← Back to Home
1. Introduction
ClawBook Technologies ("ClawBook", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our website and services.
By using ClawBook, you consent to the data practices described in this policy.
2. Information We Collect
2.1 Information You Provide
| Data Type |
Purpose |
| Email Address |
Account creation, communication, support |
| Name |
Account identification, invoicing |
| Billing Address |
Payment processing, tax compliance |
| Payment Information |
Processed by Stripe/BTCPay (we don't store card numbers) |
| Support Communications |
Providing assistance, improving service |
2.2 Information Collected Automatically
| Data Type |
Purpose |
| IP Address |
Security, abuse prevention, analytics |
| Browser Type |
Website optimization |
| Access Times |
Analytics, security monitoring |
| Pages Visited |
Website improvement |
| Server Logs |
Infrastructure monitoring, security |
3. Information We Do NOT Collect
Your Privacy is Protected: As a hosting provider, we do NOT have access to:
- Your AI conversations or prompts
- Your OpenClaw data or configurations
- Your third-party API keys (OpenAI, Anthropic, etc.)
- Content of files stored on your VPS
- Network traffic content (encrypted end-to-end)
Your VPS is your private environment. We only access server-level metrics (CPU, RAM, disk usage) for health monitoring, never your application data.
4. How We Use Your Information
We use collected information to:
- Provide Services: Create accounts, process payments, deliver VPS hosting
- Communicate: Send service updates, security alerts, support responses
- Improve: Analyze usage patterns to enhance our services
- Secure: Detect and prevent fraud, abuse, and security threats
- Comply: Meet legal obligations and respond to lawful requests
We do NOT sell your personal information to third parties.
5. Data Storage & Security
5.1 Where We Store Data
- Customer account data is stored on encrypted servers in the United States
- Your VPS data is stored in the datacenter you selected during signup
- Backups are stored in geographically separate locations for redundancy
5.2 Security Measures
- All data encrypted at rest (AES-256) and in transit (TLS 1.3)
- Two-factor authentication available for all accounts
- Regular security audits and penetration testing
- Strict employee access controls
- 24/7 infrastructure monitoring
6. Third-Party Services
We share limited data with these service providers:
| Provider |
Purpose |
Data Shared |
| Stripe |
Payment processing |
Billing info, email |
| BTCPay Server |
Cryptocurrency payments |
Transaction data |
| OneProvider |
VPS infrastructure |
Server metadata only |
| Plausible Analytics |
Privacy-focused analytics |
Anonymized usage data |
| Postmark |
Transactional emails |
Email address |
All third-party providers are bound by data processing agreements and privacy standards.
7. Cookies
We use minimal, essential cookies:
- Session Cookies: Keep you logged in (expires on browser close)
- Security Cookies: CSRF protection, fraud prevention
- Preference Cookies: Remember your settings (optional)
We do NOT use tracking cookies or third-party advertising cookies.
8. Data Retention
- Account Data: Retained while your account is active
- Billing Records: Retained for 7 years (tax/legal requirements)
- Server Logs: Retained for 90 days
- Support Tickets: Retained for 2 years after resolution
- VPS Data: Deleted within 30 days of account termination
9. Your Rights (GDPR & CCPA)
Depending on your location, you may have these rights:
9.1 For All Users
- Access: Request a copy of your personal data
- Correction: Update inaccurate information
- Deletion: Request deletion of your data ("right to be forgotten")
- Export: Receive your data in a portable format
9.2 For EU/EEA Users (GDPR)
- Restrict Processing: Limit how we use your data
- Object: Object to certain processing activities
- Withdraw Consent: Withdraw previously given consent
- Lodge Complaint: File a complaint with your local data protection authority
9.3 For California Users (CCPA)
- Know: Request disclosure of data collected
- Delete: Request deletion of personal information
- Opt-Out: Opt-out of sale of personal information (we don't sell data)
- Non-Discrimination: Equal service regardless of privacy choices
To exercise any of these rights, contact us at privacy@clawbook.io
10. Data Deletion
When you cancel your account:
- You have 7 days to download your data
- VPS instances are terminated immediately
- Backups are deleted within 30 days
- Account data is anonymized within 90 days
- Billing records retained per legal requirements
For immediate data deletion requests, contact privacy@clawbook.io
11. International Data Transfers
If you are located outside the United States, your data may be transferred to and processed in the US. We ensure appropriate safeguards through:
- Standard Contractual Clauses (SCCs) for EU data transfers
- Data processing agreements with all vendors
- Privacy Shield principles (where applicable)
12. Children's Privacy
ClawBook is not intended for users under 18 years of age. We do not knowingly collect information from children. If you believe we have collected data from a minor, please contact us immediately.
13. Changes to This Policy
We may update this Privacy Policy periodically. We will notify you of material changes via:
- Email notification to your registered address
- Prominent notice on our website
- Update to the "Last Updated" date above
Continued use after changes constitutes acceptance of the updated policy.
14. Contact Us
For privacy-related questions or requests:
- Email: privacy@clawbook.io
- Data Protection Officer: dpo@clawbook.io
- General Support: support@clawbook.io
We aim to respond to all privacy requests within 30 days.