Audit question #1: Where does it run?

Pick one: - **Your computer (local)** — a Mac, a PC, or a laptop on your desk - **A small device at home (like a Raspberry Pi or Mac Mini)** - **A rented server (VPS)** — DigitalOcean, Linode, Hetzner, etc.

Audit question #2: Is anything exposed to the public internet?

You don't need to know what a "port" is to answer this.

The 2-Question AI Privacy Audit (Non-Technical): Are You Leaking Data Without Knowing?

Check two things: (1) Where does your AI run — your computer, a home device, or a VPS? Each has different privacy gotchas. (2) Is anything exposed to the public internet? Turn off Wi-Fi on your phone and try to access your AI — if you can, something is exposed. The #1 risk isn't AI itself, it's accidental exposure: 135,000+ OpenClaw instances were found publicly accessible due to configuration mistakes.