Last updated: May 30, 2026
This Privacy Policy explains how Operator Research, Inc., a Delaware corporation ("Operator.io", "we", "us", or "our"), collects, uses, shares, and protects information when you use the Operator.io website, dashboard, APIs, browser extension, and the hosted OpenClaw agent instances we run on your behalf (collectively, the "Service"). It is part of and incorporated into our Terms of Service.
By using the Service you agree to the practices described here. If you do not agree, do not use the Service. For the terms that govern your use, see our Terms of Service.
We collect the following categories of information, most of which you provide directly or generate through your use of the Service:
Your instance configurations (agent settings, provider keys, tool preferences) are encrypted at rest using AES-256-GCM before storage. We decrypt configuration data only to provision or update your running instances. API keys stored in your configuration are hashed for lookup and encrypted separately for retrieval.
AI conversation messages routed through our proxy are encrypted at rest using AES-256-GCM. We process these messages to deliver the Service, enforce usage limits, and maintain security. We do not sell your data, and we do not use the contents of your instance configurations or your agent conversations to train AI models.
We use the information we collect to:
We do not sell your personal information, and we do not use your instance data or agent conversations to train AI models.
If you are in the European Economic Area, the United Kingdom, or another region with similar laws, we process personal data on the following legal bases: performance of our contract with you, to provide and bill for the Service; our legitimate interests in securing, maintaining, and improving the Service and preventing abuse; compliance with legal obligations such as tax and accounting; and your consent where required, for example for certain cookies or optional communications. Where we rely on consent, you may withdraw it at any time.
We are based in the United States and process data there and in other countries where we or our providers operate. If you access the Service from outside the United States, your information may be transferred to and processed in the United States, where data protection laws may differ from those in your country. Where required, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses for such transfers.
Instance data (configurations, workspace files) is retained while your account is active. If your subscription lapses and instances are suspended, we preserve snapshots of your data so it can be restored if you resubscribe. If you delete your account, we remove your instance data and personal information within 30 days, except where we must retain certain records longer, for example billing records kept to meet tax and accounting obligations. Backups are purged on a rolling basis.
All data in transit uses TLS. Sensitive data at rest, including instance configurations, API keys, and conversation logs, is encrypted with AES-256-GCM. API keys are additionally hashed with SHA-256 for lookup. Access to production infrastructure is restricted to authorized personnel. No method of transmission or storage is completely secure, so we cannot guarantee absolute security, but we work to protect your information using measures appropriate to its sensitivity.
Depending on where you live, you may have rights over your personal information, including the right to access a copy of it, to correct inaccurate data, to delete it, to restrict or object to certain processing, and to data portability. You can export your instance configuration from the dashboard at any time, and you can delete your instances through the dashboard, which removes the associated container and files.
To exercise any of these rights, or to request full account deletion or a copy of all data we hold about you, contact us at support@operator.io. We will verify your request and respond within the time required by applicable law. You will not be discriminated against for exercising your rights. If we deny your request, you may appeal by replying to our response.
If you are a resident of California or another US state with a comprehensive privacy law, you have the right to know and access the personal information we collect about you, to request its deletion, to correct inaccurate information, and to opt out of the sale or sharing of personal information and of targeted advertising.
We do not sell your personal information, we do not share it for cross-context behavioral advertising, and we do not use sensitive personal information for purposes that would require us to offer a right to limit. The categories of personal information we collect, the purposes for which we use them, and the parties with whom we share them are described in the sections above. You may submit a request using the contact details below, and you may use an authorized agent to submit a request on your behalf where the law allows, subject to verification.
The Service is not directed to children under 18, and we do not knowingly collect personal information from them. If you believe a child has provided us with personal information, contact us and we will delete it.
We may update this Policy as the Service evolves. If we make material changes, we will notify you by email or through a notice in the dashboard and update the date above. Your continued use of the Service after changes take effect constitutes acceptance of the updated Policy.
Questions about this Policy or your data can be sent to support@operator.io.