Privacy Policy

1.Who we are

ClawOn (clawonapp.com) is an open-source Flutter application that acts as a cross-platform client for the OpenClaw autonomous AI agent framework. ClawOn is developed and maintained independently and is released under the MIT License.

For privacy questions, contact us at appazirani@gmail.com or open an issue on GitHub.

2.What data ClawOn stores — and where

ClawOn stores data exclusively on your device using a local SQLite database (clawon.db) and the platform's key-value storage (iOS: NSUserDefaults, Android: SharedPreferences). Nothing is uploaded to any server we operate.

Data	Where stored	Purpose
Gateway name, URL, authentication token	Local DB	Connecting to your OpenClaw gateway
Chat messages (your prompts + agent responses)	Local DB	Message history and offline access
Session metadata (title, agent, timestamps)	Local DB	Session organisation
Language preference	Local prefs	Displaying the app in your language
Theme preference (dark mode)	Local prefs	Appearance setting
Custom skill / agent creation prompts (optional)	Local prefs	Remembering your assistant preferences

All locally stored data can be deleted at any time by uninstalling the app or clearing the app's data from your device settings.

3.Network connections ClawOn makes

ClawOn makes two types of network connections:

Your OpenClaw gateway (WebSocket) — ClawOn connects via WebSocket to the gateway URL you provide. This is the only connection through which your messages travel, and it goes directly to a gateway you operate or have been granted access to. We have no visibility into this traffic. The data exchanged is governed by whoever operates that gateway.
Google Fonts CDN — ClawOn uses the google_fonts package to load typefaces (Inter, JetBrains Mono, and localisation-specific fonts). On first launch, or when a new language is selected for the first time, the app downloads font files from fonts.googleapis.com. Google's servers receive your device's IP address as part of this standard HTTPS request. Font files are then cached locally and no further requests are made for those fonts. Google's handling of this data is governed by Google's Privacy Policy.

There are no other outbound connections. ClawOn has no analytics SDK, no crash reporting service, no advertising network, and no telemetry of any kind.

4.Data we do NOT collect

To be explicit, ClawOn does not collect, transmit to us, or share with any party:

Your name, email address, or any personal identifier
Your location
Your device identifiers (IDFA, GAID, serial number, etc.)
Usage statistics or analytics
Crash reports or diagnostic logs
The content of your messages or agent responses
Your gateway URL or authentication token
Any behavioral or advertising data

No account is required to use ClawOn. We have no user database.

5.Your gateway operator's privacy practices

When you connect ClawOn to an OpenClaw gateway and send messages, your message content is transmitted to that gateway. The privacy practices of that gateway — including how messages are processed, logged, or retained — are determined by whoever operates it.

If you are connecting to a gateway you operate yourself, you control this entirely. If you are connecting to a gateway operated by a third party, review their privacy policy separately. ClawOn has no affiliation with or control over third-party gateway operators.

6.Data security

Your gateway credentials (URL and authentication token) and all message data are stored in the app's sandboxed local storage, protected by the security model of the operating system:

iOS / macOS: Data is stored within the app's sandboxed container, protected by iOS/macOS data protection. The device's secure enclave encrypts data at rest when the device is locked.
Android: Data is stored in the app's private data directory, inaccessible to other apps without root access. Android's file-based encryption protects data at rest.
Windows / Linux: Data is stored in the app's local data directory, protected by OS-level file permissions.

Because ClawOn is open source under the MIT License, the full source code is publicly auditable at github.com/aazirani/clawon.

7.Children's privacy

ClawOn is not directed at children under 13 (or under 16 in the European Economic Area). ClawOn requires a running OpenClaw gateway and authentication credentials to function, making it a tool for developers and technically informed users. We do not knowingly collect any information from children.

8.International users

ClawOn processes all your data locally on your device. No data is transferred to servers in any jurisdiction by ClawOn itself. The only cross-border data transfer that may occur is the Google Fonts CDN request described in Section 3, which is subject to Google's standard privacy practices and international data transfer mechanisms.

9.Your rights

Because ClawOn does not collect or hold personal data on any server, there is no personal data held by us to access, correct, port, or delete. All data ClawOn holds is on your own device, under your direct control:

Delete all data: Uninstall ClawOn or clear its data in your device's app settings.
Export data: The local database (clawon.db) is a standard SQLite file accessible to you on rooted/unlocked devices.
Stop font downloads: You can block fonts.googleapis.com at the network level. ClawOn will fall back to system fonts.

If you are located in the EU/EEA and believe you have privacy rights to assert, contact us at appazirani@gmail.com and we will respond within 30 days.

10.Changes to this policy

If we make changes to this Privacy Policy, we will update the "Last updated" date at the top of this page and publish a notice in the app's GitHub repository. Continued use of ClawOn after changes are posted constitutes acceptance of the updated policy.

Because ClawOn is open source, every version of this policy is preserved in the repository's commit history.

11.Contact

For any privacy-related questions or concerns:

Get in touch

Email: appazirani@gmail.com
GitHub: github.com/aazirani/clawon
Website: clawonapp.com

Open a GitHub issue