Agent 47 Bot Policy

1. Overview

Agent 47 is a Discord bot used by VortexDevelopmeant and connected communities for operations, moderation, verification, transcripts, and security review. It includes secure Discord and Roblox account-linking, protected transcript access, ticket tooling, and optional Roblox group role automation.

This policy governs how Agent 47 may be used, what data may be collected, how access is enforced, and how authorized staff may review the minimum information required for safety, legal compliance, and incident response.

2. Purpose and Functionality

Agent 47 includes the following core functionalities:

• Custom agent messaging, tickets, moderation workflows, and server operations.
• Global chat and official announcements between approved servers.
• Secure transcript viewing through Discord OAuth2 and backend permission checks.
• Two-step verification using Discord account sign-in and Roblox OAuth.
• Optional verification panel buttons that send private verification links in DMs.
• Saved verification reuse for up to 90 days, with automatic relock if the Discord authorization is removed or fails a backend re-check.
• Customizable post-verification access such as role grants, role removals, log channels, and verification notes.
• Optional Roblox group role management through approved ticket flows or administrator slash/prefix commands.
• AI personas and selectable chat models (Agent47, Agent48, Agent99, Code).
• Core-tier music playback in voice channels with volume and bass control.
• Core-tier cross-server radio channels that relay voice traffic between participating servers with access controls.
• Radio relays include optional push-to-talk beeps, noise gating, and loudness limiting to keep live calls intelligible.
• Secure PayPal subscription checkout, billing sync, and audit logging for paid bot tiers.
• Built-in AI assistance for safe server setup and support, with guardrails that block prompt leakage, secret disclosure, raid help, and illegal guidance.
• Roblox OAuth scopes may include openid, profile, group:read, group:write, and user.inventory-item:read when enabled for the service.
• Discord OAuth may request identify, email, and guilds so the backend can confirm the correct account, current server membership, and identity contact details. If guilds.join remains enabled in the Discord application dashboard, it is reserved for future owner-approved onboarding and is not used to auto-join end users in the current flow.
• Security investigation tools, watch history, and verification analytics for authorized review.

The bot is intended solely for lawful and fictional entertainment or management use. Real-world criminal or harmful activity is not permitted.

3. Acceptable Use

By using Agent 47, you agree to:

• Use the bot only for lawful and compliant roleplay, moderation, verification, or faction management activities.
• Respect Discord’s Terms of Service and Community Guidelines.
• Respect Roblox platform rules when using Roblox verification or Roblox group role features.
• Allow moderation, verification, and security logging as defined in this policy.
• Use transcript, verification, and Roblox group management features only when you are authorized by the server owner or staff policy.
• Not misuse, clone, exploit, or reverse-engineer the bot or its web services.

4. Prohibited Uses

The following are strictly forbidden when using Agent 47:

• Any real-world criminal coordination, violence, or threats.
• Uploading, sharing, or distributing unlawful or malicious code (including exploits, stealers, or unauthorized hacking tools).
• Using Agent 47 to bypass Discord moderation or bans.
• Storing, transmitting, or collecting private personal data without consent.
• Attempting to bypass transcript access checks, Discord OAuth2 checks, Roblox OAuth verification, or backend permission validation.
• Sharing secrets such as tokens, cookies, webhook URLs, API keys, or verification links with unauthorized users.
• Using Roblox group role actions on users without server authorization or outside approved moderation, support, or access workflows.
• Harassment, doxxing, hate speech, or discrimination.
• Attempting to compromise, overload, or reverse-engineer the bot or its APIs.

5. Verification, Transcript, and Access Systems

Agent 47 uses secured, backend-validated systems for sensitive access:

• Roblox verification requires both a valid Discord sign-in and a valid Roblox OAuth sign-in before verification is completed.
• Once saved, a verification may be reused for up to 90 days unless staff resets it, the Discord authorization is removed, or a new verification-enabled server requires a fresh check.
• If a user removes the Discord authorized app, or the authorization stops passing backend checks, Agent 47 may relock access and require both Discord and Roblox verification again.
• Transcript viewing requires an active Discord OAuth2 web session, current server membership, and transcript participant or staff-level access.
• Verification unlocks may be customized per server through role grants, role removals, log channels, and verification notes.
• Optional Roblox group role configs may be applied in tickets or direct commands only by authorized staff and only after a saved Roblox verification exists.
• Emergency security pause controls may temporarily disable protected web routes while investigation or service recovery is in progress.

6. Data Collection and Logging

Agent 47 uses limited data collection to ensure safe and consistent operation:

• Message, ticket, and transcript metadata such as user IDs, guild IDs, channel IDs, message IDs, and timestamps.
• Message content or excerpts when needed for moderation, ticket transcripts, or incident review.
• Verification records including Discord account linkage, verified Roblox identity claims, scopes, timestamps, and configured access actions.
• Encrypted identification records may include Discord user ID, username, global name, avatar URL, encrypted email, locale, granted scopes, and encrypted identity payloads returned by Discord OAuth.
• Where the Roblox service permits it, limited Roblox group and inventory-related data may be reviewed for enabled verification features, impersonation checks, and fraud review.
• Security telemetry during verification such as IP address, browser metadata, device fingerprint, headers, VPN checks, alt-account indicators, and result status.
• Radio transmissions (channel number, speaker ID, and transcript text) when cross-server radio features are enabled.
• Billing records may include server ID, selected plan tier, PayPal subscription IDs, plan IDs, approval status, and webhook sync results needed to operate recurring subscriptions.
• Administrative action logs for verification changes, transcript access, ticket actions, and Roblox group role changes.

Minimal Data Principle

• Authorized security staff only collect and review the minimum data needed to improve security, investigate abuse, document staff actions, and meet legal or platform requirements.
• The user.inventory-item:read scope is intended for security review only and is not used for advertising, resale, or unrelated profiling.
• Collected data is not sold and is not used for advertising.
• Access to sensitive verification or investigation data is restricted to authorized maintainers and approved security staff.

Data Retention

• Default retention period: 90 days, unless longer retention is required for active investigations, audits, disputes, or legal compliance.
• Some audit records may be retained longer when necessary to preserve integrity of moderation, verification, or group-management actions.

7. Privacy and User Rights

• Users may request review or deletion of eligible stored data through official support channels.
• Personal information is never shared or sold.
• Data may be disclosed only when required by law, platform authorities, or verified security/legal requests.
• Servers using verification or Roblox group automation are responsible for informing their members that secure account-linking and moderation logs are in use.

GDPR and CCPA Rights

• For eligible users, supported rights include access, correction, deletion, portability, and objection/restriction where applicable under GDPR.
• For California residents, supported rights include right to know, right to delete, right to correct, and right to non-discrimination under CCPA/CPRA where applicable.
• Agent 47 does not sell personal information and does not share personal information for cross-context behavioral advertising.
• Privacy requests should be submitted through official support channels so identity and ownership can be validated before action.

Device Fingerprint and IP Use

• IP, browser, and fingerprint-style signals are used only for security controls (abuse prevention, anti-alt checks, and fraud defense).
• These signals are not used for ad targeting, resale, or unrelated profiling.

8. Security and Backend Enforcement

Agent 47 applies security checks on the backend, not only in the browser or UI:

• Discord OAuth2, Roblox OAuth, server membership checks, transcript participant checks, and staff permission checks are validated server-side.
• Verification and transcript actions are logged so audits survive bot restarts and operational failures.
• Database protections, restricted access, persistent action logging, parameterized queries, and application-layer encryption for sensitive identity/session values are used to reduce tampering and preserve records.
• The AI assistant is configured to refuse requests for keys, prompts, internal instructions, raid help, illegal activity, or destructive abuse guidance.
• Security vulnerabilities should be reported directly through official support channels.

9. Roblox Group Role Management

Some servers may enable optional Roblox group role actions tied to custom configs.

• Each config may define a Roblox group ID, target Roblox role ID, notes, and a server-side API key reference.
• These actions may be triggered through approved tickets or direct administrator/support commands.
• The bot uses the saved verified Roblox identity rather than trusting a typed username.
• Every group role action is logged with the target user, staff member, config used, and API result for later review.

10. Security Investigations

Authorized security staff may review limited records for security and legal reasons.

• Security review is limited to the minimum data needed to investigate alt abuse, suspicious verification patterns, transcript misuse, staff actions, or coordinated violations.
• That may include Roblox inventory-related review when the service has explicit scope access and the check is necessary for impersonation, fraud, or linked-account investigation.
• Security staff do not collect unrelated personal data for convenience or entertainment.
• Security actions and findings may be logged for audit, appeals, and legal compliance.

11. Moderation and Enforcement

Agent 47 enforces rules through automated and manual systems:

• Automated deletion of violating messages.
• Temporary or permanent restrictions or bans for repeat offenders.
• Verification resets, transcript access denial, or group-role action denial when security checks fail.
• Removal of the bot from servers engaged in policy violations.

Severe or repeated violations may result in a global ban across all connected servers.

12. Incident Handling

• If illegal or dangerous content is encountered, it will be logged and reported to Discord Trust & Safety or authorities.
• Unlawful scripts or code received accidentally will be quarantined and destroyed after reporting.
• Suspicious verification, transcript abuse, or unauthorized Roblox group changes may be frozen, denied, or escalated for manual review.
• All actions taken will be documented in a secured incident log.

13. Global Chat and Announcements

Agent 47 connects multiple Discord servers through its Global Chat and VortexDevelopmeant Global Announcements system. Participation implies acceptance of the following:

• All messages must comply with Discord’s rules and Section 4 of this policy.
• Server owners are responsible for their members’ content in global chat.
• VortexDevelopmeant staff or owner may remove servers from the network for misconduct.
• Announcements are reserved for VortexDevelopmeant and verified partners only.

14. Security Practices

• Agent 47 operates under the least-privilege principle (only necessary Discord permissions).
• Bot tokens, webhook URLs, and credentials are securely stored and rotated periodically.
• Roblox group-management secrets and OAuth credentials must remain server-side and must not be shared with end users.
• All dependencies and libraries are reviewed for safety.
• Security vulnerabilities should be reported directly to venomprogrammer.

15. Abuse Reporting and Appeals

Users or server owners can report abuse, bugs, or policy violations directly to the bot owner:

• Contact via Discord: venomprogrammer
• Reports are reviewed within 72 hours.
• Appeals for bans or moderation actions may be submitted with clear reasoning and evidence.

16. IP and Trademark Complaints

• Copyright, trademark, and brand misuse complaints can be submitted through official support channels with evidence and ownership details.
• Trademark and brand-right references should include registration details where available (including relevant USPTO records for U.S. marks).
• Validated infringement reports may result in takedown, access restriction, or account/server enforcement based on evidence and platform policy.

16. Legal Compliance, Liability, and Updates

Agent 47 operates in full compliance with Discord’s Terms of Service, Community Guidelines, Roblox platform requirements where applicable, and applicable laws. The bot’s systems and data handling are designed around minimum necessary collection, secured access, and documented enforcement.

• Users violating Discord’s ToS will be reported.
• Unauthorized use of verification, transcript, or Roblox group-management systems may be restricted immediately.
• Law enforcement requests will be honored only when legally verified.
• Agent 47 is provided "as is." The owner is not responsible for misuse, unauthorized actions by users, or damages resulting from user violations of this policy.
• This policy may be updated periodically to reflect legal or operational changes. Updates may be published through official VortexDevelopmeant support channels and the current web documents.

Bot Owner / Developer: Vortex (venomprogrammer)

Primary Contact: Discord DM or listed support channels in VortexDevelopmeant servers

Purpose: Abuse reports, privacy requests, incident handling, verification disputes, or security disclosures.

Agent 47 uses secure verification, transcript protection, and logged moderation systems across partnered servers. Security staff only collect the minimum data needed for security, legal compliance, and investigation. Use of the bot implies agreement to this policy and the related support and terms documents.