PRIVATCLAW
← BACK

Privacy Policy

Last updated: February 7, 2026

1. Introduction

PrivatClaw ("we", "us", "our") operates the privatclaw.com website and the PrivatClaw SaaS platform. This Privacy Policy explains how we collect, use, and protect your personal information when you use our services.

2. Information We Collect

We collect the following types of information:

  • Account Information: Name and email address provided through Google OAuth sign-in.
  • Bot Configuration: Telegram bot tokens and AI provider preferences you provide when setting up your instance.
  • Usage Data: Token usage statistics, model usage, and API request metadata for billing and analytics purposes.
  • Payment Information: Billing details processed securely through Stripe. We do not store credit card numbers on our servers.

3. How We Use Your Information

  • To create and manage your account and bot instances.
  • To process payments and manage your subscription.
  • To provide, maintain, and improve our services.
  • To communicate with you about service updates or issues.

4. Data Security

All sensitive credentials (Telegram bot tokens, API keys, gateway passwords) are encrypted using AES-256-GCM before storage. Your data is stored in AWS infrastructure with encryption at rest. We use industry-standard security measures to protect your information.

5. Message Privacy

Messages sent through your Telegram bot are processed directly by the AI provider you select (Anthropic, OpenAI, Moonshot, or ZAI). We do not store, read, or log the content of your conversations. Each bot instance runs in an isolated container.

6. Third-Party Services

We use the following third-party services:

  • Google OAuth: For authentication.
  • Stripe: For payment processing.
  • Fly.io: For container hosting.
  • AWS: For backend infrastructure and data storage.
  • AI Providers (Anthropic, OpenAI, Moonshot, ZAI): For processing AI requests. Each provider has its own privacy policy.

7. Data Retention

Your account data is retained as long as your account is active. When you delete your instance, we perform a soft delete for audit purposes but remove all encrypted credentials. You may request full account deletion by contacting us.

8. Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and data.
  • Export your data in a portable format.

9. Contact

For any privacy-related questions or requests, please contact us at privacy@privatclaw.com.