Privacy Policy

Last updated: February 22, 2026

1. Introduction

Garante Direito ("we", "us", "our") operates the GD API application ("Service"). This Privacy Policy explains how we collect, use, and protect information when you use our Service.

2. Information We Collect

When you use our Service and connect your TikTok account, we may collect the following information:

• TikTok Account Information: Your TikTok display name, username, and profile picture, as provided through TikTok's OAuth authorization flow.
• Content Data: Videos, images, captions, and metadata that you upload or create through the Service for posting to TikTok.
• Engagement Data: Comments and messages received on your TikTok account that you manage through the Service.
• Usage Data: Information about how you interact with the Service, including scheduling preferences and feature usage.

3. How We Use Your Information

We use the collected information solely for the following purposes:

• Publishing content to your TikTok account on your behalf
• Displaying and managing comments and messages from your TikTok account
• Scheduling content for future publication
• Improving the functionality and user experience of the Service

4. Data Storage and Security

Your data is stored securely using industry-standard encryption and security practices. We use Supabase as our database provider, which implements row-level security and encryption at rest. Access tokens are stored encrypted and are never exposed to unauthorized parties.

5. Data Sharing

We do not sell, trade, or share your personal information with third parties. Data is only transmitted to TikTok's APIs as necessary to provide the Service's functionality (publishing content, reading comments and messages).

6. TikTok Data Usage

Our use of TikTok data is governed by TikTok's Developer Terms of Service and API policies. We only access data that you have explicitly authorized through TikTok's OAuth flow. We do not:

• Access private data of other TikTok users
• Store TikTok data beyond what is necessary for the Service
• Use TikTok data for advertising or profiling purposes
• Share TikTok data with any third parties

7. Data Retention

We retain your data for as long as your account is active. If you disconnect your TikTok account or request deletion of your data, we will remove all associated information within 30 days.

8. Your Rights

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Revoke TikTok API access at any time through TikTok's settings
• Export your data in a machine-readable format

9. Brazilian Data Protection (LGPD)

In compliance with Brazil's General Data Protection Law (Lei Geral de Protecao de Dados - LGPD), we ensure that all data processing activities have a lawful basis, and we respect all data subject rights as established by the law.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the updated policy on this page with a new "Last updated" date.

11. Contact

For questions about this Privacy Policy or to exercise your data rights, please contact us at [email protected].