Privacy Policy — Bravely Content

Bravely Content is an internal content publishing tool operated by Bravely Studios LLC. It uses the TikTok Content Posting API to publish video content to TikTok accounts authorized by their owners. This Privacy Policy describes what data Bravely Content accesses, how it is used, and how it is protected.

When you authorize Bravely Content to connect to your TikTok account, we access the following through TikTok’s OAuth 2.0 authorization flow: • Your TikTok Open ID (a unique identifier provided by TikTok) • Basic profile information (as permitted by the user.info.basic scope) • Permission to publish videos to your account (video.publish and video.upload scopes) We access only the scopes you explicitly authorize. We do not access your TikTok messages, followers list, liked videos, or any content you did not authorize us to manage.

Your authorized access is used solely for: • Publishing video content to your TikTok account on your behalf • Checking the publish status of uploaded videos • Refreshing authentication tokens to maintain your authorized connection We do not use your TikTok data for advertising, analytics, profiling, or any purpose other than publishing content you have directed us to publish.

OAuth access tokens and refresh tokens are stored locally on the machine that performed the authorization, in a file with restricted read permissions (owner-only, mode 0600). Tokens are never transmitted to any third-party server, cloud service, or database. Tokens are never shared with other users or applications. Access tokens expire after 24 hours and are automatically refreshed using the stored refresh token. Refresh tokens expire after 365 days, at which point you must re-authorize.

We do not sell, rent, or share your TikTok account data with any third party. The only external service that receives data is TikTok’s own API, which receives the video files and metadata you have directed us to publish. No intermediary servers, analytics services, or advertising platforms are involved.

Authorization tokens are retained locally for as long as they remain valid (up to 365 days for refresh tokens). You may revoke access at any time by deleting the local token file or by revoking the application’s access in your TikTok account settings (Settings → Security → Manage app permissions). Upon revocation, all stored tokens become invalid and no further access to your account is possible.

We do not collect any of the following: • Your TikTok password • Your TikTok followers, following list, or social graph • Your TikTok messages or comments • Your viewing history or liked videos • Device identifiers, location data, or IP addresses • Usage analytics or behavioral tracking data Bravely Content has no server component, no database, and no analytics. It is a local command-line tool.

Bravely Content is an internal developer tool and is not directed at children under 13. We do not knowingly collect or process information from children under 13.

We may update this Privacy Policy from time to time. The effective date at the top of this page will be updated accordingly. Continued use of the application after changes constitutes acceptance of the revised policy.