π‘οΈ V. SECURITY: trust infrastructure
Summary
Security separates reasoning (LangGraph) from execution (OpenClaw): physical lock, cage, vault, red button, GDPR purge.
Security physically separates reasoning (LangGraph) from execution (OpenClaw). Upstream washing and neutralization are described under READ β perception and sanitization .
- Physical security lock
- Role: Unbreachable gatekeeper to the real world.
- Function: Physically blocks any signal to OpenClaw until proof of authorization is provided.
- ποΈ The cage
- Concept: Every WRITE βοΈ action runs in a sealed space (Node Host).
- Security: The execution environment is created for the task then destroyed immediately. Zero data leakage between cases.
- ποΈ Vault & confidentiality
- Secrets: The agent uses your access (mail, CRM) via the Vault without ever being able to read or memorize credentials.
- Anonymization: The AI reasons on βneutralizedβ data (blurred KPIs) to protect trade secrets.
- π¨ Red button (break-glass)
- Role: Absolute takeover.
- Action: An emergency mechanism can instantly freeze all AI actions to return to 100% human control.
- β»οΈ Automatic purge (GDPR)
- Compliance: The system applies operational data purge mechanisms according to retention policies.
- Guarantee: The platform is designed to respect the right to be forgotten and legal retention cycles.
Continuity and reversibility
- Business continuity: if AI is paused, the firm keeps access to operational data and business tools.
- Reversibility: assisted mode can be suspended without damaging active casework.
- Recovery: restart follows the same safety and governance rules.
Expert mode: technical proof
- Isolation of execution contexts.
- Break-glass for immediate takeover.
- Operational purge for GDPR compliance.