Privacy Policy

Last Updated: February 13, 2026

1. Information We Collect

We collect the following types of information:

  • Account Information: Email address, name, and authentication credentials
  • Payment Information: Processed and stored by Stripe (we do not store payment card details)
  • Instance Configuration: Subdomain names, Docker settings, environment variables (encrypted)
  • Usage Data: Instance logs, diagnostics, status information, and activity metrics

2. How We Use Your Information

We use your information to:

  • Provide and maintain the AgentClaw service
  • Process payments and manage subscriptions
  • Send transactional emails (account notifications, billing updates)
  • Improve our service and develop new features
  • Comply with legal obligations and enforce our terms
  • Provide customer support and respond to inquiries

3. Data Storage and Security

Your data is stored securely on AWS (Amazon Web Services) infrastructure with the following protections:

  • Environment variables (including API keys) are encrypted at rest using AES-256-GCM encryption
  • SSH key-based authentication for instance access
  • Database encryption and regular backups
  • Network isolation and firewall protection
  • Regular security audits and vulnerability assessments

While we implement industry-standard security measures, no system is 100% secure. You are responsible for keeping your account credentials safe.

4. Third-Party Services

We use the following third-party services:

  • Stripe: Payment processing (subject to Stripe's Privacy Policy)
  • AWS (Amazon Web Services): Infrastructure hosting and data storage
  • OneSignal: Push notifications (optional feature)
  • Google OAuth: Optional authentication method

These services have their own privacy policies and data handling practices.

5. Cookies and Tracking

We use cookies for:

  • Essential cookies: Required for authentication and session management
  • Functional cookies: Remember your preferences and settings

We do not use advertising cookies or track you across other websites. You can disable cookies in your browser settings, but this may affect service functionality.

6. Your Data Rights

Depending on your location, you may have the following rights under GDPR, CCPA, or similar regulations:

  • Right to Access: Request a copy of your personal data
  • Right to Delete: Request deletion of your account and data
  • Right to Export: Receive your data in a portable format
  • Right to Correct: Update inaccurate information
  • Right to Object: Object to certain data processing activities

To exercise these rights, contact us at support@agentclaw.app.

7. Data Retention

We retain your data as follows:

  • Account data: Until you delete your account
  • Instance configuration: 30 days after instance deletion
  • Logs and diagnostics: 30 days from creation
  • Database backups: 90 days
  • Billing records: 7 years for tax compliance

8. Children's Privacy

AgentClaw is not intended for users under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, contact us immediately.

9. International Data Transfers

Your data may be processed in countries outside your residence. For EU users, we use standard contractual clauses approved by the European Commission to ensure adequate protection.

10. Changes to Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email at least 30 days before taking effect. Continued use of the service after changes implies acceptance.

11. Contact Information

For privacy-related questions or to exercise your data rights, contact us at: