Security

Your Security is Our Priority

We take security seriously. Learn about the measures we take to protect your data and keep your AI agent safe.

Enterprise-Grade Security

ClawOcean is built with security-first principles. Your data is protected by industry-standard encryption and security practices.

Security Features

πŸ”

Encryption in Transit

All data transmitted between your devices and ClawOcean servers is encrypted using TLS 1.3.

  • TLS 1.3 encryption for all connections
  • HTTPS enforced across all endpoints
  • Certificate pinning for mobile apps
  • Forward secrecy enabled
πŸ’Ύ

Encryption at Rest

Your data is encrypted when stored on our infrastructure using AES-256 encryption.

  • AES-256 encryption for stored data
  • Encrypted database backups
  • Secure key management
  • Regular key rotation
πŸ”‘

BYOK Security Model

When using Bring Your Own Key, your API keys are stored only on your dedicated instance.

  • API keys never touch ClawOcean servers
  • Keys stored in encrypted environment variables
  • Isolated per-customer instances
  • You maintain full control of your keys
πŸ—οΈ

Infrastructure Security

We run on enterprise-grade cloud infrastructure with multiple layers of protection.

  • Deployed on DigitalOcean infrastructure
  • DDoS protection included
  • Network isolation between instances
  • Automated security patching
πŸ‘€

Access Controls

Strict access controls protect your account and data from unauthorized access.

  • Secure authentication with session management
  • OAuth 2.0 for third-party integrations
  • Pairing codes for new device authorization
  • Audit logs for account activity
πŸ›‘οΈ

Data Privacy

We collect minimal data and never train AI models on your conversations.

  • No training on customer conversations
  • Minimal data collection policy
  • Data deletion upon account closure
  • GDPR-compliant data handling

Compliance & Certifications

πŸ“‹

SOC 2 Type II

In Progress

Working toward SOC 2 Type II certification for enterprise customers.

πŸ‡ͺπŸ‡Ί

GDPR Compliant

Active

Full compliance with EU General Data Protection Regulation.

πŸ‡ΊπŸ‡Έ

CCPA Compliant

Active

Compliance with California Consumer Privacy Act requirements.

Report a Vulnerability

We appreciate security researchers who help us keep ClawOcean safe. If you discover a security vulnerability, please report it responsibly.

security@clawocean.com

We aim to respond within 24 hours

Questions About Security?

Our team is happy to discuss our security practices in more detail.

Contact UsView Privacy Policy