Security at ClawSail

Data Handling

ClawSail handles agent migration packages containing configurations, memory snapshots, skill definitions, and deployment metadata. Migration data is encrypted in transit between source and destination. Temporary migration artifacts are purged within 24 hours of a completed or failed migration.

Encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). API keys and credentials are stored using industry-standard secret management.

Infrastructure

Hosted on European infrastructure. Application containers are isolated per deployment. No shared tenancy between customers.

Access Control

Migration operations require authentication on both source and destination platforms. Migration packages are checksummed to detect tampering. Credentials embedded in agent configs are re-encrypted during migration and never exposed in plaintext.

Compliance Roadmap

• SOC 2 Type I — targeting Q3 2026
• GDPR — compliant by design (EU hosting, data minimization, right to deletion)

Responsible Disclosure

Found a vulnerability? Email security@clawsail.com. We respond within 48 hours.

Questions

For security inquiries, contact security@clawsail.com.