Your data, protected.

Privacy is the foundation. Our security architecture ensures your information stays yours — entirely isolated and protected. Not a feature to be toggled on — a core requirement.

Dedicated server architecture

Unlike conventional AI services that rely on shared, multi-tenant environments, every KanaHost customer receives a dedicated, isolated server. Your assistant runs on a private machine provisioned solely for your tasks. This eliminates risks associated with shared data environments, ensuring that your assistant's memory and activity are contained within an environment you exclusively own. No other customer shares your disk, memory, or network — your managed OpenClaw hosting is completely isolated.

Data isolation

Technical isolation is not just about server uptime. It is about how data flows. Your assistant's interactions with external tools — like your calendar, email, and files — occur through direct, encrypted tunnels. No data is routed through a central aggregator, and no aggregate logs of your personal habits are created or retained by us. Every API call your assistant makes goes directly from your server to the service — we are never in the middle.

Zero-access policy

We manage the uptime, security updates, and performance of your dedicated server. We do not, however, access the contents. Our infrastructure team operates on a zero-access policy. We have no technical way to query your databases, view your chat logs, or inspect your files. Your assistant exists to serve you, and we ensure that it stays that way. This is a core principle of our OpenClaw security architecture, not a toggle you need to enable.

Encryption

Security begins with transit and storage. Every piece of data on your managed OpenClaw hosting instance is protected:

  • Encryption at rest: All data on your server, including logs, databases, and cached information, is stored using industry-standard AES-256 encryption. Even if physical hardware were compromised, your data remains unreadable.
  • Encryption in transit: All interactions between you, your messaging apps, and your server are encrypted using TLS 1.3. No data travels in plaintext — ever.

Open-source foundation

KanaHost runs on OpenClaw, which is fully open-source. Security through obscurity is not a strategy. We believe that verifiable security is the only standard that matters. Every line of code that powers your assistant is available for anyone to inspect, ensuring that the software you depend on is free from backdoors or hidden tracking. Independent security researchers regularly review the codebase.

No training on user data

Your data is used to help you, and only you. It is never fed into central models, used to refine public algorithms, or processed for platform analytics. Your assistant builds a private knowledge graph based on your work, which exists only on your server. Unlike conventional AI platforms that aggregate user interactions for model training, your managed OpenClaw hosting instance keeps your information completely contained.

Backup and disaster recovery

Your data is backed up daily to encrypted, off-site storage. In the event of a catastrophic failure, we can restore your assistant to its exact state, including your entire knowledge graph, conversation history, and configuration — ensuring you never lose the context you have built. Backups themselves are encrypted with the same AES-256 standard as your live data.

Compliance readiness

We design our systems with institutional standards in mind:

  • SOC 2: Our infrastructure follows rigorous internal controls consistent with SOC 2 principles, covering security, availability, and confidentiality.
  • HIPAA-ready: For our Pro and Enterprise plans, we offer configurations that support HIPAA compliance for clients requiring strict healthcare data management. BAA agreements available on request.

Incident response

If a security vulnerability is identified in the software stack, we have an automated patching system. We test, verify, and deploy security patches across your dedicated server without you having to intervene. Our incident response team monitors for anomalous activity around the clock and is alerted to intervene should any potential breach occur. Critical patches are deployed within hours, not days.

User data rights

You own your data. Full stop. We provide tools to:

  • Export: Download your entire knowledge graph, logs, conversation history, and database at any time. Your data in your hands, in standard formats.
  • Deletion: Permanently wipe your server data when you cancel your subscription. Once your service ends, your dedicated server is scrubbed of all information. No residual data, no hidden copies.

Security questions

Yes. Your assistant runs on a dedicated server that only you access. We manage the infrastructure — uptime, updates, security patches — but we never access your data. Our zero-access policy means we have no technical way to view your information.

No. Our infrastructure team operates on a zero-access policy. We have no technical way to query your databases, view your chat logs, or inspect your files. We manage your server's health, not its contents.

Yes. OpenClaw is fully open source. Every line of code is publicly available for inspection. Security through obscurity is not our approach — verifiable security is the only standard that matters.

We export your data for download and hold it for 30 days in case you come back. After that, your dedicated server is permanently scrubbed of all information. No exceptions.

For Pro and Enterprise plans, we offer configurations that support HIPAA compliance for clients requiring strict healthcare data management. Our infrastructure follows rigorous internal controls consistent with SOC 2 principles.

AES-256 encryption at rest for all data on your server, and TLS 1.3 encryption in transit for all communications between you, your messaging apps, and your server. Encryption is standard, not optional.

Security is not a static goal. It is an ongoing practice. We are committed to maintaining the highest standard for your data so you can focus on your work with confidence.

Explore our OpenClaw features to see the full platform, learn how OpenClaw hosting works, or see how we compare to self-hosting and SaaS alternatives.

Get Started — Plans from $49/mo