Privacy Policy

Last updated: February 17, 2026

This Privacy Policy describes how Project Declassified ("we", "us", or "our") collects, uses, and protects your personal information when you use our website, applications, and related services (the "Service"). We are committed to protecting your privacy in accordance with the General Data Protection Regulation (GDPR — Regulation (EU) 2016/679) and applicable national data protection laws.

1. Data Controller

The data controller responsible for the processing of your personal data is:

Project Declassified
Email: project_declassified@outlook.com

2. Data We Collect

We collect and process the following categories of personal data:

2.1 Data from Third-Party Platform Authentication

When you connect a social media account (e.g., TikTok, YouTube, Instagram) to our Service via OAuth, we may receive:

Data TypePurposeLegal Basis
Account username / display nameAccount identificationConsent (Art. 6(1)(a) GDPR)
Account ID (platform-specific)API authenticationConsent (Art. 6(1)(a) GDPR)
Profile picture URLAccount identificationConsent (Art. 6(1)(a) GDPR)
OAuth access/refresh tokensAuthorized API accessContract (Art. 6(1)(b) GDPR)

You can control what data is shared during the OAuth authorization flow of each platform.

2.2 Technical Data (Website Visits)

When you visit our website, our hosting provider may automatically collect:

This data is processed on the basis of our legitimate interest in ensuring the security and functionality of our website (Art. 6(1)(f) GDPR).

2.3 Data We Do NOT Collect

3. How We Use Your Data

We use the personal data we collect exclusively for the following purposes:

4. Data Sharing

We do not sell, rent, or trade your personal data. We may share data with:

5. Data Retention

We retain your data only as long as necessary for the purposes described in this policy:

6. Your Rights Under GDPR

As a data subject under the GDPR, you have the following rights:

To exercise any of these rights, contact us at project_declassified@outlook.com. We will respond within 30 days.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data, including:

8. International Data Transfers

When you connect third-party platform accounts, your data may be transferred to and processed in countries outside the European Economic Area (EEA) by the respective platform operators (e.g., TikTok, Google/YouTube). These transfers are covered by the platforms' own data processing agreements and legal frameworks (e.g., Standard Contractual Clauses, adequacy decisions).

9. Children's Privacy

The Service is not intended for children under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child under 16, we will take steps to delete such data promptly.

10. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal data infringes the GDPR. In Germany, the competent authority is the data protection authority (Landesdatenschutzbeauftragte) of the federal state in which you reside.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page. We encourage you to review this Privacy Policy periodically.

12. Contact

If you have any questions about this Privacy Policy or our data practices, please contact us at:

project_declassified@outlook.com