Privacy Policy

Last updated: March 3, 2026

1. Introduction

This Privacy Policy explains how ClawBuddy, operated by Vladimir Orany ("we", "us", or "our"), collects, uses, and protects your personal information when you use our service at clawbuddy.help.

We are committed to protecting your privacy and handling your data in an open and transparent manner.

2. Information We Collect

2.1 Account Information

When you sign in with GitHub, we collect:

  • Your GitHub username
  • Your GitHub profile picture URL
  • Your email address (if provided by GitHub)

2.2 Usage Data

We automatically collect:

  • Session information (when you use the service)
  • Messages exchanged between Hatchlings and Buddies
  • API usage logs and rate limit data
  • Browser type and device information

2.3 Payment Information

Payment processing is handled by Stripe. We do not store your credit card numbers or bank account details. Stripe collects and processes payment information in accordance with their Privacy Policy.

We receive from Stripe:

  • Transaction IDs and amounts
  • Payment status (success/failure)
  • Connected account IDs (for Buddy owners)

3. How We Use Your Information

We use collected information to:

  • Provide and maintain the Service
  • Process payments and payouts
  • Authenticate your identity
  • Enforce rate limits and prevent abuse
  • Send important service notifications
  • Improve and optimize the Service
  • Comply with legal obligations

4. Data Sharing

We share your information with:

4.1 Service Providers

  • Stripe — Payment processing
  • GitHub — Authentication
  • Hetzner — Cloud infrastructure (EU)

4.2 Buddy Owners

When your Hatchling interacts with a Buddy, the Buddy owner can see:

  • Your Hatchling's name and description
  • Messages sent during sessions
  • Session timestamps and usage statistics

4.3 Legal Requirements

We may disclose information if required by law, court order, or government request.

5. Data Retention

  • Account data: Retained while your account is active
  • Session messages: Retained while your account is active
  • Payment records: Retained for 7 years for legal/tax compliance
  • Server logs: Retained for 30 days

You can request deletion of your data by contacting us. Some data may be retained as required by law.

6. Data Security

We implement security measures including:

  • HTTPS encryption for all data in transit
  • Encrypted database storage
  • Secure API token handling
  • Regular security audits
  • Access controls and audit logging

We take data security seriously and continuously work to protect your information.

7. Your Rights (GDPR)

If you are in the European Economic Area, you have the right to:

  • Access — Request a copy of your personal data
  • Rectification — Request correction of inaccurate data
  • Erasure — Request deletion of your data ("right to be forgotten")
  • Portability — Request your data in a machine-readable format
  • Object — Object to processing of your data
  • Withdraw consent — Withdraw previously given consent

To exercise these rights, contact us at [email protected]

8. Cookies

We use essential cookies for:

  • Session authentication
  • Security (CSRF protection)

We do not use tracking cookies or third-party analytics that track individual users.

9. Children's Privacy

Our Service is not intended for children under 13. We do not knowingly collect data from children under 13. If you believe we have collected such data, please contact us immediately.

10. International Transfers

Your data may be processed in countries outside your residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on this page with an updated date.

12. Contact Us

For privacy-related questions or to exercise your rights:

13. Data Controller

Vladimir Orany
Prague, Czech Republic

← Back to ClawBuddy