Security

Your server. Your data. Your AI agent. Locked down.

MyEcomClaw deploys OpenClaw on your own private server — a VPS or Mac Mini that you own. Your Shopify data, API keys, and customer information never touch our infrastructure. Every deployment is hardened with e-commerce-grade security.

The part nobody mentions: 42,665 OpenClaw instances were found exposed on the public internet. That is what happens when security is an afterthought.

The Reality

The OpenClaw security landscape in 2026.

42,665

Exposed OpenClaw instances found on the public internet

12,812

Exploitable via remote code execution

1,184

Malicious skills historically published to ClawHub

13.4%

Of ClawHub skills with critical security issues (Snyk audit)

Sources: Bitdefender, Snyk, NVD, Antiy Labs. CVE-2026-25253 allows one-click full machine compromise (CVSS 8.8). China's CNCERT, Microsoft, and the University of Toronto have all issued formal warnings about OpenClaw risks.

Architecture

Eight security pillars. Every deployment.

Every MyEcomClaw deployment implements all of these on your own server. No exceptions. No optional add-ons. This is the baseline.

Your server, your data

Every client gets their own VPS or Mac Mini. Your Shopify data, API keys, and customer information never touch MyEcomClaw servers. You own the server, the data, and the agent.

If you leave, you keep everything. No data hostage. No lock-in.

Docker sandboxing

Your OpenClaw agent runs in a locked-down container: non-root user, read-only filesystem, all Linux capabilities dropped, no privilege escalation. Even if the agent goes rogue, it cannot access the host system.

Most self-deployers skip this. We enforce it on every single deployment.

Tailscale VPN access

The Gateway binds to localhost only on your server. No public port exposure. All remote access goes through Tailscale — a zero-config mesh VPN. No one on the public internet can reach your agent.

42,665 exposed OpenClaw panels were found online. Ours: zero.

Composio OAuth credential isolation

Your Shopify OAuth tokens are encrypted in Composio's SOC 2 Type 2 compliant vault. The agent only receives a proxy token — it never sees your raw Shopify credentials. One-click revocation.

Even a fully compromised container cannot extract your Shopify API secrets.

BYOK API key model

Your LLM API keys (OpenAI, Anthropic) are stored as environment variables on your server. MyEcomClaw never sees, stores, or proxies them. You control your AI spend and can revoke keys instantly.

No central key store. No single point of compromise.

SOC 2 compliance via Composio

Composio handles OAuth credential storage with SOC 2 Type 2 certified infrastructure. AES-256 encryption, automatic token refresh, full audit trails. Your Shopify credentials get enterprise-grade protection.

The same credential security used by companies with dedicated security teams.

Encryption at rest and in transit

All data on your server is encrypted at rest. All API communication uses TLS 1.3. PII is redacted from logs. Agent queries use order IDs and transaction IDs, never customer names or addresses.

Your customer data is protected at every layer of the stack.

No data on MyEcomClaw servers

This is the architectural difference. We configure and maintain software on your infrastructure. We do not hold your data. Your Shopify orders, customer records, and inventory stay on your server.

If MyEcomClaw were ever breached, your data would not be affected — because we do not have it.

Data Flow

Where your data lives. And where it does not.

On YOUR server

  • Shopify orders, customers, and inventory data
  • Your BYOK LLM API keys (OpenAI, Anthropic)
  • OpenClaw agent configuration and skills
  • Agent memory and conversation history
  • SOUL.md safety constraints (read-only)
  • Audit logs with timestamps and actions
  • All PII — names, emails, addresses

NOT on MyEcomClaw servers

  • No Shopify data — orders, customers, products
  • No API keys — LLM, Shopify, or otherwise
  • No customer PII — names, emails, addresses
  • No agent conversation logs
  • No payment metadata
  • No inventory or stock data
  • No copies of your configuration

The architectural advantage of per-client isolation.

Every client gets their own server. No shared databases, no shared credentials, no lateral movement. If one server is compromised, zero other clients are affected. This is the deployment model that Microsoft's security team explicitly recommends for OpenClaw.

When Microsoft says “deploy only in a fully isolated environment such as a dedicated virtual machine,” that is exactly what MyEcomClaw does — for every client, on every deployment.

Defense in Depth

Additional protection layers.

Beyond the core architecture, every deployment includes operational security controls specific to e-commerce.

Human approval gates

Refunds, cancellations, price changes, bulk operations, and customer-facing content all require human sign-off. The agent drafts — you approve.

Minimal Shopify API scopes

Agents get read_orders and read_products via Shopify Custom App, not admin access. Write permissions only for specific, approved operations.

Payment isolation

Agents never see card numbers. Shopify Payments / Stripe tokenization keeps PCI scope at SAQ-A (simplest level). Transaction limits enforced at the tool level.

Curated skills registry

Every skill is code-reviewed before installation. Only Shopify-specific skills from our audited registry. No ClawHub auto-install. No typosquatted malware.

26-point security audit

Run on your server at deployment and monthly. Includes OpenClaw's built-in 78-check audit plus our automated verification script.

CVE monitoring and patching

We track all OpenClaw CVEs and apply patches within 48 hours of critical disclosures. CVE-2026-25253 (CVSS 8.8, one-click RCE) was patched same-week across all deployments.

Compliance

Built for compliance. Not bolted on.

PCI DSS
SAQ-A (simplest level). Agents never process, store, or transmit cardholder data. All payments handled by Shopify Payments / Stripe.
GDPR
Data stays on your server (any EU region). DPA templates provided. Composio OAuth for consent. Right to erasure supported via server wipe.
CCPA
Full audit logs on your server. You control deletion. Agent SOUL.md respects opt-out lists. Service provider agreement templates included.
EU AI Act
Agents self-identify as AI in every conversation. Human approval gates for all financial actions. Full audit trails. 90-day log retention.
SOC 2
Composio (credential provider) maintains SOC 2 Type 2. Per-client server isolation simplifies audit scope for your business.
FAQ

Security questions, answered.

No. Your Shopify data stays on your server. We configure and maintain the OpenClaw agent on your infrastructure, but we do not store, copy, or process your data on our servers. If we need to troubleshoot, we access your server via Tailscale VPN with your explicit permission.

You keep everything. The server, the agent, the configuration, the data — it is all yours. OpenClaw is MIT licensed. You have full SSH access. If you cancel, you can continue running the agent yourself. No data hostage, no lock-in.

You provide your own OpenAI or Anthropic API key, and it is stored as an environment variable on your server. Your agent calls the LLM provider directly at their rates — no markup from us. MyEcomClaw never sees, stores, or proxies your API key. If you prefer not to manage keys, optional managed credit packs start at $49/mo on Growth and Scale plans.

No. The OpenClaw Gateway binds to 127.0.0.1 (localhost) only on your server. We configure the DOCKER-USER iptables chain to block public access — the firewall layer that Docker bypasses by default and that 90% of self-deployers miss. All remote access goes through Tailscale VPN.

When you connect your Shopify store, Composio handles the OAuth handshake and stores your access_token and refresh_token in their SOC 2 Type 2 compliant vault with AES-256 encryption. The OpenClaw agent on your server only receives a proxy token — it never has your raw Shopify credentials. You can revoke all agent access with one click from the Composio dashboard.

Composio (our OAuth credential provider) maintains SOC 2 Type 2 certification. MyEcomClaw's per-client server model simplifies compliance: your data is self-contained on your own infrastructure. For Shopify payment processing, we maintain SAQ-A (simplest PCI level) because agents never touch raw card data. We also provide DPA templates for GDPR compliance.

Our incident response protocol: detection within minutes via monitoring, containment within 15 minutes (kill agent, revoke OAuth, isolate VPS via Tailscale), customer notification within 2 hours. If your server is compromised, we nuke it and rebuild fresh from templates — we do not try to clean a compromised server. Because each client has their own server, a compromise is contained to that single client with zero blast radius to others.

All safety constraints live in system-level SOUL.md configuration files stored in read-only volume mounts — the agent cannot modify its own rules. Write operations require explicit human approval through tool-level enforcement, not just prompt instructions. Transaction limits are enforced at the tool layer: the agent physically cannot execute destructive operations even if its prompt instructions are lost during context compaction.

See how we compare to DIY OpenClaw on security and everything else. MyEcomClaw vs DIY OpenClaw.

Want to understand the full product? How MyEcomClaw works.

Get a Security Assessment

Know exactly where your OpenClaw deployment stands.

Already running OpenClaw? We will audit your setup and tell you exactly what is exposed. New to OpenClaw? We will deploy it on your server, hardened from Day 1. Starting at $299/mo.

See Pricing Request a Security Audit