This Privacy Policy explains how ShipClaw ("ShipClaw", "we", "our", "us") collects, uses, and protects personal data when you use our website and services.
By using ShipClaw, you acknowledge this policy.
We collect the following categories of data:
- Account data: name, email address, login provider, account identifiers.
- Billing data: subscription status, plan, payment metadata, invoices, and transaction records processed by Stripe.
- Service configuration data: instance configuration, deployment metadata, model/channel settings, region, and operational status.
- User-provided secrets and tokens: API keys, bot tokens, and access tokens required to run your instance. These are encrypted at rest when stored by our platform.
- Usage and diagnostic data: timestamps, request metadata, error logs, audit logs, feature usage, and security events.
- Device and browser data: IP address, user agent, locale, and basic technical metadata.
- Support data: information you submit through contact forms, support channels, or email.
We use data to:
- provide, operate, and maintain ShipClaw;
- authenticate users and secure accounts;
- process payments and manage subscriptions;
- deploy and manage instances you create;
- monitor reliability, debug incidents, and prevent abuse;
- communicate product, billing, and support updates;
- comply with legal obligations.
We use cookies and similar technologies for:
- authentication and session management;
- language and UI preferences;
- security and fraud prevention;
- basic product analytics.
You can control cookies through your browser settings, but disabling essential cookies may affect service functionality.
We rely on third-party providers to deliver parts of the service, including:
- Stripe for payments and billing;
- Fly.io for infrastructure and instance hosting;
- OpenRouter for platform-managed model access (when selected);
- authentication, email, storage, and operational tooling providers used by ShipClaw.
These providers process data under their own privacy terms.
We do not sell your personal data.
We may share data only when necessary to:
- operate the service with trusted processors and vendors;
- comply with law, legal process, or valid government requests;
- protect rights, safety, and security of ShipClaw, our users, and the public;
- support a merger, acquisition, financing, or asset transfer (with appropriate safeguards).
We keep data for as long as needed to provide the service and fulfill legal, accounting, and security requirements.
Typical retention principles:
- account and billing records are retained while your account is active and as required for compliance;
- operational logs are retained for a limited period needed for reliability and security;
- when an account is deleted, we delete or anonymize data unless retention is legally required.
We use technical and organizational safeguards designed to protect data, including encryption, access controls, and monitoring.
No system is 100% secure, and you are responsible for safeguarding your own credentials and endpoints.
ShipClaw and our providers may process data in multiple countries. Where required, we use appropriate safeguards for cross-border transfers.
Depending on your location, you may have rights to:
- access, correct, or delete personal data;
- object to or restrict certain processing;
- request data portability;
- withdraw consent where processing is consent-based.
To submit a request, contact us at support@shipclaw.app.
ShipClaw is not directed to children under 13 (or the equivalent minimum age in your jurisdiction), and we do not knowingly collect personal data from children.
We may update this Privacy Policy from time to time. If we make material changes, we will update the effective date on this page and, where appropriate, provide additional notice.
For privacy questions, contact us at support@shipclaw.app or via our contact page.