Skip to content

Privacy Policy

Last updated: March 2, 2026

Introduction

PolymathClaw ("we", "us", "our") operates the polymathclaw.com website and the PolymathClaw managed hosting platform. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our services.

Information We Collect

We collect the following types of information:

  • Account information: Your email address and a securely hashed password when you create an account.
  • API keys: Your AI provider API keys, encrypted with AES-256-GCM at rest. We decrypt keys only to inject them as environment variables into your dedicated container. We never log, share, or access your keys for any other purpose.
  • Instance metrics: Server performance data (CPU, RAM, uptime) for your dedicated instance.
  • Payment information: Processed entirely by Stripe. We store only your Stripe customer ID — never your card number or banking details.
  • Newsletter subscriptions: Your email address if you subscribe to product updates.

How We Use Your Information

  • Provide, maintain, and improve the PolymathClaw platform.
  • Process payments and manage your subscription.
  • Send transactional emails (account confirmation, password resets, billing receipts).
  • Send product updates if you've opted in via our newsletter.
  • Monitor and improve platform performance and security.

We do not sell, rent, or share your personal information with third parties for marketing purposes.

Data Storage & Security

  • Account data is stored in Supabase (PostgreSQL), encrypted at rest using AES-256.
  • All data in transit is protected by TLS 1.3.
  • Each customer's OpenClaw instance runs in an isolated Docker container with its own resources.
  • Conversations are processed on your isolated instance and are not accessible to other customers or to PolymathClaw staff.

Cookies

We use only essential cookies and browser storage:

  • Authentication session: A secure cookie to keep you logged in.
  • Theme preference: Stored in localStorage to remember your dark/light mode choice.

We do not use tracking cookies, advertising cookies, or third-party analytics that track individual users.

Third-Party Services

We use the following third-party services to operate PolymathClaw:

  • Supabase: Database and authentication. Their privacy policy.
  • Stripe: Payment processing. Their privacy policy.
  • Infrastructure providers: We use cloud hosting providers to run your dedicated instances. Your instance data is isolated and encrypted.

Your Rights

You have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate data.
  • Request deletion of your account and associated data.
  • Export your data.
  • Opt out of marketing emails at any time.

To exercise any of these rights, contact us.

Data Retention

  • Active accounts: Data is retained for the duration of your subscription.
  • Deleted accounts: Personal data is removed within 30 days of account deletion.
  • Conversations: Processed on your isolated instance. We do not store conversation logs on our central systems.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by email. Continued use of the service after changes constitutes acceptance of the updated policy.

Contact

If you have questions about this Privacy Policy or our data practices, contact us.