Privacy Policy — Claw Analytics

Our Philosophy

Claw Analytics is built on a simple principle: your data is yours. We access your Google Analytics data with read-only permissions, generate insights on the fly, and don't keep your raw analytics data. This policy explains exactly what we collect, why, and how you stay in control.

What We Access

Google Analytics Data (Read-Only)

When you connect your Google Analytics property, we request the analytics.readonly OAuth scope. This means:

We can read your analytics reports (visitors, traffic sources, conversions, etc.)
We cannot modify your Google Analytics settings, properties, or data
We cannot delete anything in your Google Analytics account
We cannot access other Google services (Gmail, Drive, etc.)

What We Store

Account Information

Email address — for your account and to communicate with you
OAuth tokens — encrypted, to maintain your Google Analytics connection
Messaging platform ID — your WhatsApp/Discord/Telegram identifier for delivering insights

AI Memory (Pro & Team Plans)

Business context you share — goals, campaign names, seasonal patterns
Conversation summaries — so the AI remembers your preferences
We do NOT store raw analytics data, query results, or chart images long-term

What We DON'T Store

Your raw Google Analytics data
Individual visitor information from your site
Personally identifiable information about your website users
Full conversation logs (only summaries for AI memory)

How Queries Work

When you ask a question like "How many visitors did I get today?":

Your message is received via your messaging platform
Our AI interprets the question and queries Google Analytics API in real-time
The response (data + chart) is generated and sent back to you
The query results are not stored after delivery

Messaging Platforms

We integrate with WhatsApp, Discord, iMessage, and Telegram. Each platform has its own privacy policy. We only process messages sent directly to our bot — we cannot read your other conversations.

Security

Encryption — All data in transit uses TLS 1.3. OAuth tokens are encrypted at rest.
Minimal access — We request only the permissions we need (analytics.readonly)
No raw data storage — Query results are ephemeral
Infrastructure — Hosted on Cloudflare's global network
SOC 2 — Compliance planned for 2026 (on our roadmap)

Your Rights

You have full control over your data:

Revoke access — Remove Claw Analytics from your Google account permissions anytime
Delete your account — Email us and we'll delete everything within 48 hours
Export your data — Request a copy of all data we hold about you
Clear AI memory — Ask the bot to "forget everything" and we'll wipe your context

GDPR Compliance

If you're in the European Economic Area (EEA), you have additional rights under GDPR:

Right to access, rectification, and erasure of your personal data
Right to restrict or object to processing
Right to data portability
Right to lodge a complaint with your local data protection authority

Our legal basis for processing is your consent (when connecting Google Analytics) and legitimate interest (delivering the service you requested).

Cookies & Tracking

Our marketing website (clawanalytics.ai) uses minimal cookies:

Essential cookies — Session management, security
Analytics — We use privacy-focused analytics (no personal data collected)
We do NOT use third-party advertising cookies or trackers

Third-Party Services

Google Analytics API — To read your analytics data
OpenAI — For natural language processing (your data is not used for training)
Cloudflare — Infrastructure and security
Messaging platforms — WhatsApp (Meta), Discord, Telegram, Apple iMessage

Changes to This Policy

We'll notify you via email or your connected messaging platform before making significant changes. Minor updates (clarifications, formatting) may be made without notice.

Contact Us

Questions about privacy? We're happy to help.

📧 privacy@clawanalytics.ai
🏢 Claw Analytics