privacy policy
Last updated: 10 February 2026
Effective date: 10 February 2026
This Privacy Policy explains how frdg.work (“frdg.work”, “we”, “us”, or “our”) collects, uses, and protects information when you use components.kitchen (the “Service”, the “Kitchen”), a tool that lets users build and send Discord messages via custom webhooks and custom bots, including scheduled, sticky, automated, and manually triggered messages.
If you do not agree with this Privacy Policy, you should not use the Service.
1. Data Controller and Contact
The sole first-party Data Controller is frdg.work.
If you have any questions about this Privacy Policy or your data protection rights, you can contact:
•
Email: help@frdg.email
If you are in the European Economic Area (EEA), frdg.work is the controller of your personal data under the EU General Data Protection Regulation (GDPR).
2. Scope of this Policy
This Privacy Policy applies to:
•
The components.kitchen web application and related subdomains
•
Any Discord bots, webhooks, or integrations provided by frdg.work for use with the Service
•
Support interactions (email, Discord, or other channels) relating to the Service
It does not apply to:
•
Your use of Discord generally (governed by Discord’s own terms and privacy policy)
•
Third‑party sites, services, or bots that are not operated by frdg.work
3. Information We Collect
3.1 Information You Provide Directly
When you use the Service, you may provide:
Account and Identity Data
•
Discord user ID
•
Discord username
•
Avatar URL
•
What servers you’re in
Configuration Data
•
Connected Discord server (guild) IDs and names
•
Channel IDs and names
•
Webhook URLs you add to the Service
•
Bot application IDs and metadata
Message and Template Data
•
Message templates and configurations created with the message builder
•
Components V2 layouts (buttons, selects, modals, etc.)
•
Scheduling, trigger rules, and automation settings
Support and Communication Data
•
Email address (if you contact us or opt into updates)
•
Contents of support requests, bug reports, or feedback
You may choose not to provide certain information, but this may limit your ability to use some or all features of the Service.
3.2 Information Collected Automatically
When you access or use the Service, we may automatically collect:
Technical and Usage Data
•
IP address
•
Browser type, device type, operating system
•
Referring/exit pages and URLs
•
Date/time of visits, pages viewed, and time spent on pages
•
Interaction logs with the Service (e.g., feature usage, errors)
Discord Integration Data
•
Guild IDs, channel IDs, and role IDs involved in your configurations
•
Internal logs of messages sent via your configured webhooks/bots (including timestamps, success/failure, and error messages)
•
Limited message content or metadata where necessary to:
-
Build and preview messages
-
Execute schedules and triggers
-
Diagnose delivery problems or abuse
3.3 Payment and Billing Data
If you subscribe to a paid plan (Stainless or Cast Iron):
•
Payments are processed by Stripe
•
The processor may collect:
-
Name
-
Billing address
-
Partial payment method details
-
Transaction identifiers
We do not store your full payment card number on our servers. We receive only very limited billing information and transaction metadata from the payment processor.
4. How We Use Your Information (Purposes and Legal Bases)
Under GDPR and similar laws, we must have a lawful basis for processing your data. We use your information for:
4.1 Providing and Operating the Service
Legal basis: Contract performance; Legitimate interests
•
Authenticating you via your Discord account
•
Creating and managing your Service account and subscription
•
Storing your message templates and configurations
•
Sending messages to Discord via your webhooks/bots according to your settings
•
Executing scheduled, sticky, automated, and manual triggers
4.2 Security, Abuse Prevention, and Integrity
Legal basis: Legitimate interests; Legal obligations
•
Detecting and preventing abuse, spam, or malicious activity
•
Monitoring for suspicious or abnormal usage patterns
•
Protecting the security and stability of our infrastructure
•
Enforcing our Terms & Conditions and Discord’s policies
4.3 Analytics and Service Improvement
Legal basis: Legitimate interests; Consent (where required for cookies/analytics)
•
Understanding how features are used to improve usability and reliability
•
Debugging errors and performance issues
•
Aggregating and anonymizing usage statistics (e.g., number of messages sent, feature adoption)
4.4 Billing and Account Management
Legal basis: Contract performance; Legal obligations
•
Processing subscription payments
•
Managing upgrades/downgrades and invoices
•
Communicating about plan changes, billing, or account issues
4.5 Communication and Support
Legal basis: Legitimate interests; Consent (for marketing)
•
Legitimate interests; Consent (for marketing)
•
Sending important service‑related notices (e.g., policy changes, security alerts)
•
With your explicit consent, sending occasional product updates or announcements (you can opt out at any time)
5. Data Retention
We keep personal data only as long as necessary for the purposes described above, unless a longer retention period is required by law.
In general:
•
Operational and log data (including most message logs and technical logs) is retained for up to 120 days from the time of collection, then deleted or anonymized.
•
Configuration data (templates, schedules, automation rules) is stored for as long as your account is active, or until you delete it.
•
Account and billing data may be retained longer (typically up to several years) where required by tax, accounting, or legal obligations.
•
Support communications may be retained as long as needed to maintain a record of interactions, then deleted or anonymized.
If you request deletion of your account, we will delete or anonymize your personal data within a reasonable period, subject to any data we must retain for legal, security, or billing record purposes.
6. How We Share Your Information
We do not sell your personal data.
We may share your information with:
6.1 Service Providers (Processors)
We use third‑party vendors to help operate the Service, including:
•
Hosting and infrastructure providers
•
Database and logging services
•
Payment processors
•
Email and communication tools
•
Error monitoring and analytics tools
These providers may process personal data on our behalf and only under contractual obligations to:
•
Use the data solely to provide services to frdg.work
•
Protect the data with appropriate security measures
•
Comply with applicable privacy laws
6.2 Discord
Because the Service is built around Discord:
•
Your configurations instruct us to send certain content to Discord via webhooks or bots.
•
Discord receives that content under Discord’s own terms and privacy policy.
6.3 Legal and Safety
We may disclose information if we believe in good faith that it is reasonably necessary to:
•
Comply with applicable laws, regulations, legal processes, or governmental requests
•
Enforce our Terms & Conditions or investigate potential violations
•
Detect, prevent, or address fraud, security, or technical issues
•
Protect the rights, property, or safety of frdg.work, our users, or the public
6.4 Business Transfers
If frdg.work is involved in a merger, acquisition, restructuring, or sale of assets, your information may be transferred as part of that transaction, subject to this Privacy Policy.
7. International Data Transfers
Our servers or service providers may be located in countries outside your own, including outside the European Economic Area (EEA).
When transferring personal data internationally, we take appropriate safeguards such as:
•
Standard Contractual Clauses (SCCs) approved by the European Commission
•
Data Processing Agreements with our processors
•
Technical measures like encryption and access control
8. Security
We implement reasonable technical and organizational measures to protect your data, including:
•
Encrypted connections (TLS) between your browser and the Service
•
Access controls and authentication for internal tools
•
Regular updates and security patches
•
Principle of least privilege for access to production data
However, no method of transmission or storage is completely secure. You are responsible for:
•
Keeping your Discord account secure
•
Protecting bot tokens and webhook URLs you configure
•
Not sharing sensitive credentials with others
If you suspect a data breach involving the Service, contact us immediately at privacy@frdg.email.
9. Your Rights (GDPR and Similar Laws)
If you are located in the EEA, UK, or another region with similar data protection laws, you may have the following rights, subject to limitations:
•
Right of Access: Request a copy of personal data we hold about you
•
Right to Rectification: Request corrections to inaccurate or incomplete data
•
Right to Erasure: Request deletion of your personal data when it is no longer necessary or when you withdraw consent (where applicable)
•
Right to Restrict Processing: Request that we restrict how we use your data in certain circumstances
•
Right to Data Portability: Request a copy of your data in a structured, commonly used format
•
Right to Object: Object to processing based on legitimate interests or direct marketing
•
Right to Withdraw Consent: Withdraw consent at any time where we rely on consent as the legal basis
To exercise any of these rights, contact:
We may need to verify your identity before fulfilling your request. You also have the right to lodge a complaint with your local data protection authority.
10. Cookies and Similar Technologies
The Service may use cookies or similar technologies to:
•
Maintain your session and authentication
•
Remember your preferences
•
Perform basic analytics on how the Service is used
Where required by law, you will be asked to provide consent for non‑essential cookies (such as analytics or marketing cookies). You can usually control or delete cookies through your browser settings.
If you block cookies, some features of the Service may not function properly.
11. Children’s Privacy
The Service is not directed to children under the age required by Discord or applicable law (typically 13 or older, depending on jurisdiction). We do not knowingly collect personal data from children under this age.
If you believe we have collected personal data from a child, please contact us at privacy@frdg.email so we can take appropriate action.
12. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will:
•
Update the "Last Updated" date at the top of this page
•
Where appropriate, notify you via the Service, email, or other channels
Your continued use of the Service after any changes become effective constitutes acceptance of the updated Privacy Policy.
20. Contact
If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, you can contact:
•
Email: privacy@frdg.email
•
Discord: discord.gg/KbcJCzS8zh
