law enforcement request policy

unOpen.AI utilizes a Zero-Knowledge Architecture. Each AI instance (based on the OpenClaw framework) operates within a private, hardware-isolated VPS sandbox.

• Encryption at Rest: All AI "memories," logs, and internal data are encrypted with keys generated and held exclusively by the User.
• No Administrative Access: unOpen.AI staff do not have the technical means to bypass this encryption, view chat logs, or inspect the internal state of a hosted AI agent.
• Implication: We cannot provide the content of communications or the "thoughts/memories" of an AI agent because we do not possess the keys to decrypt them.

unOpen.AI will only disclose data in response to valid, documented legal processes:

• Subpoenas: We may provide basic subscriber information (name, account email, IP address at registration) in response to a valid grand jury or administrative subpoena.
• Court Orders/Search Warrants: We require a warrant issued upon a showing of probable cause for the disclosure of non-content metadata (e.g., login logs, bandwidth usage history, or billing records).
• Content Data: As stated in Section 1, even with a warrant, unOpen.AI cannot provide decrypted content data. In such cases, we can only provide the encrypted data "blobs" as they exist on our hardware.

Because of our privacy-first hosting model, the data we can provide is limited to:

• Subscriber Information: Email address, name (if provided), and account status.
• Payment Information: Transaction IDs, payment dates, and the last four digits of the credit card (processed via our third-party payment gateways).
• Access Logs: IP addresses used to log into the unOpen.AI dashboard and timestamps of those logins.
• Note: We do not retain logs of the AI agent’s specific interactions with third-party websites or APIs unless specifically required for network troubleshooting.

In cases involving an immediate threat of death or serious physical injury to any person, unOpen.AI may exercise its discretion to disclose information without a warrant.

• These requests must be submitted via an official government email address and must clearly outline the nature of the emergency.
• Even in emergencies, our technical inability to decrypt user data remains a physical constraint.