Privacy Policy

🔒 Your data stays yours

We built ClawClone with a simple principle: we never read, access, or analyze the contents of your backups. Your OpenClaw configuration files — including SOUL.md, memory files, and settings — are stored exactly as you upload them.

When you restore a backup, the files are delivered directly to you. No one at ClawClone looks at what's inside your backups. We don't mine your data, we don't train on it, and we don't share it.

🔑 About API keys & sensitive data

Your backup may contain sensitive information, including API keys, tokens, or other credentials referenced in your configuration. Here's what you should know:

• Access to your backups requires your API key authentication
• We do not log, cache, or inspect the contents of any backup
• Our systems are designed to be content-blind — we store and retrieve bytes, nothing more
• All data in transit is protected via HTTPS/TLS

Important: Backups are stored as-is without additional encryption on our end. We recommend reviewing your files before uploading:

• Remove any plaintext secrets from your SOUL.md or memory files
• Use environment variables for API keys instead of hardcoding them
• Only backup what you're comfortable storing in the cloud

☁️ Data storage

Your backups are stored on Cloudflare R2, a secure object storage platform with data centers worldwide. Data is encrypted at rest by Cloudflare and protected in transit via TLS.

We retain your backups until you delete them. When you delete a backup, it's permanently removed from our systems within 24 hours.

📊 What we collect

To operate the service, we collect minimal information:

• Account info: Email address (for authentication via Clerk)
• Usage data: Number of backups, storage used (for quota enforcement)
• API keys: Hashed for verification, never stored in plaintext

✉️ Contact

Questions about privacy? Reach out at privacy@clawclone.cc