Privacy Policy
Last updated: March 1, 2026
TL;DR: Your data belongs to you. We never sell it, never use it to train AI, and you can export or delete everything at any time.
1. Who We Are
DeployAgents.co is a fully managed hosting service for OpenClaw and Hermes AI agents. This Privacy Policy explains how we collect, use, and protect your personal information when you use our platform. "We", "us", and "our" refer to DeployAgents.co.
2. Information We Collect
We collect: (a) Account information — your name, email address, and password when you register; (b) Billing information — payment details processed and stored securely by Stripe (we never store your full card number); (c) Usage data — anonymized metrics about how you use our platform, such as feature usage and session duration; (d) Instance data — conversations, memory, and configurations stored in your OpenClaw instance, which are encrypted and accessible only by you; (e) Log data — server logs including IP addresses, browser type, and access times, retained for up to 90 days.
3. How We Use Your Information
We use your information to: provide, operate, and improve our service; process payments and send billing receipts; send important account notifications and security alerts; respond to support requests; send optional product updates and newsletters (you can unsubscribe at any time); comply with legal obligations. We do not sell your personal data to third parties. We do not use your instance data (conversations, memory) to train AI models.
4. Data Storage and Security
Your instance data is encrypted at rest using AES-256 and in transit using TLS 1.3. Each user's instance runs in an isolated container — your data is never shared with other users. We perform daily encrypted backups with 30-day retention. Our infrastructure is hosted on ISO 27001-certified data centers across US, EU, and APAC regions.
5. Third-Party Services
We use the following third-party services: Stripe (payment processing — governed by Stripe's Privacy Policy); Cloudflare (DDoS protection and CDN); Hetzner/AWS/DigitalOcean (infrastructure hosting). We share only the minimum necessary data with these providers. All sub-processors are bound by data processing agreements compliant with GDPR.
6. Cookies
We use strictly necessary session cookies to keep you logged in. We use no third-party advertising or tracking cookies. We do not use Google Analytics or similar tracking scripts. You may disable cookies in your browser settings, but this will prevent you from staying logged in.
7. Your Rights (GDPR & CCPA)
You have the right to: access a copy of all personal data we hold about you; correct inaccurate data; request deletion of your account and all associated data; export your data in a portable format; object to or restrict processing of your data; withdraw consent at any time. To exercise any of these rights, email [email protected]. We will respond within 30 days.
8. Data Retention
We retain your account data for as long as your account is active. After account deletion, personal data is purged within 30 days. Anonymized usage metrics may be retained indefinitely. Backup copies are deleted within 60 days of account deletion.
9. Children's Privacy
Our service is not directed at children under 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected data from a minor, contact us immediately at [email protected].
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you by email and via a notice in your dashboard at least 14 days before any material changes take effect. Continued use of the service after the effective date constitutes acceptance of the updated policy.
11. Contact
For privacy-related questions or requests, contact our Data Protection team at [email protected]. For GDPR inquiries, you may also contact your local data protection authority.