Privacy Policy

DimaClaw ("we", "us", or "our") operates the DimaClaw.to platform. This policy explains how we collect, use, and protect your information when you use our managed OpenClaw deployment service.

1. Information We Collect

Account Information

When you create an account, we collect your email address, name, and billing information. Payment processing is handled by Stripe — we never store your full credit card number on our servers.

Service Data

We collect technical data necessary to provision and maintain your OpenClaw instance, including your selected plan, deployment region, and instance health metrics (uptime, resource usage, error counts).

What We Do NOT Collect

We do not collect, store, access, or log your AI conversations, Telegram messages, or API keys. Your OpenClaw instance runs on an isolated VPS. Your API keys are encrypted at rest on your dedicated server and are never transmitted to or stored on DimaClaw infrastructure.

2. How We Use Your Information

We use the information we collect to:

• Provision and maintain your managed OpenClaw instance
• Process payments and manage your subscription
• Send transactional emails (deployment confirmations, billing receipts, critical alerts)
• Monitor instance health and uptime to meet our service commitments
• Improve the platform and fix bugs

We do not sell, rent, or share your personal information with third parties for marketing purposes.

3. Infrastructure & Data Isolation

Each DimaClaw customer receives a dedicated, isolated VPS hosted on Hetzner Cloud infrastructure in EU data centers. Your instance is not shared with other customers. We apply automatic security hardening including firewall rules, encrypted storage, and SSL certificates.

Your AI conversations, Telegram messages, and API keys never leave your dedicated VPS. DimaClaw management operations (provisioning, updates, health checks) use a separate administrative channel and do not access conversation data.

4. Third-Party Services

We use the following third-party services:

• Stripe — payment processing. Subject to Stripe's Privacy Policy.
• Hetzner Cloud — VPS hosting infrastructure in Germany/Finland (EU). Subject to Hetzner's Privacy Policy.
• Transactional email provider — for service notifications only (no marketing).

5. Data Retention

We retain your account information for as long as your account is active. When you cancel your subscription, your dedicated VPS (including all data on it) is destroyed within 48 hours. Billing records are retained for 7 years as required by applicable tax law.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format
• Object to or restrict certain processing

To exercise any of these rights, contact us at privacy@dimaclaw.to. We will respond within 30 days.

7. Cookies

We use only essential cookies required for authentication and session management. We do not use tracking cookies, analytics cookies, or advertising pixels.

8. Security

We implement industry-standard security measures including TLS encryption in transit, encrypted storage at rest, automated security patching, and access controls. Despite our best efforts, no method of electronic transmission or storage is 100% secure.

9. Children's Privacy

DimaClaw is not directed at children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will delete it promptly.

10. Changes to This Policy

We may update this policy from time to time. We will notify you of material changes via email or a prominent notice on our platform at least 14 days before the changes take effect.

Contact

Questions about this policy? Reach us at privacy@dimaclaw.to.