather.xyz