We know less about you
than you'd expect.

Your email address and name — collected through Clerk when you sign up. Your billing information — processed by Stripe when you subscribe. That's the complete list.

No usage analytics. No behavior tracking. No ad network pixels. No "anonymous telemetry" that's not really anonymous. We don't even run Google Analytics.

Everything else. Your conversations with your AI assistant. Your files and documents. Your API keys and credentials. Your agent memory and preferences. Your skill configurations.

This data lives on your isolated instance. It doesn't sync to a central database. It doesn't get aggregated with other customers' data. It's yours, on your machine, full stop.

We never use your data to train AI models. Not ours. Not anyone else's. Your conversations don't feed into some future model release.

This isn't just a policy — it's architectural. Your data doesn't flow to any training pipeline because no such pipeline exists in our infrastructure. The pipes literally aren't connected.

Delete your instance, your data is gone. We don't retain backups of customer instance data. There's no 30-day grace period where your conversations are sitting in cold storage somewhere.

Account data (email, billing history) can be deleted on request. We comply within 72 hours. Email support@killr.bot.

Clerk handles authentication. Stripe handles billing. That's our complete list of third-party processors.

No analytics platforms. No ad networks. No customer data platforms. No "marketing automation" tools scraping your usage patterns. Two processors, both essential, both with strong privacy practices.

We're ready for data export and deletion requests under both GDPR and CCPA. You have the right to know what data we hold, get a copy of it, and have it deleted.

For any privacy request: support@killr.bot. We respond within 72 hours. No forms to fill out. No "privacy request portal" that takes 6 weeks.

For maximum control, self-host OpenClaw. Your data never touches our infrastructure. Not even a little. You run it on your hardware, your network, your rules.

The self-hosted version has the same security features — encryption, isolation, everything. The only difference: you're the one running it instead of us.