TikData

Privacy Policy

Last updated: June 12, 2026

The short version
  • • We collect your account details, billing handled by Stripe (we never see your card number), and publicly broadcast TikTok LIVE activity for the creators you track.
  • • Strong identifiers for gifters are stored only in hashed form. We never access private accounts or messages.
  • We don’t sell data, run ads, or use third-party advertising trackers. Cookies are essential-only (keeping you signed in).
  • • Customers only ever see data for creators on their own plan — enforced on every request.
  • • Appearing in a tracked stream and want out? There’s a removal request channel (Section 10).
  • • Questions or requests: [email protected].

1. Who we are

TikData (“we”, “us”) operates tikdata.live and app.tikdata.live (the “Service”) — analytics for TikTok LIVE creators and agencies. For anything in this policy, contact [email protected]. This policy should be read together with our Terms of Service.

2. What we collect

Account data. Name or company name, email address, password (stored hashed), account type, timezone, and the settings you choose.

Billing data. Payments are processed by Stripe. We receive subscription status, plan, and billing dates — we never receive or store your full card number. Stripe’s own privacy policy governs the payment details you give them.

Your inputs. The creators you choose to track, plus notes, tags, watchlists, and saved items you create.

Public TikTok LIVE data. For tracked creators we capture publicly broadcast stream activity: gift events, public display names and handles shown in the stream, viewer counts, battles, and similar signals. See Section 3.

Technical data. Standard server logs (IP address, browser type, timestamps) used for security, debugging, and abuse prevention.

What we don’t collect: government IDs, payment card numbers, precise location, private messages, private accounts, or data from advertising trackers.

3. Data about people who aren’t our customers

By the nature of the Service, we process information about people who appear in public TikTok LIVE broadcasts — creators being tracked and viewers who send gifts — even though they aren’t TikData customers. For these people:

  • we only process activity that was broadcast publicly on TikTok LIVE (gift events, public display names/handles, public stream presence);
  • strong platform identifiers are stored only as salted hashes — we keep them solely so the same public gifter can be recognized across streams, not to identify who they are in real life;
  • anonymous (“Enigma”) gifters who broadcast no stable public identity are never linked across streams;
  • we don’t enrich this data with outside sources, and we contractually prohibit our customers from using it to harass, stalk, dox, or pressure anyone;
  • anyone can ask to have their data hidden — see Section 10.

4. How we use data

  • To provide the Service: building the analytics, profiles, timing, rankings, and reports your plan includes.
  • To operate your account: authentication, billing, notifications you’ve enabled, and support.
  • To keep the Service safe: enforcing entitlements, preventing abuse, debugging, and security monitoring.
  • To improve the Service, using aggregated or de-identified data wherever possible.

We do not sell personal information, use it for third-party advertising, or use cross-context behavioural advertising.

5. Sharing & processors

Customers only ever see data for creators on their own plan — this is enforced server-side on every request. We share data only with the service providers needed to run TikData:

  • Stripe — payment processing and billing;
  • Postmark — transactional email (password resets, account emails);
  • Cloudflare — DNS, content delivery, and security;
  • cloud infrastructure providers that host the Service.

Each processor receives only what it needs to do its job. We may also disclose information if required by law, to protect rights and safety, or as part of a business transfer (e.g., a sale of the Service), in which case this policy continues to apply to it.

6. Cookies & tracking

We use essential storage only: a session credential in your browser that keeps you signed in to the app. No advertising cookies, no third-party analytics trackers, no social-media pixels. Because we don’t track you across other sites, there’s nothing for a “Do Not Track” signal to change.

7. How long we keep data

  • Account data: while your account exists, plus a reasonable wind-down period after closure.
  • Billing records: as long as tax and accounting laws require.
  • Stream analytics: retained while relevant to providing the Service — long-term history is part of the product’s value. If your subscription lapses, your stored analytics are kept so resuming restores them; accounts inactive for an extended period may be deleted.
  • Server logs: kept for a limited period for security, then rotated out.
  • Aggregated, de-identified data: may be kept indefinitely.

8. Security

Traffic is encrypted in transit (TLS). Passwords are stored hashed; strong third-party identifiers are stored as salted hashes; access to production systems is restricted and audited. Admin actions on customer accounts are logged. No system is perfectly secure — if we learn of a breach affecting your data, we’ll notify you as required by law.

9. Your rights & requests

Depending on where you live (including under Canadian PIPEDA, the EU/UK GDPR, and US state privacy laws), you may have the right to access, correct, delete, or export your personal information, and to object to or restrict certain processing. You can update your name, email-adjacent settings, and password in Settings; for anything else, email [email protected] from your account email. We’ll verify the request and respond within the time the applicable law allows. We don’t discriminate against you for exercising privacy rights.

10. Removal requests (gifters & creators)

If you appear in tracked streams — as a gifter or a creator — and would like your information hidden from the Service, email [email protected] with your TikTok @handle and enough detail for us to verify the request relates to you. Verified requests result in the handle being suppressed from customer-facing views going forward.

Because the underlying activity was broadcast publicly on TikTok, we make no guarantee of removal except as required by applicable law — but we review every request in good faith, and suppression is our default for verified ones.

11. Children

The Service is for adults. We don’t knowingly allow accounts for, or knowingly collect personal information from, anyone under 18. If you believe a minor’s data has been collected, contact us and we’ll address it.

12. International users

The Service is operated from infrastructure that may be located outside your country, and your information may be processed where that infrastructure runs. Where the law requires safeguards for international transfers, we rely on appropriate measures such as contractual protections with our processors.

13. Changes to this policy

We may update this policy as the Service evolves. Material changes will be announced (e.g., email or in-app) before they take effect; the date at the top always reflects the current version. Continued use of the Service after changes take effect means you accept them.

14. Contact

Privacy questions, rights requests, and removal requests: [email protected].