Privacy Policy

UniClaw ("we", "us", or "our") operates the uniclaw.ai website and the UniClaw platform (the "Service"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

By using the Service, you agree to the collection and use of information in accordance with this policy. If you do not agree, please do not use the Service.

Account Information

When you create an account via Google Sign-In, we receive your name, email address, and profile picture from Google. These are the only Google user data fields we request for authentication. We do not access your Google contacts, browsing history, or any other Google account data during sign-in.

Billing Information

Payment processing is handled by Stripe. We do not store your full credit card number, CVV, or other sensitive payment details on our servers. Stripe may share with us limited billing information such as your card's last four digits, expiration date, and billing address.

Agent Data

When you deploy an agent, we store configuration data such as your agent's name, selected plan, and connection metadata. The content your agent creates (files, code, websites) resides on your agent's dedicated cloud machine, not on our platform servers.

API Keys

If you provide AI provider API keys (e.g., Anthropic, OpenAI), they are encrypted at rest using industry-standard encryption and are only transmitted securely to your agent's dedicated machine.

Usage Data

We may collect information about how you access and use the Service, including your IP address, browser type, pages visited, and timestamps. This helps us improve the Service and troubleshoot issues.

We use the information we collect to:

• Provide, operate, and maintain the Service
• Process transactions and manage your subscriptions
• Provision and manage your agent infrastructure
• Communicate with you about your account, including service updates and support
• Detect, prevent, and address technical issues or abuse
• Comply with legal obligations

We do not sell your personal information. We may share your data with:

• Service providers — Third parties that help us operate the Service (e.g., Stripe for payments, DigitalOcean for infrastructure). These providers only access your data as needed to perform services on our behalf.
• Legal requirements — If required by law, regulation, legal process, or governmental request.
• Safety — To protect the rights, property, or safety of UniClaw, our users, or the public.

We implement appropriate technical and organizational measures to protect your data. This includes encryption of sensitive data at rest and in transit, secure tunnel architecture with no exposed ports on agent machines, and regular security reviews.

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee its absolute security.

We retain your account information for as long as your account is active or as needed to provide the Service. When you delete your account, we will delete or anonymize your personal data within a reasonable timeframe, except where we are required to retain it for legal or legitimate business purposes.

When an agent is deleted, its dedicated cloud machine and all data on it are destroyed.

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Object to or restrict processing of your data
• Data portability

To exercise these rights, please contact us using the information in the Contact section below.

We use essential cookies and similar technologies to maintain your session and authenticate you. We do not use third-party advertising or tracking cookies.

The Service integrates with third-party services including Stripe (payments), DigitalOcean (infrastructure), and messaging platforms (Telegram, WhatsApp, Discord, Slack). Each of these services has its own privacy policy, and we encourage you to review them.

Data We Access

UniClaw uses Google OAuth 2.0 for user authentication. During sign-in, we request access to your basic profile information (name, email address, and profile picture). We use this data solely to create and maintain your UniClaw account.

Optional Google Integrations

UniClaw does not access any additional Google user data beyond the basic profile information described above unless you explicitly choose to enable an integration. You may optionally connect your AI agent to Google services — including Gmail, Google Calendar, Google Drive, and YouTube — via OAuth 2.0. These integrations are entirely user-initiated; we never enable them on your behalf. When you connect a Google service:

• We request only the scopes necessary for the specific feature you are enabling.
• OAuth access tokens are encrypted at rest and stored securely on our platform servers. They are transmitted to your agent's dedicated machine only when needed to perform the authorized actions.
• Your agent uses the granted access solely to perform tasks you instruct it to carry out (e.g., reading or sending emails, creating calendar events, accessing Drive files). We do not use this data for advertising, user profiling, or any purpose unrelated to providing the Service.
• You can disconnect any Google integration at any time from your agent's settings, which immediately revokes our access.

Limited Use Disclosure

UniClaw's use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

• We only use Google user data to provide and improve the user-facing features you see and request within UniClaw.
• We do not transfer Google user data to third parties except as necessary to provide or improve the Service, to comply with applicable laws, or as part of a merger, acquisition, or asset sale with prior notice.
• We do not use Google user data for serving advertisements, including targeted, personalized, or interest-based advertising.
• We do not use Google user data for training AI or machine learning models, building user profiles, determining credit-worthiness, or selling to data brokers or information resellers.
• We do not allow humans to read Google user data unless we have your affirmative agreement, it is necessary for security purposes, to comply with applicable law, or the data is aggregated and anonymized for internal operations.

Google Data Retention

Google OAuth tokens for integrations are retained only while the integration is active. When you disconnect a Google integration or delete your agent, associated tokens are immediately deleted. Google account data used for authentication (name, email, profile picture) is retained as part of your account and deleted when you delete your UniClaw account.

Your agents may also connect to GitHub, Notion, and Slack via OAuth. Like the Google integrations described above, these are entirely optional and user-initiated — no third-party data is accessed unless you explicitly choose to connect the service. The same principles apply: we request only necessary permissions, encrypt tokens at rest, use the data solely to perform actions you instruct, and delete tokens when you disconnect an integration or delete your agent.

The Service is not intended for anyone under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. If changes affect how we access, use, or share Google user data, we will prompt you to review and consent to the updated policy before the changes take effect. Your continued use of the Service after changes constitutes acceptance of the updated policy.

If you have questions about this Privacy Policy or wish to exercise your data rights, please contact us at: [email protected]