Last updated: April 19, 2026
This Data Processing Agreement ("DPA") supplements the Terms of Service and applies where Jinen processes personal data on your behalf in connection with providing the Jinen platform. This DPA is incorporated into the Terms by reference.
Terms used in this DPA have the meanings given in the GDPR (EU 2016/679) and applicable data protection laws. Key definitions:
Jinen acts as a Processor when processing personal data you supply through the platform (e.g., content about or from your users). Jinen acts as an independent Controller for data it collects directly for its own purposes (e.g., your account registration data), as described in the Privacy Policy.
Jinen will process personal data only on your documented instructions, which include: (a) storing and serving content you create; (b) running AI inference on that content as directed by your prompts; (c) publishing project sites on your behalf. Jinen will not process personal data for any other purpose without your prior written consent, except where required by applicable law.
Jinen engages the following sub-processors to deliver the platform. By accepting this DPA, you provide general authorization for these sub-processors:
| Sub-processor | Purpose | Location |
|---|---|---|
| Amazon Web Services (AWS) | Cloud infrastructure, database, file storage, CDN, AI inference (Bedrock) | USA (us-east-1 primary) |
| Google LLC | OAuth-based authentication | USA |
| Replicate Inc. | AI music generation | USA |
We will notify you of any intended changes to this list (additions or replacements) with at least 14 days' notice, giving you the opportunity to object.
Jinen implements appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, destruction, or alteration, including:
Jinen ensures that personnel authorized to process personal data are bound by confidentiality obligations.
Jinen will assist you (as the Controller) in fulfilling data subject requests to access, correct, delete, or port personal data, taking into account the nature of the processing. Contact support@jinen.ai for assistance.
In the event of a personal data breach affecting data we process on your behalf, Jinen will notify you without undue delay and within 72 hours of becoming aware. The notification will include, to the extent known: the nature of the breach, categories and approximate number of data subjects and records affected, likely consequences, and measures taken or proposed.
Personal data is processed primarily in the United States. For data originating in the European Economic Area (EEA) or UK, Jinen relies on Standard Contractual Clauses (SCCs) as the transfer mechanism to the extent required by applicable law. Please contact us if you require SCCs to be executed.
You may request information necessary to demonstrate compliance with this DPA no more than once per calendar year. Such requests must be made in writing to support@jinen.ai and will be fulfilled within 30 days.
Upon termination of the agreement or your written request, Jinen will delete or return all personal data processed on your behalf within 30 days, and will delete existing copies unless retention is required by law.
For DPA-related inquiries, email support@jinen.ai.