Privacy Policy
ContentBoss Studio is designed with privacy in mind. This policy explains what data we collect, how we use it, and the choices you have. We do not sell your personal data.
1. Who We Are
ContentBoss Studio is an AI-powered TikTok content management platform. References to "we," "us," or "our" mean the operator of this application. For data-related enquiries, contact us at aizat.iqmal656@gmail.com.
2. Information We Collect
2.1 Information You Provide
- API Keys: You enter your own API keys for fal.ai, ElevenLabs, and Anthropic. These are stored locally in your browser's environment configuration and are never transmitted to our servers.
- Content Inputs: Product names, descriptions, and other text you enter to run the pipeline.
- TikTok Account: When using the TikTok Content Posting API, we access only the permissions you explicitly grant during the OAuth flow. We do not store your TikTok credentials on our servers.
2.2 Automatically Collected Information
- Local Storage: The app stores pipeline state and the last fal.ai request ID in your browser's
localStorageto enable video retrieval. This data stays on your device. - Browser State: In-memory pipeline results (scripts, image URLs, audio blobs, video URLs) exist only during your session and are cleared on page reload.
2.3 Information We Do Not Collect
- We do not collect names, email addresses, or account information
- We do not run analytics, tracking pixels, or telemetry
- We do not place third-party advertising cookies
- We do not log API calls you make to third-party services
3. How We Use Information
The limited information processed by the Service is used solely to:
- Execute your content pipeline requests (trend research, script generation, image/video/voice creation)
- Display results within the application interface
- Recover a previously submitted video generation job (via the stored request ID)
- Publish content to TikTok on your behalf when you explicitly initiate a post
We do not use your content or inputs to train AI models.
4. TikTok API Data Usage
ContentBoss Studio integrates with the TikTok Content Posting API to enable direct publishing. In connection with this integration:
- We request only the minimum permissions necessary to post content on your behalf
- TikTok OAuth tokens are stored securely and used solely for posting
- We do not access your TikTok inbox, followers, or personal profile information beyond what is required to confirm a successful post
- You can revoke access at any time via TikTok's app permission settings
TikTok's data practices are governed by the TikTok Privacy Policy.
5. Third-Party Data Processing
When you run the pipeline, your inputs are sent to third-party AI providers. Each provider has its own privacy policy:
| Provider | Purpose | Privacy Policy |
|---|---|---|
| Anthropic | AI orchestration, script generation, compliance review | anthropic.com/legal/privacy |
| fal.ai | Image generation (Flux), video generation (Kling) | fal.ai/privacy |
| ElevenLabs | Text-to-speech voice synthesis | elevenlabs.io/privacy |
| TikTok | Content publishing via Content Posting API | tiktok.com/legal/privacy-policy |
Your inputs (product descriptions, scripts, image URLs) are transmitted to these providers when you trigger the corresponding features. We recommend reviewing each provider's data retention and training policies.
6. Cookies and Local Storage
ContentBoss Studio does not set tracking cookies. We use browser localStorage only for functional purposes:
| Key | Purpose | Expires |
|---|---|---|
fal_kling_last_request_id |
Stores the most recent Kling video request ID to enable recovery after a browser reload | Until you clear it or click ✕ in the UI |
cost_month |
Tracks the current billing month for cost estimation display | Resets on the 1st of each month |
You can clear this data at any time via your browser's developer tools or by clearing site data in your browser settings.
7. Data Security
Because ContentBoss Studio processes API calls directly from your browser to third-party providers:
- Your API keys are stored only in your local environment configuration — they are never stored on our servers
- All API calls use HTTPS/TLS encryption in transit
- Generated media (images, audio, video) is held in browser memory and released when you close the tab
- No generated content is stored or logged on our infrastructure
Despite these measures, no method of data transmission is 100% secure. Use the Service at your own risk.
8. Data Retention
We retain no personal data on our servers because we collect none. Data processing happens:
- In your browser (in-memory): pipeline results, generated images, audio blobs, video URLs — cleared on page close
- In your browser (localStorage): the last fal.ai request ID and cost tracking — persists until you delete it
- At third-party providers: governed by each provider's retention policy
9. Children's Privacy
ContentBoss Studio is not directed at individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe a child has provided information through the Service, please contact us and we will take appropriate action.
10. Your Rights
Depending on your location, you may have the right to:
- Access, correct, or delete personal data we hold about you
- Object to or restrict processing of your data
- Data portability
- Lodge a complaint with a supervisory authority
Since we collect no personal data on our servers, most of these rights are satisfied automatically. For data held by third-party providers, please exercise your rights directly with those providers using the links in Section 5.
11. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page. Your continued use of the Service after changes constitutes acceptance of the updated policy.
12. Contact Us
If you have questions, concerns, or requests relating to this Privacy Policy, please contact us:
We aim to respond to all enquiries within 30 days.