To avoid confusion of what data is and isn't personal or end user data within GDPR description or within the Discord ToS for developers, here is a breakdown of all data we have on you, including both data that classifies as personal or end user data.
The information we have access to contains your basic account information the same data that any user of Discord can see, in addition we can see your list of servers and what permissions you have in those servers. We lose the access to your server list and permissions in those servers where Chuu’topia Bot is not present in the same servers as you.
We also lose the access to your nickname; server join timestamp and roles when either you leave a server or Chuu’topia Bot gets removed from a server. We lose the access to basic information (username, discrim, avatar hash) when both apply.
The information we store in our database or logs is limited to your user ID, username/discriminator and when you used a Chuu’topia Bot command.
The information we store in the application cache is limited to the events Discord sends to the bot in order to process them, which may temporarily include user ids, names, and message content. They aren't persisted to our database unless explicitly requested (e.g. when adding a command). This info is kept in memory until that part of the bot restarts, or it’s dropped from the cache, whichever comes first.
This info is fetched when we need it or is send together with events we receive from discord, this is kept in memory until that part of the bot restarts, or it’s dropped from the cache, whichever comes first.
Processing data messages you send in Discord and other events you create are NOT STORED, we receive the events and process them where needed to provide the services you requested, this data is not stored for any longer than is absolutely necessary.