API Usage & Scopes

Last updated: April 18, 2026

Purpose

This page documents, with full transparency, how Mindframe 365 uses the official developer APIs of YouTube, TikTok, Instagram, and X. It is intended both for interested viewers and for platform review teams evaluating our API access.

TikTok Content Posting API

We use the TikTok Content Posting API to publish our own original short-form educational videos to the Mindframe 365 brand's TikTok account (@mindframe365) on a daily schedule.

Requested scopes

user.info.basic — to verify the authenticated creator account after OAuth, so we can confirm uploads reach the correct TikTok account.
video.upload — to upload daily video files to TikTok via the /v2/post/publish/video/init/ endpoint.
video.publish — to publish uploaded videos to the connected account in Direct Post mode.

Endpoints called

POST https://open.tiktokapis.com/v2/oauth/token/ — OAuth token exchange and refresh.
POST https://open.tiktokapis.com/v2/post/publish/video/init/ — Initiate video upload and publish.
POST https://open.tiktokapis.com/v2/post/publish/status/fetch/ — Poll the publish job status.

What we do not do

We do not read, fetch, display, or redistribute content from third-party TikTok accounts anywhere on this website or in our content.
We do not request or handle TikTok credentials belonging to website visitors or third-party users.
We do not use the API for personal messaging, follower scraping, engagement automation, or any purpose outside of publishing our own original content.

Token security

Access tokens and refresh tokens are stored exclusively on our server in access-restricted environment variables. Tokens are never transmitted to the website client, never logged in plaintext, and never shared with third parties. Tokens are refreshed automatically via the /v2/oauth/token/ endpoint before expiry.

YouTube Data API v3

Used to upload Shorts videos and manage thumbnails on the Mindframe 365 channel (@mindframe365days). Scopes used: youtube.upload, youtube.

Instagram Graph API

Used to publish Reels to the Mindframe 365 Instagram Business account (@mindframe365). Scopes used: instagram_basic, instagram_content_publish, pages_show_list.

X (Twitter) API v2

Used to publish hook tweets, video tweets, and threads to the Mindframe 365 account (@mindframe365). Permissions: Read and Write for the account only.

Content Review & Takedown

All content produced with these APIs is educational and reviewed before publication. If you believe any Mindframe 365 post infringes your rights or violates a platform's community guidelines, email iletisim@mindframe365.cloud with a link to the specific post. We respond to legitimate reports within 7 business days and remove confirmed violations immediately.

Contact for Platform Review Teams

For questions from platform developer review teams, email iletisim@mindframe365.cloud with “Review Team” in the subject. We reply within 2 business days.