Privacy policy
Your medication data is some of the most sensitive information you carry. We treat it that way — on-device first, encrypted at rest, and never for sale.
The plain-English version
Pill Reminder Kit (“Pill Reminder Kit”, “we”, “us”) is published by Pill Reminder Kit, Inc. We make a medication reminder app for iOS and Android. This page explains what we collect, why, and what we will never do.
- Your medication list, schedule, doses, photos, and notes are stored on your device only. There is no account, no sign-in, and no server copy in v1.
- Two AI features — photo-to-pill label parsing and drug-interaction checks — send data to Google Gemini via a secure proxy. You consent to this in-app before either feature activates, and you can revoke consent at any time.
- We do not sell, rent, or share your medication data with advertisers, data brokers, insurers, or employers. Ever.
- You can export a Doctor PDF or delete all data permanently from Settings → About → “Delete all data”.
What we collect
Medication data (on-device only)
Names, doses, strengths, schedules, reminder times, intake history, photos of bottles, and any notes you add. This data lives in an encrypted SQLite database on your device (iOS Data Protection / Android Keystore). We do not have a copy of it on any server.
Subscription state
If you purchase a subscription (weekly, monthly, or annual), your purchase receipt is handled by Apple or Google. RevenueCat — our in-app purchase processor — receives your purchase receipt and a RevenueCat anonymous app-user ID. RevenueCat does not receive your medication content.
AI feature usage (optional, explicit consent required)
Before you can use either AI feature, we ask for your explicit in-app consent. If you grant it:
- Photo-to-pill: when you photograph a medication label, the image is sent to Google Gemini via a Firebase Cloud Function proxy. The image is parsed in volatile memory and not stored server-side. The result — drug name, dose, instructions — is returned to your device only.
- Drug-interaction check: the names of the medications currently in your list are sent to Google Gemini (no photos, no schedules, no personal information) to check for known interactions. The list is processed in volatile memory and not stored server-side.
You can revoke AI consent at any time in Settings → Privacy. If revoked, both features fall back gracefully: photo capture returns to manual entry, and the interactions screen is disabled until consent is re-granted.
What we do not collect
- Your real name, address, date of birth, or social ID.
- Your email address (unless you contact support).
- Your location, contacts, or photo library outside the bottle photos you take in-app.
- Behavioral analytics tied to medication content.
- Health insurance, pharmacy, or provider identifiers.
- Crash reports or performance metrics — diagnostic tooling is deferred post-launch.
How we use your data
We use the data above strictly to provide and improve the app. That means scheduling your reminders, surfacing your history, and generating your doctor reports. We never use your data to train third-party AI models, to target ads, or to sell to third parties. The drug-interaction check is informational only and not medical advice — always confirm with your pharmacist or physician.
Photo-to-pill capture
When you photograph a medication label and have granted AI consent, the image is sent to Google Gemini over a TLS connection, processed in volatile memory, and discarded. The image is never stored on our servers. The AI proxy runs on Google Cloud (Firebase Cloud Functions, us-central1, project pillreminder-prod). Access to the proxy is authenticated via Firebase App Check (App Attest on iOS, Play Integrity on Android) — a device-attestation mechanism that sends no personally identifiable information.
Per Apple App Store guideline 5.1.2(i), we name Google Gemini explicitly as the AI sub-processor for this feature. Before sending any pill-bottle photo to Google Gemini, we ask you to consent in-app. You can revoke consent at any time, in which case the photo-to-pill feature falls back to manual entry.
Children
The app is intended for adults managing their own medications or those of a family member. We do not knowingly collect data directly from children under 13.
Your rights
You can:
- Export your medication history as a Doctor PDF from Settings → Doctor report.
- Delete all your data permanently from the device: Settings → About → “Delete all data”.
- Revoke AI consent for photo parsing and interaction checks individually in Settings → Privacy.
- Request a record of any server-side data we hold by writing to privacy@pillreminderkit.app. (In v1, the only server-side data we hold is your RevenueCat entitlement state.)
- EU/UK residents have rights under GDPR; California residents under CCPA. Email us and we’ll honor them within 30 days.
Security
All data on your device is protected by the OS-level secure storage layer: iOS Data Protection (tied to your device passcode / Face ID / Touch ID) and Android Keystore. We do not hold a server-side master key for your medication data — meaning even we cannot read it. AI proxy calls are encrypted in transit with TLS 1.3.
Sub-processors
We share the minimum necessary data with the following vendors. None of them receive your full medication list as structured data, beyond the specific scopes described below.
| Vendor | Purpose | Data received | Retention |
|---|---|---|---|
| Google (Gemini API) | Pill-bottle label parsing; drug-interaction check | Bottle photo (label parsing) or medication name list (interactions). No schedule, no history, no personal info. | Not stored server-side. Processed in volatile memory only. |
| Firebase / Google Cloud Platform | App Check device attestation; Cloud Functions proxy; Secret Manager (API key storage) | Device attestation token only (App Attest / Play Integrity). No medication content. | Attestation tokens expire per platform policy. |
| RevenueCat | In-app subscription management and entitlement verification | Purchase receipt + RevenueCat anonymous app-user ID. No medication content. | Per RevenueCat’s privacy policy. |
| Apple App Store / Google Play | App distribution and payment processing | Purchase receipt (handled directly between you and Apple/Google). | Per Apple’s / Google’s own policies. |
Changes to this policy
If we make material changes, we’ll surface a notice in the app and update the “last reviewed” date at the top of this page. Continued use of the app after a change indicates acceptance.
Get in touch
Privacy questions, concerns, or requests: privacy@pillreminderkit.app. We respond to every email; usually within two business days.