Data Processing Agreement (DPA) — Mirixu
1. Parties
This DPA is between Indrit Vaka (the "Processor") and the user (the "Controller") who uses Mirixu to automate social interactions.
2. Subject & Duration
This DPA governs processing of personal data carried out to provide the automation service. Processing duration equals the term of service or until deletion requested.
3. Nature & Purpose of Processing
Processing includes connecting to Instagram, reading interaction content, and sending automated responses via configured automations and AI assistance (OpenRouter).
4. Categories of Data
Account info, Instagram IDs, messages/comments text, tokens (encrypted), and analytics data.
5. Security Measures
Processor uses reasonable security measures: encrypted storage, TLS for transport, access controls, and encrypted token storage.
6. Subprocessors
Subprocessors include hosting providers (Contabo), analytics (Google Analytics), and AI routing (OpenRouter). We ensure contractual safeguards with subprocessors where applicable.
7. Controller Rights
Controllers can request access, rectification, deletion, or data portability by contacting automations.iv@gmail.com.
8. Contact
For DPA or data processing queries: automations.iv@gmail.com