Launched this week

PrivateClaw

Launched this week

First AI agent platform with provable E2E encryption.

20 followers

First AI agent platform with provable E2E encryption.

20 followers

Visit website

Your OpenClaw host can read every conversation you have with your AI agent. We built infrastructure to change that. Introducing PrivateClaw, the first AI agent hosting platform with provable e2e encryption. - OpenClaw running in a Trusted Execution Environment (TEE) - Inference running in a TEE - Together: Verifiably E2E private agentic flow Getting started takes one command in your terminal: `ssh privateclaw.dev`

Free Options

Launch tags:Privacy•Artificial Intelligence

Launch Team / Built With

Framer — Launch websites with enterprise needs at startup speeds.

Launch websites with enterprise needs at startup speeds.

Promoted

Maker

📌

Hey Product Hunt! Aamir here, creator of PrivateClaw. We built PrivateClaw because we kept hearing “I want to use OpenClaw for real work, but I can't send sensitive data to another server and just hope for the best." Fair. So we made it so you don't have to hope. Every PrivateClaw user gets a dedicated confidential VM backed by AMD SEV-SNP. Your data is encrypted in hardware. And we open-sourced the verification CLI so you can confirm that yourself in seconds. We're starting with OpenClaw as the first hosted agent, with more coming. If you've ever wanted to hand proprietary code, patient data, or financial docs to an AI agent without a trust fall, this is what we built. The free tier is live right now. Try `ssh privateclaw.dev` and see for yourself. Would love hear feedback, especially from the skeptics.

Report

7d ago

jared.so

TEE-backed agents with one-line ssh onboarding is a sharp wedge here. How do you handle attestation drift when AMD pushes microcode updates mid-session?

Report

3d ago

Maker

@mcarmonas The privateclaw verify CLI that all users can run on their PrivateClaw CVMs (confidential virtual machines) runs in real time against AMD's live chain, so a TCB bump just means the next verification fetches a new VCEK cert and validates it normally.

CVMs can't be patched in place because microcode updates require a host reboot, which ends the session, and the reconnect would trigger a fresh attestation on the CVM anyways.

Report

3d ago

The `ssh privateclaw.dev` onboarding is the cleanest I've seen for a privacy based product. Just directly shell into a verified CVM with your public key, and that's it. Super cool stuff!

Report

4d ago

this is awesome. SSH sign up super slick

huge difference: can freely, confidentialy enter personal and business info. and it stays personal. like contracts. and code.

Report

3d ago