── SIDECAR PRIVACY
Privacy Policy
Sidecar is a local-first gateway that users can run beside Hermes/OpenClaw-style agents. This policy describes the public FXA Digital site and the data behavior of a Sidecar deployment.
Public Website
The public fxa.digital site may collect basic request and analytics data, plus information a visitor chooses to send through contact channels. FXA Digital uses this information to operate the site, respond to inquiries, and improve public product materials.
Self-Hosted Runtime Data
Sidecar runtime data is controlled by the user's deployment. Depending on configuration, Sidecar may store provider settings, OAuth tokens, agent credentials, chat history, conversation metadata, mobile pairing tokens, approval records, and diagnostic logs in the user's runtime storage, including SQLite or configured Docker volumes.
Connected Providers
Users decide which providers to configure. Sidecar may send user requests, tool context, and approved actions to configured providers such as Google, Todoist, YNAB, the user's agent backend, or other services selected by the user. FXA Digital does not receive that runtime data unless the user routes Sidecar through FXA Digital services or shares the data for support.
Public HTTPS Exposure
For DayChief v1 workflows, Sidecar is designed to be reachable through a public HTTPS origin, such as Cloudflare Tunnel. Users are responsible for securing that origin, protecting admin access, managing pairing tokens, and disabling exposure when it is no longer needed.
Support
If a user asks FXA Digital for support, they may choose to share logs, configuration details, screenshots, or other diagnostic information. FXA Digital uses support data to troubleshoot the issue and communicate with the user.
Contact
For privacy questions, contact FXA Digital Solutions LLC at [email protected].