Privacy

What we collect, why, and how to make us forget

Plain language. No legal padding. If anything below is unclear, email support@tgplus.io.

Who runs this

This Privacy Policy applies to TGPlus (the website at tgplus.io and the @TGplus_io_bot Telegram bot). The data controller for the purposes of GDPR / similar laws is the TGPlus team. The only contact email for privacy matters is support@tgplus.io.

What we collect

  • Telegram user ID — the numeric ID Telegram exposes to bots. We use it to know which Telegram account paid, to send the invite link, and to remove the user when their subscription expires. We do not collect phone numbers.
  • Telegram username and display name — only if you have one set publicly. Used in support and admin dashboards.
  • Wallet addresses — the address you (as a member) send USDT from, and the address the group owner has registered to receive funds. These are already public on-chain.
  • Transaction hashes and on-chain payment metadata — used to verify payments and reconcile renewals. Already public on-chain.
  • Group metadata — Telegram group ID, owner ID, subscription price, plan duration. Used to run the bot.
  • Basic web logs — IP address, user agent, referrer, and pages viewed when you visit tgplus.io. Used for security and aggregate analytics.

We do not collect Telegram message content, contacts, KYC documents, government IDs, or credit card details. TGPlus is non-custodial — we never hold your funds, so we never need that kind of identity data.

Why we use it

  • To deliver the service you signed up for (verify payment, send invite, remove on expiry).
  • To support group owners managing their members and revenue.
  • To prevent abuse, fraud, and chargebacks.
  • To keep aggregate stats on usage so we can improve the product.

We do not sell your data. We do not run third-party advertising trackers. We do not share data with anyone except the infrastructure providers strictly required to run the service (hosting, database, error monitoring, on-chain RPC providers).

Where it lives

Application data is stored in our managed Postgres database (Supabase). Web logs and analytics live in standard hosting provider infrastructure. On-chain data exists wherever public blockchain explorers exist — we cannot delete that, and neither can anyone else.

How long we keep it

Active subscription data is kept while your subscription is active and for a reasonable window after for renewal and accounting. Group-owner business data (revenue, member history) is kept for as long as the group exists on TGPlus. We delete personal data on request — see below.

Your rights

You can ask us to:

  • Show you what we have on you.
  • Correct anything that’s wrong.
  • Delete it (except where we’re legally required to keep it, or where it’s on-chain and we couldn’t delete it if we wanted to).
  • Export it in a portable format.
  • Object to specific uses.

Email support@tgplus.io from the address associated with your account, or include enough info (Telegram user ID, group ID, wallet address) for us to identify you. We respond within 30 days, usually faster.

Cookies and analytics

We use a small set of strictly functional cookies (session, language preference) and a privacy-respecting analytics script (Ahrefs Web Analytics) to understand aggregate site usage. We do not run third-party advertising cookies and we do not sell traffic data.

Changes

If we change this policy materially, we’ll update this page and, for changes that affect existing users, post a notice in our Telegram channel and on X. The current version always lives at tgplus.io/privacy.

One contact for everything privacy-related: support@tgplus.io.
Privacy — TGPlus