Last updated: February 2026
MyClaw ("we", "us", "our"), operated by Nocodo LTD, a company registered in Cyprus, operates the MyClaw platform (myclaw.to), a managed hosting service for AI agent instances. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our service.
When you create an account, we collect your full name, email address, billing address (required for tax/VAT calculation), and country of residence (for EU VAT determination).
We use Stripe as our payment processor. We do not store your credit card numbers, CVVs, or full payment details on our servers. Stripe handles all payment data in compliance with PCI-DSS standards. We retain only your Stripe Customer ID, the last four digits of your card (for display purposes), card expiration status, and billing history.
For each provisioned agent instance, we collect instance configuration (plan tier, server region), resource usage metrics (CPU, memory, bandwidth), AI credit consumption per billing period, and provisioning and lifecycle timestamps.
If you provide your own AI API key, we store it encrypted at rest to route AI requests on your behalf. We do not log, inspect, or retain the content of your AI interactions. Your key is deleted when your instance is destroyed.
We automatically collect your IP address, browser type and version, pages visited and interactions on our platform, and error logs and performance data.
We use collected information to provision and manage your agent instances on cloud infrastructure, process payments and manage subscriptions via Stripe, calculate and apply applicable taxes, track AI credit usage against your monthly allowance, send transactional emails (billing receipts, payment failure reminders, instance status updates), detect and prevent fraud or abuse, and improve our platform and services.
We share data only with the following third-party services, strictly as needed to operate MyClaw:
| Provider | Purpose | Data Shared |
|---|---|---|
| Stripe | Payment processing | Name, email, billing address, payment method |
| Cloud infrastructure provider | Infrastructure / VM hosting | Instance config, cloud-init scripts (no personal data) |
| Anthropic | AI API (when using included credits) | AI prompts/responses (processed, not stored by us) |
| Email provider | Billing & notification emails | Email address, instance status |
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
Account data is retained for as long as your account is active, plus 12 months after account deletion (for legal/tax record-keeping). Instance data is destroyed permanently when an instance is shut down — this is non-recoverable. Billing records are retained for 7 years as required by tax/accounting regulations. Server logs are retained for 90 days, then automatically purged.
We implement industry-standard security measures including encryption in transit (TLS/HTTPS for all connections), encryption at rest for sensitive data (API keys, credentials), access controls and least-privilege principles for internal systems, and regular security audits and dependency scanning.
Depending on your jurisdiction, you may have the right to access the personal data we hold about you, correct inaccurate personal data, delete your account and associated personal data (note: instance destruction is non-recoverable), export your data in a portable format, object to certain types of processing, and withdraw consent where processing is consent-based.
For EU residents, these rights are provided under the General Data Protection Regulation (GDPR). To exercise any of these rights, contact us at support@nocodo.tech.
Legal basis for processing: Contract performance (to deliver the service you purchased), legitimate interest (fraud prevention, service improvement), and legal obligation (tax compliance).
Data transfers: Your instance runs on dedicated cloud infrastructure. Account and billing data processed by Stripe may be transferred to the US under Stripe's Data Processing Agreement and appropriate safeguards.
Data Protection Officer: For GDPR-related inquiries, contact support@nocodo.tech.
We use minimal cookies strictly necessary for session management (authentication), CSRF protection, and remembering user preferences. We do not use third-party tracking cookies or advertising pixels.
MyClaw is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If we learn that we have collected data from a child under 16, we will delete it promptly.
We may update this Privacy Policy from time to time. We will notify registered users of material changes via email. Continued use of the service after changes constitutes acceptance of the updated policy.
For privacy-related questions or requests, email us at support@nocodo.tech.