BearifiedCo ("we", "us", or "our") operates OpenClaws at openclaws.biz. This Privacy Policy describes how we collect, use, and protect your information when you use our service.
1. Information We Collect
- Account information — When you sign in via Google or Twitter OAuth, we receive your name, email address, and profile image.
- Usage data — We collect anonymized analytics on feature usage, page views, and session duration to improve the service.
- AI provider API keys — If you supply API keys for third-party AI providers (e.g., OpenAI, Anthropic, Google), those keys are stored encrypted and used solely to route requests on your behalf.
2. How We Use Your Data
- Service operation — To authenticate you, provision your AI gateway, and execute requests against your connected integrations.
- Analytics — To understand usage patterns and improve product quality.
- Security — To detect abuse, prevent unauthorized access, and maintain service integrity.
3. Data Storage & Security
All sensitive data, including API keys, is encrypted at rest using pgcrypto within our Supabase PostgreSQL database. Compute infrastructure is hosted on Fly.io with per-user isolated gateways. We use industry-standard TLS encryption for all data in transit.
4. Third-Party Services
We use the following third-party services in operating OpenClaws:
- Stripe — Payment processing
- Google & Twitter — OAuth authentication
- Fly.io — Compute and gateway infrastructure
- Sentry — Error tracking and monitoring
- PostHog — Product analytics
Each third-party service operates under its own privacy policy. We encourage you to review those policies independently.
5. Data Retention & Deletion
- You can delete your stored API keys at any time from your dashboard settings.
- Requesting account deletion will permanently remove all associated data, including API keys, usage history, and profile information.
- We retain anonymized, aggregated analytics data that cannot be linked back to individual users.