Privacy Policy

TrustableClaw is designed so that core desktop functionality may operate locally on your device. In many cases, your prompts, outputs, logs, policies, and local runtime activity can remain on your device unless you choose to use a feature that connects to a third-party service or to TrustableClaw-hosted infrastructure.

Some features may transmit or display information outside your device, including:

• when you connect third-party AI providers or integrations;
• when you use third-party accounts, APIs, or connectors;
• when you publish or share a public receipt, verification page, or similar artifact;
• when you contact support or interact with our website.

We may access, collect, receive, store, or transmit the following categories of information, depending on the features you use.

A. Information you provide directly

This may include:

• your name, email address, company name, or other contact details if you contact us or create an account for any hosted feature;
• prompts, files, notes, configurations, policies, instructions, messages, and other content you choose to input into the Services;
• support requests, feedback, bug reports, and correspondence you send us;
• information you choose to publish through public receipt or verification features.

B. Device, app, and technical information

This may include:

• app version, operating system, crash details, diagnostic events, and basic technical logs;
• device-generated identifiers or installation-related identifiers where needed for app operation, licensing, security, or abuse prevention;
• network or service connection metadata when the app communicates with TrustableClaw-hosted or third-party services.

C. Local app data

When you use the desktop app, information may be stored locally on your device, including:

• prompts and outputs;
• local logs and audit records;
• approval history and governance settings;
• skill or integration configuration;
• local receipts, hashes, replay artifacts, and related metadata.

D. Public receipt and verification data

If you choose to publish a public receipt, verification page, or similar shared artifact, we may collect, store, and display the information and metadata required to provide that public feature. Depending on how the feature is configured, this may include:

• receipt identifiers;
• timestamps;
• hashes, signatures, and verification metadata;
• redacted or selected content you choose to publish;
• public page access metadata and basic service logs.

E. Third-party service data

If you connect third-party providers or services, information may be transmitted to or received from those services in accordance with your configuration and those third parties’ own terms and privacy practices. This may include model inputs, outputs, credentials, account identifiers, or integration-specific data.

We may use information to:

• provide, operate, maintain, and secure the Services;
• enable local and hosted product features you choose to use;
• provide public receipt, verification, or sharing features when you explicitly enable them;
• process support requests, feedback, and bug reports;
• diagnose errors, prevent abuse, and improve reliability, security, and performance;
• communicate with you about the Services;
• comply with law, enforce our terms, and protect our rights, users, and systems.

We do not sell your personal information to advertisers.

TrustableClaw is a local-first product. Core desktop functionality may process and store information locally on your device.

However, some features involve hosted or networked processing. For example:

• if you connect an external AI provider, your data may be sent to that provider;
• if you use a third-party connector or integration, data may be exchanged with that service;
• if you publish a public receipt or verification page, the related content and metadata may be hosted and displayed through TrustableClaw infrastructure or service providers.

Public receipts and verification pages are optional features. If you choose to publish one, the information you choose to publish, along with associated verification metadata, may become accessible to anyone with the link and may be hosted on infrastructure we use to provide that feature.

You are responsible for reviewing what you publish and for avoiding the disclosure of confidential, personal, regulated, or otherwise restricted information unless you are authorized to disclose it.

We may log basic access and service events for public pages for security, abuse prevention, and service operation.

TrustableClaw may interoperate with third-party AI model providers, messaging systems, browsers, payment tools, storage providers, operating system services, or other external platforms.

When you use those features, information may be disclosed to those third parties as necessary to provide the requested functionality. Their handling of your information is governed by their own privacy policies and terms, not ours.

You are responsible for reviewing and approving the third-party services you connect to TrustableClaw.

We may share information:

• with service providers that help us operate hosted features, website infrastructure, public verification pages, analytics, security, or support;
• with third-party providers or integrations that you choose to connect or use;
• with other users or the public, but only through features you choose to publish or share;
• when required by law, legal process, or government request;
• to protect rights, safety, security, property, users, or the Services;
• in connection with a merger, financing, acquisition, reorganization, or sale of assets.

We do not share personal information with third parties for their own direct marketing use.

Information may be stored:

• locally on your device;
• on TrustableClaw-hosted infrastructure used for optional hosted features;
• by third-party providers you choose to connect.

We keep information for as long as reasonably necessary to provide the Services, comply with legal obligations, resolve disputes, enforce agreements, maintain security, and operate the product.

Public receipts, verification pages, and related metadata may remain stored until deleted, unpublished, expired, or no longer needed for the feature, subject to operational, legal, and backup constraints.

Locally stored data may remain on your device until you delete it, uninstall the app, or remove it through product controls, subject to normal system and backup behavior.

We use reasonable administrative, technical, and organizational measures designed to protect information we process through hosted features. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

You are responsible for safeguarding your device, accounts, credentials, API keys, local files, and any data you choose to publish or transmit.

Depending on the feature you use, you may be able to:

• keep information local by not enabling hosted or public-sharing features;
• choose whether to connect third-party providers or integrations;
• choose whether to publish a public receipt or verification page;
• delete or modify local data stored by the app on your device;
• revoke or rotate third-party credentials or tokens you provide;
• stop using the Services at any time.

If you do not want information to be publicly accessible, do not use public-sharing or public receipt features.

You may request access to, correction of, or deletion of personal information that we maintain in our hosted systems, subject to applicable law and legitimate operational, legal, fraud-prevention, security, and recordkeeping needs.

For information stored locally on your device, you can generally access, manage, export, or delete it through the app, your device, or your operating system.

To make a privacy request, contact us using the information below.

The Services are not directed to children under 13, and we do not knowingly collect personal information from children under 13 through hosted services. If you believe a child has provided personal information to us, contact us so we can review and take appropriate action.

If a different minimum age is required by applicable law in your jurisdiction, that higher age requirement applies.

If you use hosted features, your information may be processed in countries other than the one where you live. Those countries may have data protection laws that differ from those in your jurisdiction.

We may update this Privacy Policy from time to time. If we make material changes, we may provide notice by updating the date above, posting the updated policy on our website, through the Services, or by other reasonable means.

Your continued use of the Services after the effective date of the updated Privacy Policy is subject to the updated policy.