Atheist Front Privacy Policy
1. SSL Encryption & Network Security
Your connection to the Atheist Front website is fully encrypted and secured using industry-standard protocols.
- HTTPS/SSL Encryption: All traffic between your browser and our servers is encrypted via TLS/SSL (TLSv1.2 , TLSv1.3, ZeroSSL GmbH, AT, Valid Certificate - ssl.org, A-rating - ssllabs.com). This means that if you are authenticating via Discord or sending appeal requests, your data cannot be intercepted or read by third parties.
- Localtonet Proxy: We utilize Localtonet to securely tunnel web traffic to our internal application servers. This acts as a reverse proxy, masking our internal network architecture and preventing direct exposure to malicious attacks (Built-in WAF, End-to-End Encryption, DDoS Protection, and more).
- Content Security Policy (CSP): Our web server implements strict HTTP response headers designed to prevent Cross-Site Scripting (XSS) and clickjacking attacks.
2. Data Collection & Privacy
We do not sell, rent, or unnecessarily harvest your personal data. We only collect the bare minimum required for moderation and community features to function.
What we collect:
- Discord User IDs: We store Discord IDs to track server economy (Shop balances, inventory), leveling progression, and moderation records (bans, strikes).
- Confessions & Reports: When you submit a confession or report through our Discord bot, the backend securely logs your User ID strictly for moderation accountability (e.g. to prevent abuse of the anonymous systems). This data is strictly accessible only by high-level administrators and is never exposed to the public.
- AI Interaction Data: Atom AI learns from community interactions. It stores behavioral patterns and conversation histories to build "profiles" of users. This data is kept locally and is solely used to generate conversational responses.
3. Bot & Website Architecture
The Atheist Front ecosystem is built on a highly optimized, asynchronous Python architecture. Here is a brief technical overview of how our systems operate:
- Aiohttp Web Server: Our entire website, including the Control Panel and Appeals
system, runs on an embedded
aiohttpasynchronous web server directly integrated with the Discord Bot process. - Discord.py: The bot interacts with the Discord API using the
discord.pylibrary, handling thousands of events (messages, voice states, moderation logs) concurrently. - Local JSON Storage: To ensure lightning-fast read/write speeds, most non-critical data (economy, AI moods, inventories) is stored in local, strictly-formatted JSON files rather than heavy external databases.
4. Third-Party Libraries & Dependencies
Our project relies on several libraries that intend to protect your privacy:
- ssl: For secure TLS/SSSL connections and certifications.
- hashlib & hmac: For secure hashing signatures (preventing XSS & CSRF attacks).
- aiohttp & httpx: For authorizing Transport Layer Security (TLS).
- uuid: For secure cryptographically of file names (preventing file guessing attacks).
- Pillow: For the re-encoding and sanitizing of attachment files (preventing file-based exploits).
- psutil: For the prevention of denial of service attacks (DDoS).
- localtonet: For secure tunnel web traffic transportation our internal application servers, built-in WAF, End-to-End Encryption, DDoS Protection.
- ItsDangerous: For cryptographically signing and securing session cookies and OAuth tokens.
🛡️ Note on AI Services: We use external API providers (such as DeepSeek and Moondream) to power Atom AI. While we send conversation context to these providers to generate responses, we anonymize inputs where possible and adhere to the API providers' strict enterprise privacy guidelines.
5. Access & Deletion
If you wish to have your data (economy balance, AI profile, or moderation records) purged from our systems, please contact a server Administrator or open a ticket in the Discord server. We will comply with all reasonable data deletion requests within a timely manner.