Privacy Policy

CreatorMetrics ("we", "us", "our") is a SaaS analytics platform that helps TikTok creators and brands understand the performance of their own TikTok content. The service is operated independently and is not affiliated with, endorsed by, or sponsored by TikTok or ByteDance.

Contact: hassene.brayek@gmail.com

This policy explains what information we collect when you use CreatorMetrics, how we use it, who we share it with, how long we keep it, and the rights you have over it. It applies to data accessed through the TikTok Login Kit and the TikTok Display API after you authorize our application.

We collect only the information needed to provide analytics features:

• Account information from TikTok (with your consent via OAuth): your TikTok open_id, union_id, display name, avatar, bio, follower count, following count, likes count, and verified status — obtained via the user.info.basic, user.info.profile, and user.info.stats scopes.
• Your public videos: video ID, caption, cover image, duration, create time, and aggregate engagement metrics (views, likes, comments, shares) — obtained via the video.list scope.
• Aggregated audience insights for your own account: gender split, age ranges, and top countries — obtained via the user.insights scope. We never receive identifying information about your viewers.
• Account & usage data: your email address (for sign-in), session tokens, and basic technical logs (IP, user agent, timestamps) used to secure the service and prevent abuse.

We do not collect content from other people's private accounts and we do not request scopes we do not actually use.

• To display your own TikTok performance dashboards (followers over time, top videos, viral alerts).
• To compute trend reports and category breakdowns from accounts you own or follow.
• To send you in-app alerts you have opted into (e.g. viral video, follower spike).
• To secure the service, detect abuse, and comply with legal obligations.

We do not use your TikTok data to train machine learning models, we do not sell it, and we do not use it for advertising.

For users in the European Economic Area, our legal bases are: (a) your consent, granted when you authorize TikTok Login Kit; (b) performance of the contract you enter into when you create an account; and (c) our legitimate interest in keeping the service secure.

We share data only with the following sub-processors, each under written agreement:

• Supabase — managed PostgreSQL hosting (data storage).
• OpenAI — content categorization of public video covers and captions you authorize us to analyze.
• Hetzner Cloud — server infrastructure.

We never sell personal data. We disclose data to law enforcement only when compelled by a valid legal order.

• TikTok profile and video data: refreshed on each scheduled run; previous snapshots kept for up to 24 months for trend analysis.
• Account data: kept while your account is active; deleted within 30 days of account closure.
• OAuth tokens: stored encrypted at rest; revoked immediately on logout or disconnect.

You can at any time:

• Disconnect TikTok from Settings → Connected accounts; this revokes our access token.
• Request a copy of the data we hold about you.
• Request deletion of your account and all associated data.
• Lodge a complaint with your local data-protection authority.

To exercise these rights, email hassene.brayek@gmail.com. We respond within 30 days.

All traffic is served over HTTPS. Tokens are stored encrypted; database access is restricted to the application service role. We follow the principle of least privilege and review access regularly.

CreatorMetrics is not directed to children under 13 (or 16 in the EEA). We do not knowingly collect data from minors. If you believe a minor has registered, contact us and we will delete the account.

Data may be processed on servers located in the European Union and the United States. Where applicable, we rely on Standard Contractual Clauses approved by the European Commission.

We will post any changes here with a new "Last updated" date. Material changes affecting how we use TikTok data will be communicated by email before they take effect.

Questions or requests: hassene.brayek@gmail.com.