Privacy Policy

Effective Date: February 1, 2026 · Last Updated: February 1, 2026

The Short Version

Aight is a client application. We don't run servers. We don't have a database. We don't collect, store, transmit, or have access to your conversations, messages, AI interactions, files, or personal data. Your data stays on your device and your own infrastructure.

Aight ("the App," "we," "us," or "our") is published by Pangea Roads LLC. This Privacy Policy describes how the Aight iOS application handles your information. We wrote this to be clear, not to bury things in legalese.

1. Architecture — How Aight Works

Aight connects directly to your self-hosted OpenClaw (or compatible) instance — running on hardware or cloud infrastructure you own and operate. Aight is a client, not a platform. Think of it like a web browser: we built the window, not what's on the other side.

We do not operate servers, APIs, or backend infrastructure.
We do not relay, proxy, or route your traffic through our systems.
We do not have access to your OpenClaw gateway, your AI model provider accounts, or your conversations.
All communication happens directly between the Aight app on your device and your own OpenClaw instance.

2. Information We Do NOT Collect

Conversations and messages — All chat messages, AI responses, session history, and conversation metadata remain between your device and your OpenClaw instance. We never see them.
Voice recordings — Audio captured via push-to-talk or conversational mode is processed on-device for transcription or sent directly to your configured text-to-speech provider (see Section 5). We do not receive, store, or process your voice data.
Files and attachments — Photos, documents, and files you share with your AI are sent directly to your OpenClaw instance. We have no access to them.
AI memory and context — Your agent's memory files, personality configuration, skill data, and session context are stored on your infrastructure. We cannot access them.
Biometric data — Face ID and Touch ID authentication is handled entirely by Apple's Secure Enclave on your device. Biometric data never leaves your device and is never accessible to us or any third party.
Browsing or usage patterns — We do not track which features you use, how often you use the app, what skills you install, or any behavioral analytics.

3. Information Stored on Your Device

Aight stores the following data locally on your device only, using on-device encrypted storage (MMKV and iOS Secure Store):

Gateway connection details — The URL and authentication token for your OpenClaw instance.
Session metadata — Session names, star/pin status, and unread indicators for your local session list.
App preferences — Theme selection, voice mode settings, notification preferences, and other configuration choices.
Cached content — Temporary caches of session data for performance (e.g., message history, usage statistics retrieved from your gateway).

This data is stored only on your device. It is not transmitted to us or any third party. If you delete the app, this data is deleted.

4. Information We May Collect

4a. Email Address (Waitlist / TestFlight Only)

If you voluntarily provide your email address via our website waitlist or TestFlight signup form, we collect and store that email address solely for the purpose of:

Sending you a TestFlight invitation or launch notification.
One-time communication about Aight's availability.

We do not sell, share, or use your email for marketing beyond the launch notification. You may request deletion of your email at any time by contacting us at the address in Section 12.

4b. Apple-Provided Data

When you download Aight from the App Store or use TestFlight, Apple may provide us with:

Crash reports and diagnostics — Anonymized, aggregated crash data through App Store Connect, if you have opted in to sharing diagnostics with developers in your iOS settings.
App Store analytics — Aggregated, anonymized download and usage statistics provided by Apple (not individually identifiable).

This data is collected and processed by Apple under Apple's own Privacy Policy. We do not receive personally identifiable information through these channels.

5. Third-Party Services

Aight does not embed third-party analytics, advertising, or tracking SDKs. However, the following third-party services may process data as part of the app's functionality:

5a. Text-to-Speech (ElevenLabs)

If you enable voice responses in the app, AI-generated text may be sent to ElevenLabs (elevenlabs.io) for text-to-speech conversion. This connection is initiated from your OpenClaw instance (not from the Aight app directly). ElevenLabs' processing of this data is governed by ElevenLabs' Privacy Policy.

Note: The TTS API key and configuration are managed by your OpenClaw instance. Aight does not store or transmit ElevenLabs credentials.

5b. AI Model Providers

Your OpenClaw instance connects to AI model providers (such as Anthropic, OpenAI, Google, or local models) based on your configuration. These connections are between your OpenClaw instance and the provider — Aight does not intermediate or have visibility into these connections. Your use of these providers is governed by their respective terms and privacy policies.

5c. Apple Services

Aight uses standard Apple frameworks:

Local Authentication (Face ID / Touch ID) — Processed entirely on-device by Apple's Secure Enclave.
Speech Recognition — On-device speech-to-text processing using Apple's Speech framework. Audio is processed locally and not sent to Apple's servers (on-device mode).
Push Notifications — If you enable notifications, Apple's Push Notification service (APNs) delivers notifications to your device. Apple's processing is governed by Apple's Privacy Policy.
Local Network Discovery — Aight uses Bonjour (mDNS) to discover OpenClaw instances on your local network. This is a local protocol and does not transmit data to any external server.

6. Data Security

All data stored on your device uses iOS encrypted storage mechanisms (Secure Store for sensitive credentials, MMKV for app data).
Communication between Aight and your OpenClaw instance uses the connection method you configure (local network, Tailscale VPN, HTTPS, or other). The security of this connection depends on your configuration.
We strongly recommend using HTTPS or Tailscale for remote connections to your OpenClaw instance.
Because we do not collect or store your data, there is no centralized database that could be subject to a data breach on our end.

7. Children's Privacy

Aight is not directed at children under the age of 13 (or the applicable age of digital consent in your jurisdiction). We do not knowingly collect personal information from children. Because Aight connects to self-hosted AI infrastructure configured by the user, it is the user's responsibility to ensure appropriate use.

8. International Users

Aight does not collect or transfer personal data to any server, so there are no cross-border data transfers initiated by us. Data flows between your device and your own OpenClaw instance are determined by your infrastructure setup and are your responsibility.

9. Your Rights and Choices

Deletion — Uninstall the app to delete all locally stored data. To delete data on your OpenClaw instance, manage it through your own infrastructure.
Email removal — If you submitted your email for the waitlist, contact us to have it deleted.
Opt out of Apple diagnostics — Manage crash report sharing in iOS Settings → Privacy & Security → Analytics & Improvements.
Voice features — Voice features are opt-in. You can disable them at any time in the app's settings.

Because we do not collect personal data beyond what is described in Section 4, most data protection regulations (GDPR, CCPA, etc.) obligations regarding access, portability, and rectification do not apply to data we do not hold. For any requests related to your email address, contact us at the address below.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the "Last Updated" date at the top and, where appropriate, notify users through the app or our website. Your continued use of Aight after changes constitutes acceptance of the revised policy.

11. California Privacy Rights (CCPA)

Under the California Consumer Privacy Act, California residents have specific rights regarding their personal information. Because Aight does not collect, sell, or share personal information (as defined by the CCPA) beyond the limited email collection described in Section 4a:

We do not sell your personal information.
We do not share your personal information for cross-context behavioral advertising.
We do not use or disclose sensitive personal information for purposes beyond what is necessary.

California residents may contact us at the address below for any inquiries.

12. Contact

If you have questions about this Privacy Policy, contact us at:

Email: privacy@aight.cool
Website: https://aight.cool

Aight is a client application that connects to your self-hosted OpenClaw (or compatible) instance. Aight does not provide, host, or operate any AI models, agents, or backend infrastructure. AI responses, behavior, and data handling are determined by the user's own instance configuration, model provider, and API agreements.