ClawSimple

ClawSimple claims per-user isolation with 'dedicated server per user' and 'dedicated, isolated environments secured by one-time passwords.' Privacy policy states 'We collect minimal data necessary' and 'We do not use tracking or advertising cookies.' No mention of encryption at rest, data retention details, log sanitization, or AI training opt-out. Isolation claim is specific (dedicated servers) which is a meaningful architectural detail.

Setup comparison blog documents specific mitigations: 'Automatic dmPolicy: allowlist configuration', 'Tool sandboxing enabled by default', and 'Zero-access mode (no SSH keys retained).' UserId blog explains allowlist-based access control preventing prompt injection from unauthorized users. No mention of hardware-enforced sandboxing specifics, memory integrity protection, output sanitization, or container escape prevention.

Strongest area. Privacy policy states 'We do not store your API keys—after your server is initialized, your keys are discarded.' Homepage reiterates 'Your keys are only used once to set up. We never store them.' Setup blog adds 'No SSH keys retained - ClawSimple cannot access your server after deployment' and 'Your server never sees the provider API key' for managed presets. 'Emergency rescue password provided to you only.'

Setup blog mentions 'Tool sandboxing enabled by default' and UserId allowlist restricts interaction. No documentation about least-privilege, resource limits, rate limiting, kill switches, behavioral monitoring, or high-risk tool classification. Roadmap item 'Skills install through a multiple-choice picker' suggests skill management is currently limited.

No information about backups, data export, or disaster recovery. Roadmap reveals a user complained that 'redeploying would delete all data because the website doesn't know my server password and can only destroy and restart.' 'One-click server transfer' listed as 'Considering.' No SLA, no uptime guarantees. Terms disclaim liability for 'data loss, service interruptions.'

Pricing clearly documented: BYOK $11.58/mo yearly, Standard $20.75/mo, Max $29.08/mo. Pricing blog provided advance notice and 'Legacy Price Protection' for existing subscribers. Managed plan includes 'Usage caps to prevent bill shock.' Terms state 'We may update these terms at any time' with no required notification period.

No audit logging, incident response, breach notification, or agent action audit trail documented. No GDPR, data jurisdiction, or regulatory framework mentioned. Terms and Privacy very brief. About page contains no team, company registration, or legal entity info. No security contact or responsible disclosure.

Setup blog mentions 'VirusTotal skill scanning integration' and 'Regular security patches' as claims without evidence. No dependency scanning, SBOM, build pipeline integrity, or MCP server vetting. Installer via 'curl -fsSL https://clawsimple.com/api/install | bash' is a concerning supply chain pattern.

Sign-in offers Google OAuth and magic link (no passwords). HTTPS. Setup blog mentions 'Cryptographically signed completion webhooks' and 'Public key verification for status checks.' No MFA, no security headers docs, no independent security testing, no bug bounty.

No information about hallucination mitigation, approval workflows, output verification, undo/rollback, or AI uncertainty transparency.