← Back to Nureiq PRIVACY

Privacy without
the vague parts.

Last updated: 17 July 2026.

What this website collects

Nureiq does not use advertising trackers or third-party analytics cookies. If you create a profile, Nureiq stores your email, username, display name, password hash, profile settings, portfolio content, follows, blocks, badge awards and messages you choose to send. Your email and security details are never shown on your public profile.

Why it is used

Account data operates your profile, portfolio, follows, safety controls and direct messages. Private reports are available to the owner for community safety. Nureiq rejects obvious passwords, API keys, tokens and recovery codes in public profile content and messages; never submit those secrets anywhere on the site.

Retention

Your account data remains while your profile exists. You can permanently delete your account from Profile settings; this removes your profile, follows, badge awards and direct messages. Expired sessions are removed automatically. Technical rate-limiting records are temporary and held only in memory.

Account security

Passwords are stored as salted scrypt hashes, not readable passwords. Login cookies are HTTP-only, secure and same-site. Session tokens are stored as hashes. Because Nureiq does not send password-reset email, you receive a one-time recovery code when registering or resetting a password. Store it in a password manager; Nureiq cannot show it again.

Profiles, links and direct messages

Profiles, portfolio work, profile apps, follower lists and badges are public. Profile apps are external HTTPS links and do not give Nureiq access to those services. Direct messages are private between participants in the normal interface, but are stored on Nureiq's private VPS and may be reviewed when required to investigate a safety report. Do not use DMs as secure or encrypted storage.

The Nureiq Discord bot

The bot processes questions submitted through its slash commands. Mentions, replies and ordinary Discord messages are ignored, and the bot does not request the Message Content gateway intent. Approved FAQs and server knowledge are handled locally where possible. Paid AI is used only when a slash-command question needs language generation. Ordinary member messages are never accepted as server facts.

Optional member memory is user-controlled, limited and expires. Routing logs avoid storing message text. A shortened question and answer preview may be retained privately for up to 30 days after feedback. Safe conversational replies can be promoted automatically after Helpful votes from two different members and expire after 30 days; a Needs work vote blocks that answer from reuse. Server facts, permissions, moderation, current information, coding, secrets and admin actions never auto-learn from votes.

Third parties

Discord processes activity under its own policies. Questions that require AI may be sent to OpenAI through Nureiq's private automation workflow using minimized context. The website's server icon is loaded from Discord's content delivery network.

Your choices

You can limit who may message you, block another member, file a private report or delete your website account from Profile settings. Bot memory can be viewed or removed using the bot's memory commands. Website and Discord bot data are separate.

Privacy questions

Use the Nureiq Discord help desk for privacy questions. Never include account credentials, recovery codes or private keys in a request.