Data Processing Addendum

This Data Processing Addendum ("DPA") forms part of the Terms of Service (the "Agreement") between Agentic World, LLC, doing business as Agent Berlin ("Agent Berlin", "we", or "us"), and the customer agreeing to these terms ("Customer" or "you"). This DPA describes how we handle data in connection with the Agent Berlin Services.

1. Nature of Data Processed

Agent Berlin is an SEO analytics and content platform. We primarily process business analytics data, not personal data of end users. The data we handle includes:

Search Analytics: Google Search Console data (search queries, impressions, clicks, rankings, URLs) - this is aggregated website performance data
Traffic Analytics: Google Analytics data (page views, traffic sources, conversion metrics) - aggregated website statistics
Website Content: Publicly available page content, metadata, and SEO elements from Customer's website
Integration Credentials: API keys and OAuth tokens for connected services (encrypted at rest)

The only personal data we process is basic account information (email address and name) for Customer's authorized users to access the Service.

2. Data Processing Locations

All Customer data is processed and stored in the United States, using Amazon Web Services (AWS) and Supabase infrastructure.

3. Security Measures

Agent Berlin implements appropriate security measures to protect Customer data:

Encryption in Transit: All data transmitted using TLS 1.2+
Encryption at Rest: AES-256 encryption for stored data; additional application-level encryption for credentials
Access Control: Role-based access, database-level isolation, restricted production access
Infrastructure: Hosted on AWS (SOC 2 certified), with VPC isolation and DDoS protection
Monitoring: Automated uptime and security monitoring with real-time alerting

4. Third-Party Services

We use the following third-party services to provide the Agent Berlin platform:

Service	Purpose	Location
Amazon Web Services	Cloud infrastructure and hosting	United States
Supabase	Database and authentication	United States
OpenAI / Anthropic / Google	AI-powered content generation	United States
Stripe	Payment processing	United States
Cloudflare	CDN and security	Global

5. Data Retention and Deletion

We retain Customer data for the duration of the subscription. Upon cancellation or deletion request:

Account is immediately deactivated
All data is permanently deleted within 30 days
Immediate deletion available upon request at hello@agentberlin.ai

6. Security Incidents

In the event of a security incident affecting Customer data, Agent Berlin will notify the Customer within 72 hours, including a description of the incident and measures taken to address it.

7. Compliance

Agent Berlin is committed to maintaining appropriate security standards. We are actively working towards SOC 2 certification and compliance with applicable data protection regulations. Documentation regarding our security practices is available upon request.

8. Contact

For questions regarding this DPA or data handling practices, please contact us at hello@agentberlin.ai.

By using the Agent Berlin Services, Customer agrees to this Data Processing Addendum. For a signed copy of this DPA or to discuss enterprise requirements, please contact hello@agentberlin.ai.

Data Processing Addendum (DPA)