Privacy Policy

Last updated: 18 April 2026

This Privacy Policy describes how Get AI Biz ("we", "us", "our") collects, uses, stores and discloses personal data when you use our service at https://getaibiz.co (the "Service"). It also describes your rights under applicable data protection law, including the EU General Data Protection Regulation (GDPR).

1. Data we collect

Category	Examples	Source
TikTok profile data	open_id, display name, avatar URL	TikTok Login Kit (user.info.basic scope)
OAuth tokens	access token, refresh token, expiry	TikTok OAuth response
Content you submit	URLs, article text, generated video files	You
Operational logs	request timestamps, IP, user agent, error codes	Automatically when you use the Service

2. How we use your data

• To authenticate you via TikTok and confirm your identity (Login Kit).
• To generate AI short-form videos from the URLs/articles you submit.
• To publish those videos to your authorised TikTok account (Content Posting API, video.upload scope).
• To operate, secure, debug and improve the Service.
• To comply with legal obligations.

3. Legal bases (GDPR)

• Contract: processing necessary to deliver the Service you requested.
• Consent: when you authorise TikTok scopes through the official TikTok consent screen.
• Legitimate interest: securing the Service and preventing abuse.

4. Sharing

We share data with the following categories of recipients, only to the extent strictly necessary to operate the Service:

• TikTok — receives the videos and metadata we publish on your behalf via the Content Posting API.
• AI providers — process the URL/article you submit to generate the video script and assets.
• Hosting infrastructure — stores tokens, generated videos and operational logs on servers located in the EU.

We do not sell your personal data and we do not use it for advertising profiling.

5. Storage and retention

• OAuth tokens are stored only for as long as the integration is active. Revoking authorisation in TikTok or deleting your account removes the tokens.
• Generated videos are kept for 30 days after publishing for re-upload reliability, then deleted.
• Operational logs are retained for up to 90 days, then deleted or anonymised.

6. Security

Data is transmitted over TLS 1.2+ and stored on hardened servers in the EU. Access is restricted to the minimum set of operators required to run the Service. We do not store your TikTok password — authentication is performed by TikTok.

7. Your rights

You have the right to:

• Access the personal data we hold about you.
• Request correction or deletion of that data.
• Object to or restrict processing.
• Data portability.
• Withdraw consent at any time, by revoking the TikTok authorisation in your TikTok account settings, or by emailing us.
• Lodge a complaint with the Portuguese supervisory authority (CNPD).

To exercise these rights, email pedromartinsvarela@gmail.com.

8. Children

The Service is not directed to children under 13 (or the minimum age in your jurisdiction). We do not knowingly collect personal data from children. If you believe a child has provided personal data, contact us so we can delete it.

9. Cookies

We use only strictly necessary cookies for authentication and session continuity. We do not use third-party advertising or analytics cookies.

10. Changes to this policy

We may update this Privacy Policy from time to time. The latest version will always be available at https://getaibiz.co/privacy.

11. Contact

Data controller: Pedro Varela. Contact: pedromartinsvarela@gmail.com.