TikTok Integration — Privacy Policy

aiKMind (a product of Lazyboi LLC)
Last updated: April 13, 2026

This privacy policy describes how aiKMind collects, uses, and protects data when you connect your TikTok account through the aiKMind platform using the TikTok Content Posting API, Display API, and Login Kit. This policy applies specifically to the TikTok integration feature and supplements the aiKMind General Privacy Policy.

1. TikTok Data We Access

When you connect your TikTok account, we may access the following data through TikTok's APIs:

  • Profile information — open ID, display name, avatar URL, username, bio description, profile link, and verified status
  • Creator information — privacy level options, comment and duet/stitch permissions, and commercial content settings available for your account
  • Video list — your public TikTok videos including titles, descriptions, cover images, duration, dimensions, and engagement metrics (likes, comments, shares, views)
  • Publishing — the ability to post videos and photos to your TikTok account or upload them to your drafts

2. How We Use TikTok Data

Your TikTok data is used solely to:

  • Publish videos and photos to your TikTok account (Direct Post) or upload them to your TikTok drafts (Upload to Inbox) when you request it
  • Display your creator information and privacy level options on the publish confirmation page so you can make informed choices
  • List your public TikTok videos within the aiKMind chat interface for reference
  • Query specific video details to refresh cover image URLs or retrieve engagement data
  • Track the status of publish requests (processing, published, failed)
  • Display your TikTok profile information (avatar, username) in the agent settings to confirm account connection

We never use your TikTok data to train AI models, serve advertisements, or sell to third parties.

3. Data Storage & Security

  • OAuth tokens (access token and refresh token) are stored in our secure cloud infrastructure with access controls so only the authenticated account owner can retrieve them. Sensitive values are protected using industry-standard encryption (including AES-256 at rest) where supported by our hosting providers, in addition to TLS (HTTPS) for data in transit.
  • Access tokens expire after 24 hours and are automatically refreshed using the refresh token.
  • Refresh tokens are valid for 365 days. TikTok may rotate refresh tokens — when this occurs, the new token is stored and the old one is discarded.
  • Profile data (open ID, display name, avatar, username) is stored alongside the tokens for display purposes and is deleted when you disconnect.
  • Publish requests (pending post metadata) are stored temporarily and expire after 30 minutes if not confirmed.
  • Media files— videos are transferred to TikTok's upload servers using TikTok-supported methods. Photos may be made available through a short-lived, access-controlled URL for the duration of the publish process. Neither are permanently retained by aiKMind for that purpose.
  • All communication with TikTok's APIs uses TLS (HTTPS) encryption in transit.

4. Third-Party Services

The TikTok integration interacts with:

  • TikTok Open APIs— Content Posting API, Display API, and Login Kit to authenticate, publish content, and read account data. TikTok's data practices are governed by the TikTok Privacy Policy.
  • Cloud infrastructure — we use vetted hosting and storage providers to operate the service (including credential storage and short-lived publish metadata). We do not sell your data to these providers beyond what is required to run the product.
  • AI model providers — your chat messages (including TikTok-related requests) are processed by the AI model you select. See the aiKMind General Privacy Policy for details.

5. TikTok Permissions Requested

When you authorize the integration, the following TikTok permissions (scopes) are requested:

  • user.info.basic — read your basic profile information (open ID, display name, avatar)
  • user.info.profile — read your profile details (username, bio, verification status)
  • user.info.stats — read aggregate account stats (followers, following, likes, public video count) for account information features in the product
  • video.publish — publish videos and photos directly to your TikTok profile
  • video.upload — upload videos and photos to your TikTok drafts / inbox
  • video.list — list and query your public TikTok videos

You can revoke these permissions at any time from your TikTok Settings → Security → Manage app permissions.

6. Data Deletion & Disconnecting

You can disconnect your TikTok account and delete all stored data at any time:

  • Disconnect from aiKMind— use the disconnect button in the agent editor or settings page. We remove stored tokens and profile data from our systems for that connection. For full removal of app access at TikTok, also use TikTok's app permissions screen (linked below).
  • Revoke from TikTok — go to TikTok Settings to fully revoke the app's access to your account

You may also request complete data deletion by contacting privacy@aikmind.com.

7. Children's Privacy

This integration is not intended for users under 13. We do not knowingly collect TikTok data from children. TikTok has its own age restrictions and content policies that apply independently.

8. Changes to This Policy

We may update this policy from time to time. Changes will be posted at this URL with an updated date.

9. Contact

aiKMind (a product of Lazyboi LLC)

📧 privacy@aikmind.com

🌐 aikmind.com