Privacy Policy

Effective Date: April 1, 2026
Last Updated: April 1, 2026

This Privacy Policy describes how Clawdoes (“we,” “us,” or “our”) collects, uses, and protects your information when you use our website and its related services (collectively, the “Service”). By using our Service, you agree to the collection and use of information in accordance with this policy.

1. Introduction

Clawdoes respects your privacy and is committed to protecting your personal data. Our Service deploys AI assistants on dedicated servers, ensuring your conversations remain private and are never shared with other users.

2. Information We Collect

We collect the following types of information:

  • Account Information: Email address, name, and Google account ID when you sign in with Google. Our authentication is managed by Clerk.
  • Payment Information: Processed securely by Stripe. We do not store your full credit card details.
  • Channel Configuration: Your Telegram bot token and user ID (for Telegram), or your assigned WhatsApp phone number (for WhatsApp) to connect your assistant.
  • Usage Data: Server status, model preferences, and service usage metrics.

3. How We Use Your Information

We use your information to:

  • Provide and maintain the Service
  • Process payments and manage subscriptions
  • Provision and configure your AI assistant
  • Send service-related communications
  • Improve and optimize the Service
  • Detect and prevent fraud or abuse

4. Data Storage and Security

Your data is stored securely using industry-standard encryption. We use:

  • PostgreSQL database for account and server data
  • Cloud infrastructure for your dedicated AI server
  • Stripe for payment processing (PCI-DSS compliant)
  • Cloudflare for DDoS protection and SSL

Your Telegram bot token, WhatsApp phone number, and API keys are encrypted at rest and only accessed when configuring your server.

5. AI Conversations

Messages between you and your AI assistant are processed by third-party AI providers (OpenRouter, Anthropic, OpenAI, Google). We do not store or have access to your conversation content. Please review the privacy policies of the AI provider associated with your chosen model.

6. Third-Party Services

We integrate with the following third-party services:

  • Google (authentication, Drive, Calendar)
  • Stripe (payments)
  • Cloud providers (infrastructure)
  • OpenRouter / Anthropic / OpenAI / Google (AI models)
  • Telegram (messaging platform)
  • Twilio (WhatsApp messaging infrastructure)

Each service has its own privacy policy governing how they handle your data.

7. Google User Data

Clawdoes accesses Google user data through the following scopes:

  • Sign-in (email, profile): Your email address, name, and Google account ID are used solely for authentication and account management.
  • Google Drive (drive.file): If you connect Google Drive, your assistant can list, read, create, and update files that it created or that you explicitly open with it. It cannot access your entire Drive.
  • Google Calendar (calendar.events): If you connect Google Calendar, your assistant can list, read, create, update, and delete events on your behalf.

Who we share Google user data with

  • Your dedicated server: Google OAuth tokens are encrypted and transferred to your personal server so your assistant can access Drive and Calendar on your behalf. Each user has their own isolated server.
  • AI model providers: When your assistant reads a Drive file or Calendar event to answer your question, that content is sent to the AI model provider you selected as part of the conversation context.

Who we do NOT share Google user data with

  • We do not sell, rent, or trade your Google user data to any third party.
  • We do not use your Google user data for advertising or marketing purposes.
  • We do not share your Google user data with data brokers or analytics providers.
  • No human at Clawdoes accesses your Drive files, Calendar events, or OAuth tokens unless you explicitly grant temporary support access for troubleshooting.

Data retention for Google data

Google OAuth tokens are stored encrypted on your dedicated server. If you disconnect Drive or Calendar, the tokens are immediately revoked and deleted. If you cancel your subscription, your entire server (including all Google tokens and cached data) is deleted within 30 days.

8. Data Retention

We retain your account data for as long as your account is active. When you delete your assistant or cancel your subscription, we delete your server and associated configuration within 30 days. Some data may be retained for legal or accounting purposes.

9. Your Rights

Depending on your location, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Data portability

To exercise these rights, contact us at privacy@clawdoes.com.

10. Cookies

We use essential cookies for authentication and session management. We do not use tracking or advertising cookies.

11. Children's Privacy

The Service is not intended for users under 18 years of age. We do not knowingly collect personal information from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes via email or through the Service.

13. Contact Us

For privacy-related questions or concerns, contact us at privacy@clawdoes.com.