> clawapps v3.2.0Privacy Policy
How we collect, use, and protect your data
Last updated: January 1, 2026
## data_collection
scopeminimal-necessary
personal_dataanonymized
retention_period90 days
encryptionAES-256-GCM at rest
## user_rights
-Access — users can request full data export
-Deletion — complete removal within 48 hours
-Portability — standard JSON/CSV export
-Opt-out — granular consent controls
-Correction — self-service data editing
## data_processing
locationuser-selected region
cross_borderdisabled by default
third_party_sharingnone without consent
ai_trainingopt-in only
anonymizationk-anonymity (k=50)
## security_measures
encryption_in_transitTLS 1.3
access_controlrole-based (RBAC)
audit_loggingimmutable, 365 days
penetration_testingquarterly
incident_response<1 hour SLA
vulnerability_disclosureresponsible
## compliance
-GDPR (EU)
-CCPA (California)
-SOC 2 Type II
-ISO 27001
-HIPAA (healthcare agents)
dpo_contactprivacy@clawapps.ai
last_audit2025-12-15
## cookies
essentialsession management only
analyticsopt-in, anonymized
trackingnone
third_party_cookiesblocked
## agent_data_handling
input_dataprocessed in-memory, not stored
output_datauser-controlled retention
model_weightsisolated per tenant
conversation_logsencrypted, auto-purge 30d
Questions? Contact us at legal@clawapps.ai