OneClickClawDocs
$

Data & Privacy

Last updated: March 2026

What data we store

OneClickClaw collects only the data necessary to provide the hosting service. Here is a clear breakdown:

  • Account information: Your name and email address (from Google OAuth). Used for login, billing communication, and support.
  • Server metadata: Server name, tier, status, and deployment timestamps. Used to manage your VPS and display dashboard information.
  • Billing information: Subscription status, plan type, and payment history. Payment card details are handled entirely by Stripe and never touch our servers.
  • Event logs: Deployment events, configuration changes, reboots, and support interactions. Used for troubleshooting and the Event Viewer on your dashboard.

What we don't store

Equally important is what OneClickClaw does not store on our platform:

  • AI conversations: All messages between your users and your agent flow directly between your server and your AI provider. We have zero access to conversation content.
  • API keys: Your AI provider keys are stored only on your dedicated VPS, encrypted with AES-256. They never exist on our platform servers.
  • Message content: We do not intercept, log, or analyze any messages passing through your agent.
Data Flow: What stays where

On Our Platform

Account info, server metadata, billing status, event logs

On Your VPS Only

API keys (encrypted), conversations, agent configuration, channel tokens

Note

Your AI conversations flow directly between your server and your AI provider. We have no access to conversation content.

Data location

All OneClickClaw infrastructure is hosted in the European Union. Your dedicated VPS runs in a datacenter in Denmark (DK-DC1), operated by our infrastructure partner Webdock. Our central platform database is also hosted in the EU. This means your data is subject to EU data protection laws and never leaves EU jurisdiction.

Data retention

We retain your data according to the following schedule:

Data TypeWhile ActiveAfter Cancellation
Account info (name, email)RetainedDeleted after 30 days
Server metadataRetainedDeleted immediately when VPS is destroyed
Billing recordsRetainedRetained per EU tax law, then deleted
Event logsRetainedDeleted with VPS
AI conversationsOn your VPS onlyDeleted with VPS
API keysOn your VPS onlyDeleted with VPS

Tip

If you need to keep any data from your server before cancellation, download a diagnostic bundle from your dashboard. This includes your server configuration and recent logs.

Encryption standards

  • In transit: All connections use TLS encryption. Communication between your browser and the dashboard, between our platform and your VPS, and between your VPS and your AI provider are all encrypted.
  • At rest: Sensitive fields (API keys, OAuth tokens) are encrypted using AES-256. Standard account data is stored in a secured database with access controls.

For details about your rights over this data, see GDPR Compliance.