MCP Telegram

Privacy Policy

Last updated: June 2, 2026

Overview

MCP Telegram (mcp-telegram.com) is a hosted connector that lets AI assistants (Claude, ChatGPT) access your Telegram account via the MCP protocol. Your privacy is important to us. This policy explains what data we collect, how we use it, and your rights.

What we collect

• Telegram session data — An encrypted session token is stored on our server so you stay connected between requests. It is deleted when you disconnect.
• Usage logs — We log which MCP tools are called (e.g. "list-chats", "read-messages"), the timestamp, and your Telegram user ID. We do not log message content, chat names, or any personal data from your chats.
• OAuth tokens — Temporary tokens for authenticating your AI client (Claude/ChatGPT) to our server. Stored in memory, not persisted.

Website analytics

Our public website (not the MCP connector itself) uses Yandex.Metrika and Google Analytics to understand how visitors use the site. These tools set cookies and may record anonymized usage. They run only after you accept the consent banner — if you decline, no analytics scripts load and no cookies are set.

• What it covers — Only the marketing/documentation website. Your Telegram data and MCP requests are never sent to any analytics service.
• Yandex.Metrika — Includes Webvisor (anonymized session replay of page interactions) and click maps. Form fields are masked by default; our pages contain no input forms with personal data.
• Opt out — Decline the consent banner, clear the mcpt-consent cookie/localStorage to be asked again, or block analytics domains in your browser.

What we do NOT collect

• Message content, media files, or chat history
• Phone numbers, contact lists, or profile data
• Passwords or Telegram 2FA codes

How your data flows

When you ask Claude or ChatGPT to read your Telegram messages, the AI client sends a request to our server. Our server fetches data from Telegram's API using your session, returns it to the AI client, and does not retain it. Message content passes through our server but is not stored or logged.

Data retention

• Session tokens — Deleted when you disconnect or after inactivity.
• Usage logs — Retained for analytics and rate limiting. No personal content.
• OAuth data — In-memory only, cleared on server restart.

Third parties

We do not sell, share, or transfer your Telegram data to third parties. Your Telegram data is only accessed via the official Telegram MTProto API on your behalf. The AI client (Anthropic/OpenAI) receives your Telegram data as part of the conversation — their privacy policies apply to that processing. Website analytics providers (Yandex, Google) receive only anonymized site-usage data, never your Telegram data.

Security

All connections use TLS (HTTPS). Telegram sessions are encrypted. The server runs on dedicated infrastructure with access restricted to the operator. We follow security best practices for session management and credential storage.

Your rights

• Disconnect anytime — Remove the connector in Claude/ChatGPT settings. Your session is deleted immediately.
• Data deletion — Contact us to request full deletion of any stored data.
• Self-host option — Use the open-source version to run everything on your own machine with zero data leaving your device.

Open source

The server is open source under the MIT license at github.com/mcp-telegram/mcp-telegram-cloud. You can inspect exactly what data is accessed and how.

Contact

Questions about this policy? Reach out via GitHub Issues