Back to Home

Privacy Policy

Last updated: February 25, 2026

1. Scope

This Privacy Policy explains how 1SecondClaw ("we," "our," or "us") collects, uses, stores, and shares personal data when you use our website, web app, and mobile app.

2. Data We Collect

We collect the following categories of data:

  • Account and profile data: name, email address, and profile image (when provided by sign-in providers).
  • Authentication data: identifiers and auth/session records required to keep your account signed in.
  • AI usage data: prompts, conversation context, and assistant responses.
  • Subscription and payment data: subscription tier, transaction identifiers, and billing status (not full card numbers).
  • Technical and usage data: app/web usage events, timestamps, and operational logs for reliability and security.
  • Support data: information you share when requesting help.

3. How We Collect Data

  • Directly from you when you sign up, send messages, or contact support.
  • Automatically when you use the app/site (for auth, session, reliability, and fraud prevention).
  • From third parties you use to sign in or pay (for example, Google, Apple, RevenueCat, and Mayar).

4. Third Parties That Receive Data

We only share data with providers needed to operate the service:

  • OpenRouter: receives prompts and conversation context when OpenRouter models are used to generate responses.
  • Google: used for Google Sign-In; may also process prompts if Google model providers are enabled.
  • Convex: hosts application database/auth data and stores app records required to run your account.
  • Apple: used for Sign in with Apple and iOS in-app purchases.
  • RevenueCat: processes subscription and in-app purchase events.
  • Mayar: processes applicable web/IDR payment transactions.

Supabase is not currently used as an active data processor in this product.

5. Data Retention Policy

  • Account data is retained while your account is active and as needed for security, legal, and billing obligations.
  • Chat messages and conversations are retained until deleted by you or removed through account lifecycle actions.
  • Payment and subscription records are retained for accounting, fraud prevention, and compliance requirements.
  • Operational logs are retained only as long as needed for reliability and security investigations.

6. Security Measures

  • Encryption in transit (HTTPS/TLS) for network traffic.
  • Access controls for internal systems and production data.
  • Auth/session protection and provider webhook authentication for payment integrations.
  • Ongoing monitoring, logging, and updates to reduce security risk.

7. How We Use Your Data

We use your data to provide AI features, authenticate users, manage subscriptions, prevent abuse, maintain service reliability, and respond to support requests. We do not sell personal data or use your messages for advertising.

8. Contact Us

If you have privacy questions or requests, please contact us via our support page.