Trust & data
Last updated: 15 July 2026
Saucefox helps Twitch creators deliver private perks without turning a resource drop into a custom software project. This page explains the viewer check in plain language.
What a viewer check can see
- The minimum Twitch account reference needed to perform the selected check.
- Whether the account follows the creator, whether an eligible subscription is active, or whether the relevant Channel Points reward was redeemed.
- A yes/no or rule-specific outcome used to issue access.
What it does not request or do
- It does not request the viewer's Twitch email.
- It cannot follow, unfollow, subscribe, cancel a subscription, chat or modify the viewer's account.
- It cannot redeem or spend Channel Points for the viewer.
- It does not sell viewer data or add third-party advertising trackers to vault pages.
How viewer identity is protected
The Twitch viewer identifier is converted into a salted, non-reversible hash before persistence. Viewer access tokens are used only in the verification request and are not stored. Entitlements are scoped to the relevant creator and rule.
How files are protected
Vault files are stored in a private Cloudflare R2 bucket. Saucefox checks entitlement server-side and returns a signed link that expires after ten minutes. A copied signed link does not remain valid indefinitely.
What creators can see
Creators see aggregate funnel activity, conservative attributed conversions, vault performance and leads voluntarily submitted through an enabled email gate. They do not receive a list of Twitch viewers from Saucefox's follower or subscriber verification.
Connected creator accounts
Creator permissions are separate from viewer verification. Creator tokens are encrypted at rest and used for features the creator enables, such as channel connection and Channel Points configuration. The creator can disconnect Twitch from Saucefox.
Need help or deletion?
Contact support@saucefox.com. Include the vault link and enough context to locate the relevant record without sending passwords or OAuth tokens.