Privacy Policy
Midx is a creator workspace for connecting a TikTok account, preparing user-selected video uploads, sending selected posts through authorized platform integrations, and monitoring publishing status.
Last updated: July 13, 2026
Information we collect
- Connected account profile: account identifier, username, nickname/display name, avatar URL, profile details, authorized scopes, connection time, and last seen time returned by TikTok after authorization.
- Account statistics: profile engagement statistics such as follower count, following count, like count, and video count when authorized by the user.
- Upload activity: file name, file size, MIME type, caption/title, selected privacy level, interaction settings, AI/commercial disclosure labels, selected cover timestamp, platform publish ID, upload status, timestamps, and technical error codes/messages.
- Authentication data: access tokens and refresh tokens needed to keep a connected account working. These are stored encrypted and are not shown in the frontend or admin dashboard.
- Technical data: basic operational information needed to run the service, troubleshoot errors, prevent abuse, protect the service, and improve reliability.
How we use data
- To let users sign in with TikTok and maintain their authorized account connection.
- To show the connected account identity and available publishing settings returned by TikTok.
- To send only user-selected videos and user-selected post settings to the connected platform.
- To monitor publishing status, diagnose upload failures, provide support, and protect the service from abuse or security issues.
- To avoid asking users to reconnect every day when short-lived access tokens expire.
What we do not do
- We do not sell connected account, TikTok profile, or upload activity data.
- We do not publish content without an authorized user flow and a user-selected upload.
- We do not present ourselves as TikTok or as the connected platform provider.
- We do not use collected data for unrelated advertising products.
Storage, security, and deletion
Sensitive connection tokens are encrypted before storage. Raw secrets, access tokens, refresh tokens, and client credentials are not intentionally exposed in public pages or the admin dashboard.
We retain service data for as long as needed to provide the product, support users, troubleshoot uploads, protect security, comply with legal obligations, or until a valid deletion request is completed.
Users may request access, correction, disconnect, or deletion of stored service data by contacting contact@midx.app. Logging out clears the browser session but does not by itself delete server-side records.
Third-party platforms
TikTok may process data under its own terms and policies when a user authorizes Midx and sends selected content through TikTok integrations. Midx is an independent service and is not affiliated with, sponsored by, endorsed by, or operated by TikTok.