Last updated: May 21, 2026
This Data Processing Agreement ("DPA") is entered into between:
Data Controller: You, the store owner ("Controller"), who determines the purposes and means of processing personal data of your customers.
Data Processor: MSB Robotics, operating Praevidens.ai ("Processor"), who processes personal data on your behalf to provide analytics and AI services.
The Processor processes personal data solely for the purpose of providing the Praevidens.ai platform services, including:
Aggregating and displaying order, customer, and revenue analytics
Calculating customer segments, cohorts, and purchase patterns
Generating AI-powered business insights and recommendations
Building consumer intelligence profiles (with consent)
Generating personalized offer emails (with consent)
Customers of the Controller's online store
Email subscribers of the Controller's store
Authorized users of the Controller's Praevidens.ai account
Email addresses (pseudonymized before AI processing)
Order history and purchase amounts
Product preferences and purchase frequency
Marketing consent status
IP-derived geographic data (via Google Analytics, not stored by us)
Purpose limitation: Process data only on documented instructions from the Controller and solely for the purposes described in this DPA.
Confidentiality: Ensure that persons authorized to process personal data have committed to confidentiality.
Security: Implement appropriate technical and organizational measures: TLS encryption in transit, encryption at rest, Row Level Security in database, rate limiting, audit logging for sensitive operations.
Sub-processors: Not engage another processor without prior written authorization. Current sub-processors: Supabase (database), Hetzner (hosting), Turso (memory graph), Anthropic (AI processing), Stripe (billing).
Data subject rights: Assist the Controller in responding to requests from data subjects exercising their rights under GDPR.
Breach notification: Notify the Controller without undue delay (within 72 hours) after becoming aware of a personal data breach.
Deletion: At the Controller's choice, delete or return all personal data upon termination of services, and delete existing copies within 30 days unless required by law to retain.
Audit: Make available to the Controller all information necessary to demonstrate compliance with this DPA.
Before transmitting customer data to AI models (Anthropic Claude), the Processor applies pseudonymization: email addresses are replaced with SHA-256 hash tokens. The AI model receives only hashed identifiers and aggregated behavioral data, never raw personal identifiers.
Primary data storage is within the EU (Hetzner Germany, Turso AWS EU West). AI processing via Anthropic may involve data transfer to the US. Anthropic's API terms include Standard Contractual Clauses (SCCs) for EU-US data transfers. All data sent to Anthropic is pseudonymized.
Order and customer data: retained while account is active, deleted within 30 days of termination
AI Memory Graph: retained while consent is active, deleted immediately upon consent withdrawal
Offer history: retained for 12 months for conversion tracking, then anonymized
Audit logs: retained for 12 months for compliance purposes
Ensure a lawful basis exists for processing customer personal data (e.g., legitimate interest for analytics, consent for marketing communications).
Provide appropriate privacy notices to your customers regarding the use of analytics and AI processing tools.
Promptly notify the Processor of any data subject requests that require Processor assistance.
End-User Consent: The Controller is solely responsible for obtaining all necessary consents from end users (store customers) prior to enabling features that involve AI profiling, behavioral analysis, or automated offer generation. The Controller warrants that such consents comply with applicable law, including GDPR Article 6 and Article 22 (automated decision-making).
Consent Withdrawal: The Controller must promptly notify the Processor if an end user withdraws consent for AI profiling or automated communications, so the Processor can disable the relevant processing.
The Controller agrees to indemnify, defend, and hold harmless the Processor from and against any claims, damages, losses, fines, or expenses (including reasonable legal fees) arising from or related to:
(a) The Controller's failure to obtain valid end-user consent as required under applicable data protection law;
(b) The Controller's breach of this DPA or applicable data protection law;
(c) Any third-party claims resulting from the Controller's instructions to the Processor that violate applicable law.
The Processor agrees to indemnify the Controller for losses directly caused by the Processor's breach of its obligations under this DPA, including unauthorized data access or failure to implement agreed security measures.
This DPA is effective from the date the Controller accepts it during onboarding and remains in effect for the duration of the service agreement. Either party may terminate by providing 30 days written notice. Upon termination, the Processor will delete all Controller data within 30 days.
For DPA-related inquiries:
MSB Robotics
Email: privacy@praevidens.ai
This DPA forms part of the Praevidens.ai Terms of Service. In case of conflict, this DPA takes precedence regarding data protection matters.