Data Processing Agreement (DPA)

This DPA forms part of your Terms of Service with ContentBrain ("Processor") and your organisation ("Controller"). Effective: 2026-05-20.

Subject matter

Processing of personal data the Controller uploads to or processes via ContentBrain in the course of using the Service.

Duration

For the term of the Service subscription plus 30 days for export.

Nature and purpose

Generation, verification, scheduling and publication of marketing content; observability of agent runs; storage of workspace configuration.

Categories of data subjects

  • Controller's end-users (employees) who operate the Service.
  • Audience individuals referenced in workspace content (typically only aggregate or non-identifying).

Sub-processors

OpenRouter (LLM gateway), DataForSEO (SERP analytics), Black Forest Labs (Flux.2 image gen), Google (Nano Banana image gen, optional), Deepgram (speech-to-text), Stripe (billing), social platforms (Meta, TikTok, LinkedIn, X, YouTube, Pinterest — per-workspace OAuth).

Security measures

  • Encryption in transit (TLS 1.3) and at rest (filesystem + DB).
  • Tenant isolation: Postgres RLS, Qdrant payload filter, per-tenant FalkorDB graph.
  • Secrets bound server-side at tool execution; never sent to LLM.
  • HMAC + content digest on agent handoffs (resume_reference).
  • Nightly tenant-isolation fuzz suite (1000 randomised cross-tenant probes).
  • Image signing with cosign keyless; supply chain scanned by Trivy + gitleaks.

Sub-processor changes

Controller will be notified at least 30 days before any new sub-processor is engaged and may object in writing within that period.

Audit rights

Annual SOC 2 Type II report available under NDA; bespoke audits on Enterprise plan only.