CoreClaw Privacy Policy

Welcome to CoreClaw (hereinafter referred to as "we," "the Platform," or "our services"). We are committed to building an ecosystem that connects developers with data seekers:

• Developers can upload audited scripts (crawlers) and earn revenue;
• Users (data seekers) can run these scripts to obtain required data;
• We provide a stable and efficient cloud execution environment and management services.

We deeply understand the importance of privacy and are committed to handling your personal information transparently. This Privacy Policy is designed to clearly explain how we collect, use, store, share, and protect your information when you visit our website, use the script market, execution environment, and related services.

Warm Reminder: Before using CoreClaw, please be sure to carefully read and understand this policy. Once you start or continue to use our services, it means you agree to our processing of your information in accordance with the provisions of this policy.

1. Scope and Definition of Roles

In order to clarify data processing responsibilities, we distinguish the following roles according to different service scenarios:

1.1 CoreClaw as "Data Controller"

When processing information directly related to your personal account and platform use (such as your registration information, billing, withdrawal accounts, etc.), we act as the data controller. This Privacy Policy mainly regulates our data processing activities in this role.

1.2 CoreClaw as "Data Processor"

When you run scripts on the platform to scrape third-party website data, you (the script runner) are the decider and controller of the scraping targets, parameters, and final data. In this scenario, CoreClaw acts only as the technical infrastructure and instruction executor (Data Processor) to run the code for you. You are obligated to ensure:

• Your data scraping behavior fully complies with the "CoreClaw Terms of Service"; (Hyperlink: https://docs.coreclaw.com/platform-policies/terms-of-service
• ompliance with relevant laws and regulations;
• Compliance with the regulations of the target website (such as the Robots protocol).
• We do not assume control responsibility for the content and purpose of such data.

2. What Information Do We Collect?

In order to provide, maintain, and improve our services, and to ensure the smooth progress of transactions and settlements, we need to collect the following information.

2.1 Information You Provide Directly

Account and Identity Information: Email address, username, and password hash filled in during registration. If you choose to log in through a third-party account (such as GitHub, Google), we will receive basic profile information authorized and shared by that platform (such as public ID, avatar).

Transaction and Financial Information:

• For Script Users: In order to complete the payment of service fees, we need to process your payment information through cooperative payment processors (such as credit cards, PayPal). We do not directly store complete sensitive payment information such as full credit card numbers.
• For Script Developers: In order to pay commissions to you, we need you to provide valid receiving account information (such as bank account, PayPal account, cryptocurrency wallet address) and necessary identity verification information (such as name, tax identification number) to fulfill tax compliance obligations.
• Public Profile and Creative Content: The biography, skill tags, and social media links you voluntarily fill in on the personal profile page, as well as script code, description documents, and related configuration information you upload to the platform.
• Communication Records: Information generated when you interact with us or other platform users through customer service channels, emails, or community forums.

2.2 Information We Collect Automatically

When you visit the website or use the services, the system may automatically generate and collect:

• Device and Log Information: IP address, browser type and version, operating system, device identifier, access date and timestamp, requested URL, and referring page.
• Service Usage Data: Script initiation, runtime duration, consumed computing resources and data traffic, success/failure status, API call frequency, and platform function usage preferences. This data is used for billing, performance monitoring, and platform optimization.
• Cookies and Similar Technologies: We use tools such as cookies and web beacons to:
  • Maintain your login session state;
  • Remember your preference settings;
  • Analyze website traffic patterns;
  • Evaluate the effectiveness of marketing activities.
• Cookie Types:
  • Necessary Cookies: Required for the normal operation of the website and cannot be disabled.
  • Functional Cookies: Remember your preference settings.
  • Analytical Cookies: Help us improve the website.
  • Marketing Cookies: Used for personalized marketing (requires your consent).

You can manage cookie preferences through browser settings, but please note that disabling certain core cookies may affect the normal use of website functions.

3. How Do We Use Your Information?

We process your information based on the following legitimate purposes:

• 3.1 Service Provision and Contract Performance: Creating and managing your account; verifying identity; executing scripts you specify; providing storage and computing resources; processing payments and commission settlements.
• 3.2 Platform Operation and Improvement: Analyzing overall usage trends to optimize server performance; improving the user interface; developing new functions; making personalized script recommendations based on your usage history.
• 3.3 Security, Risk Control, and Compliance: Detecting and preventing fraudulent transactions; preventing abusive behavior (such as malicious scripts, DDoS attacks); protecting the safety of the platform and users; fulfilling statutory financial record-keeping and tax declaration obligations.
• 3.4 Communication and Support: Sending you necessary notices directly related to the service (such as script run completion/failure alerts, billing reminders, major changes to terms of service or policies). With your consent, we may send you marketing content such as product updates and event information (you can unsubscribe at any time through the unsubscribe link in the email).
• 3.5 Legal Obligations: Responding to legitimate requests made by law enforcement departments or other government agencies under legal authorization.

4. How Do We Share and Disclose Your Information?

We only share your information with the following categories of recipients when necessary, and will bind their protection obligations through contracts:

• 4.1 Necessary Third-party Service Providers: Partners who provide us with infrastructure, payment processing, email push, data analysis, customer support, and security protection services (such as cloud server providers, payment gateways, email services). They can only process data according to our instructions.
• 4.2 Public Information in the Script Market: As a developer, the public username, personal biography, script list and its description, and performance indicators (such as number of runs, ratings) you choose will be visible to other platform users to promote market trust and transactions.
• 4.3 Based on Legal Requirements or Protection of Rights and Interests: If we are convinced that disclosing information is necessary to comply with laws, regulations, subpoenas, or court orders, or to protect the rights, property, and safety of CoreClaw, users, or the public from harm (such as investigating potential fraud or illegal acts).
• 4.4 Business Reorganization Events: If a merger, acquisition, asset transfer, or bankruptcy reorganization occurs, your personal information may be transferred as part of the transaction assets. We will ensure that the transferee continues to be bound by this Privacy Policy or notify you otherwise.
• 4.5 Public Forums: If you post information on our public forums, communities, or message boards, this information may be accessed by the public. Please note that any information you disclose in such areas does not bear privacy protection obligations.

5. Data Storage and Security

5.1 Storage Location and Cross-border Transfer:

Your information may be stored on servers of ours or our service providers located around the world. We will take appropriate legal mechanisms to ensure that cross-border data transmission complies with applicable data protection laws, including:

• EU-US Data Privacy Framework (if applicable)
• Standard Contractual Clauses (SCC)
• Binding Corporate Rules (BCR)

5.2 Security Measures:

We implement industry-standard physical, technical, and organizational measures to protect your information, including but not limited to:

• Encrypted transmission (SSL/TLS)
• Data access rights control
• Regular security audits
• Employee privacy training
• However, please note that no internet transmission or electronic storage method is 100% secure.

5.3 Data Retention Period:

As long as your account is active, we will retain your personal information. After you cancel your account, we will retain data according to the following periods:

Anonymization or secure deletion will be carried out after the expiration date.

6. Data Breach Notification Mechanism

If a security incident affecting your personal information occurs, we will notify you through one of the following methods within 72 hours after discovery

• Website announcement
• Email notification
• In-platform message

The notification content will include: the type of information leaked; possible impacts; remedial measures we have taken; and protective measures you can take.

7. Your Rights Control Over Personal Information

According to the data protection laws of your location (such as the EU's GDPR, California's CCPA/CPRA, etc.), you may enjoy the following rights:

• 7.1 Access and Obtain Copies: Request confirmation of whether we are processing your personal information and obtain a copy of it.
• 7.2 Rectification: Request correction of inaccurate or incomplete personal information.
• 7.3 Erasure: Under specific conditions (such as the data is no longer needed, you withdraw consent), request the deletion of your personal information.
• 7.4 Restrict or Object to Processing: Request restriction or, in specific circumstances, object to our processing of your information.
• 7.5 Data Portability: Request to obtain the personal information you provided to us in a structured, commonly used, machine-readable format, and have the right to transmit it to another controller.
• 7.6 Withdraw Consent: For processing based on consent, you have the right to withdraw consent at any time, but this does not affect the lawfulness of the processing carried out before the withdrawal.
• 7.7 Not be Subject to Automated Decision-making: We will not make decisions that have legal or similar major impacts on you based solely on automated processing (including user profiling).
• 7.8 How to Exercise Rights: To exercise the above rights, please submit a request through the contact information in Section 12. For security reasons, we may need to verify your identity before processing the request.

8. Account Cancellation Process

You can apply to cancel your account at any time. The cancellation process is as follows:

• Log in to your account, enter "Account Settings"
• Click the "Cancel Account" button
• Confirm the cancellation application
• The system will complete the cancellation and delete personal data within 7 days (except for the retention period stipulated by law)

9. Special Instructions for Script Developers

The script code you upload is the core value of the platform. In addition to personal information, please note:

• We have the right to perform necessary security scans and content reviews on the scripts you submit to prevent malicious code, viruses, or violations of the terms of service;
• The scripts you upload will be authorized, distributed, and commission-settled on the platform according to the intellectual property provisions in the "CoreClaw Terms of Service".

10. Minor Privacy

CoreClaw/'s services are only intended for adults over the age of 18. We do not intentionally collect personal information from minors. If we find that such information has been collected inadvertently, we will:

• Delete relevant information immediately;
• Notify relevant guardians (if identifiable);
• Strengthen identity verification mechanisms to prevent minors from registering. If you are a parent or guardian and believe your child has provided information to us, please contact us immediately.

11. Updates to This Policy

We may update this Privacy Policy from time to time to reflect changes in services, technology, or laws. After the update, we will update the "Last Updated" date at the top of this page and notify you through website announcements or emails (for major changes). We recommend that you check this policy regularly. Your continued use of our services after the changes take effect means you accept the revised policy.

12. Contact Us

If you have any questions, comments, or concerns about this Privacy Policy, our data processing practices, or wish to exercise your privacy rights, please contact us through the official email

Email: support@coreclaw.com