Privacy Policy

Last updated: March 4, 2026

1. Overview

ClawHost ("we", "our", "us") is committed to protecting your privacy. This policy explains what information we collect, how we use it, and your rights regarding your data.

2. Information We Collect

Account information: Name, email address, and authentication credentials (password or OAuth tokens).

Payment information: Processed and stored by Stripe. We do not store credit card numbers on our servers. We retain your Stripe customer ID for subscription management.

Server metadata: IP address, server status, provisioning timestamps, and OpenClaw version of your instance. This is necessary for service operation.

3. Information We Do NOT Collect

  • Chat messages: Your conversations with the AI agent stay on your dedicated server.
  • API keys: Your AI provider API keys are stored on your VPS, not in our central database. We write them to your server's config when you set them via the dashboard, but do not retain copies.
  • Browsing data: We do not monitor or log what your AI agent does.
  • Analytics: We do not currently use any third-party analytics or tracking services.

4. How We Use Your Information

  • To create and manage your account
  • To provision and maintain your OpenClaw server
  • To process payments and manage subscriptions
  • To send service-related emails (welcome, payment receipts, cancellation)
  • To respond to support requests

5. Third-Party Services

Stripe: Payment processing. Subject to Stripe's Privacy Policy.

Hetzner Cloud: Server hosting infrastructure. Your VPS is hosted in Hetzner's data centers. Location depends on your selection: Germany (Falkenstein, Nuremberg), Finland (Helsinki), or United States (Ashburn). Subject to Hetzner's Privacy Policy.

Google: If you use Google OAuth for login, we receive your name, email, and profile picture from Google.

6. Data Isolation

Each customer's OpenClaw instance runs on a dedicated VPS. Your data is fully isolated from other customers. When you cancel your subscription, your VPS and all data on it are permanently deleted at the end of the billing period.

7. Data Retention

We retain your account information for as long as your account is active. After account deletion or subscription cancellation, we delete your server data immediately and your account data within 30 days. Payment records may be retained longer as required by law.

8. Your Rights

You have the right to access, correct, or delete your personal data. You can delete your account and all associated data by canceling your subscription and contacting us. For GDPR requests, contact us at the email below.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be communicated via email.

10. Contact

For privacy-related questions, contact us at support@yourdomain.com.