Privacy Policy

This policy lays out what data we collect, how we handle it, and your rights. The short version: We collect only what we need to run your dedicated agents. We never sell your data.

ClawInit is a product of Narra Labs, LLC ("Company," "we," or "us"). This policy applies to the ClawInit service and website.

What we collect and why

Our guiding principle is to collect only what we need. Here's what that means in practice:

1. Identity & Access

When you sign up for ClawInit, we ask for identifying information such as your name and email address. We use this to personalize your account and send you invoices or critical updates (e.g., "Your server is ready"). We will never sell your personal information to third parties.

2. Billing Information

When you pay for a deployment, you provide your payment information. This is submitted directly to our payment processor (Stripe). It does not hit Narra Labs' servers. We store only a record of the transaction (date, amount, and the last 4 digits of your card) for invoicing and tax purposes.

3. API Keys (Bring Your Own Key)

To use the service, you may provide API keys for third-party LLM providers (e.g., Anthropic, OpenAI).

• How we store them: Your keys are encrypted at rest in our database.
• How we use them: They are decrypted only at the moment of injection into your dedicated agent server. We do not use your keys for our own purposes, nor do we log the prompts/completions generated by your keys.

4. Agent Logs & Data

Your deployed agents (browsers) generate logs, screenshots, and file system data.

• Isolation: This data lives on your Dedicated Agent Server.
• Access: We do not proactively view or mine your agent's activity logs. The data is yours.
• Deletion: When you destroy an agent deployment, the underlying server and all its local data (cookies, cache, logs) are permanently wiped.

5. Website Interactions

We collect minimal information about your browsing activity on clawinit.com for analytics (e.g., "How many people visited the Pricing page?"). We avoid invasive cross-site tracking pixels.

When we access or disclose your information

We do not sell your data. We only access your information in these limited cases:

1. To provide the service: We use third-party infrastructure providers to host your agents. Currently, we use Amazon Web Services (AWS) for both our core infrastructure and dedicated agent servers.
2. To help you troubleshoot: If you email support saying "My agent is stuck," we may ask for your permission to look at your server logs to debug the issue. We will ask for consent first.
3. To investigate abuse: If we detect that your agent is being used for malicious purposes (e.g., DDoS attacks, botnet activity), we reserve the right to access the server to investigate and terminate the deployment.
4. When required by law: If US law enforcement authorities have the necessary warrant, criminal subpoena, or court order, we must comply.

How we secure your data

• Encryption: All data is encrypted via SSL/TLS when transmitted from our servers to your browser.
• Server Isolation: Each "Dedicated Agent" runs on its own isolated Virtual Private Server (VPS). This ensures that your browser data cannot be accessed by other customers.
• Key Management: API Keys are encrypted in our database and are not visible in plain text to our support staff.

Data Retention

• Account Data: We keep your name and email as long as your account is active.
• Agent Data: Data inside your dedicated agent (files, browser cache) exists only as long as that specific deployment is active. Once you delete a deployment, that data is irretrievable.

Location of Data

Our infrastructure is located in the United States (AWS US Regions). By using ClawInit, you acknowledge that your personal data will be transferred to and stored in the United States.

Changes & Questions

We may update this policy as needed to comply with relevant regulations. If we make significant changes, we will notify you via the email associated with your account.

Have questions? Email us at support@clawinit.com.