Data Processing Addendum
Data Processing Addendum (DPA)
Last Updated: December 9, 2025
This Data Processing Addendum ("DPA") forms part of the Terms of Service (the "Agreement") between Agentic World, LLC, doing business as Agent Berlin ("Agent Berlin", "we", or "us"), and the customer agreeing to these terms ("Customer" or "you"). This DPA describes how we handle data in connection with the Agent Berlin Services.
1. Nature of Data Processed
Agent Berlin is an SEO analytics and content platform. We primarily process business analytics data, not personal data of end users. The data we handle includes:
- Search Analytics: Google Search Console data (search queries, impressions, clicks, rankings, URLs) - this is aggregated website performance data
- Traffic Analytics: Google Analytics data (page views, traffic sources, conversion metrics) - aggregated website statistics
- Website Content: Publicly available page content, metadata, and SEO elements from Customer's website
- Integration Credentials: API keys and OAuth tokens for connected services (encrypted at rest)
The only personal data we process is basic account information (email address and name) for Customer's authorized users to access the Service.
2. Data Processing Locations
All Customer data is processed and stored in the United States, using Amazon Web Services (AWS) and Supabase infrastructure.
3. Security Measures
Agent Berlin implements appropriate security measures to protect Customer data:
- Encryption in Transit: All data transmitted using TLS 1.2+
- Encryption at Rest: AES-256 encryption for stored data; additional application-level encryption for credentials
- Access Control: Role-based access, database-level isolation, restricted production access
- Infrastructure: Hosted on AWS (SOC 2 certified), with VPC isolation and DDoS protection
- Monitoring: Automated uptime and security monitoring with real-time alerting
4. Third-Party Services
We use the following third-party services to provide the Agent Berlin platform:
| Service | Purpose | Location |
|---|---|---|
| Amazon Web Services | Cloud infrastructure and hosting | United States |
| Supabase | Database and authentication | United States |
| OpenAI / Anthropic / Google | AI-powered content generation | United States |
| Stripe | Payment processing | United States |
| Cloudflare | CDN and security | Global |
5. Data Retention and Deletion
We retain Customer data for the duration of the subscription. Upon cancellation or deletion request:
- Account is immediately deactivated
- All data is permanently deleted within 30 days
- Immediate deletion available upon request at hello@agentberlin.ai
6. Security Incidents
In the event of a security incident affecting Customer data, Agent Berlin will notify the Customer within 72 hours, including a description of the incident and measures taken to address it.
7. Compliance
Agent Berlin is committed to maintaining appropriate security standards. We are actively working towards SOC 2 certification and compliance with applicable data protection regulations. Documentation regarding our security practices is available upon request.
8. Contact
For questions regarding this DPA or data handling practices, please contact us at hello@agentberlin.ai.
By using the Agent Berlin Services, Customer agrees to this Data Processing Addendum. For a signed copy of this DPA or to discuss enterprise requirements, please contact hello@agentberlin.ai.