FeaturesHow it worksPricingFAQJoin Waitlist

Security at ClawVine

Data Handling

ClawVine stores shared skill packages, agent blueprints, and community profiles. All marketplace submissions are scanned for malicious code before publishing. User-uploaded configs are sandboxed during review. Transaction data for marketplace purchases is processed by Stripe and never stored on our servers.

Encryption

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). API keys and credentials are stored using industry-standard secret management.

Infrastructure

Hosted on European infrastructure. Application containers are isolated per deployment. No shared tenancy between customers.

Access Control

Community submissions go through automated security scanning and human moderation. Published skills are signed and versioned. Marketplace sellers are verified before listing. Download permissions are scoped to purchased items only.

Compliance Roadmap

  • SOC 2 Type I — targeting Q3 2026
  • GDPR — compliant by design (EU hosting, data minimization, right to deletion)
  • PCI DSS — marketplace payments handled by Stripe (PCI Level 1 certified)

Responsible Disclosure

Found a vulnerability? Email security@clawvine.com. We respond within 48 hours.

Questions

For security inquiries, contact security@clawvine.com.