Privacy Policy

Effective date: April 15, 2026 · Last updated: April 15, 2026

The short version

PillDrops is offline-first. Your medication list, schedule, dose history, appointments, and health contacts live on your device in a local database. We don't upload them, we don't sell them, and we don't show ads.

A few features are opt-in and do involve other services: the prescription scanner sends a photo you take to Google Gemini for one-time OCR; caregiver sharing syncs medication schedule and dose events through Supabase to people you invite; and subscriptions are handled by RevenueCat with Google Play Billing or Apple StoreKit.

You can use PillDrops without creating an account, without sharing with anyone, and without a subscription.

1.Who we are

This privacy policy applies to the PillDrops mobile application for Android and iOS (“PillDrops,” “the app,” “we,” or “us”) and to this website, pilldrops.com.

If you have any question about how your data is handled, email support@pilldrops.com.

2.What data the app handles

2.1 On-device data (never leaves your phone unless you opt in)

The following information is stored in a local database on your device (SQLDelight / SQLite) and is not transmitted to our servers under default settings:

Your medication list (name, dosage, form, color, notes)
Dosing schedule and alarm preferences
Dose history and adherence statistics
Appointments and doctor visit records
Health contacts (doctors, pharmacies, emergency contacts)
App settings (language, theme, snooze duration, alarm type)

If you uninstall the app, this data is deleted from your device by the operating system. It is never copied to our servers unless you opt into caregiver sharing or cloud backup (see below).

2.2 Camera — prescription scanning

The Android app declares the android.permission.CAMERA permission. The iOS app uses the equivalent NSCameraUsageDescription entitlement. We request camera access only at the moment you tap “Scan prescription.” If you never use that feature, camera access is never requested.

When you scan a prescription:

The captured image is sent to Google Gemini (the Google generative AI API) for one-time optical character recognition to extract the medication name, dosage, frequency, and notes.
The image is not stored by PillDrops, on your device or on our servers.
Google Gemini processes the image under Google’s paid API terms, which prohibit use of the content for training Google’s models.
Only the structured text output (name, dosage, etc.) is returned to your phone, where you can review and edit it before saving.

2.3 Caregiver sharing (optional, opt-in)

If you choose to invite a caregiver, the app uses Supabase (our cloud backend provider) to relay a subset of your data to the people you invite:

Your medication list and schedule
Dose events (taken / missed / snoozed / skipped, with timestamps)
Appointments and health contacts, if you enable those in the sharing settings

We do not share this data with anyone other than the caregivers you explicitly invite via a 6-character invite code that you control. You can revoke a caregiver’s access at any time from Settings › Caregiver Sharing. Revocation immediately cuts off their access to future updates.

If you never turn on caregiver sharing, none of your medication data is sent to Supabase or anywhere else.

2.4 Subscriptions

If you upgrade to PillDrops Plus, subscription billing is handled by Google Play Billing (on Android) or Apple StoreKit (on iOS). Payment details never touch our servers.

We use RevenueCat as a subscription management layer. RevenueCat receives only:

An anonymous app-install ID generated by the device
The purchase receipt issued by Google Play or Apple

RevenueCat does not receive your name, email, medication data, or any health-related information.

2.5 Authentication (optional)

Signing in is optional and is only needed if you want to use caregiver sharing, the prescription scanner, or cloud backup. You can sign in with Google Sign-In (Android / Web) or Sign in with Apple (iOS).

From these providers we receive only:

Your email address
Your display name

We use this information solely to identify your account for caregiver linking and to restore your data if you reinstall the app. We do not use it for marketing, and we do not share it with third parties.

2.6 Crash reporting and diagnostics

To keep the app stable we use Firebase Crashlytics, which automatically reports crashes and serious errors. Crash reports include:

Anonymized stack traces (the line of code where the crash occurred)
Device model and operating system version
App version

Crash reports do not include your medication data, health information, email address, name, or other personally identifiable information.

3.What we do not do

We do not sell your data. Not to insurers, pharmaceutical companies, data brokers, or anyone else.
We do not show ads. There are no banner ads, interstitials, or sponsored content anywhere in the app.
We do not share health data with insurers or employers.
We do not use cross-app or cross-site tracking. No advertising SDKs, no behavioral profiles, no Facebook Pixel, no Google Analytics for Firebase audience tracking.
We do not require an account to use core features. You can add medications, set alarms, track doses, and view history without ever signing in.
We do not read or store prescription images. Captured images are sent to Gemini for OCR and discarded.

4.Third-party services

The following services may process data on our behalf when you use specific features. Each has its own privacy policy, linked below.

Google Gemini

OCR for prescription scanning (images sent only when you tap “Scan prescription”). Google Privacy Policy

Supabase

Cloud relay for caregiver sharing (only when you invite a caregiver). Supabase Privacy Policy

RevenueCat

Subscription receipt management (anonymous install ID + receipt only). RevenueCat Privacy Policy

Google Play Billing

Android subscription payments. Google Privacy Policy

Apple StoreKit

iOS subscription payments. Apple Privacy Policy

Firebase Crashlytics

Anonymous crash reporting (stack traces, device model, OS version). Firebase Privacy Information

Google Sign-In

Optional Android / Web authentication (email + display name). Google Privacy Policy

Optional iOS authentication (email + display name). Apple Privacy Policy

5.Your rights and controls

Regardless of where you live, you have the following controls:

Delete everything on device: uninstalling PillDrops removes the local database, which deletes your medication list, dose history, and all other locally stored data.
Delete your account: if you signed in, open Settings › Account › Delete Account. This removes your authentication record and any cloud-synced data (caregiver sharing relay records) from our servers within 30 days. You can also email support@pilldrops.com to request deletion.
Export your data: email support@pilldrops.com from the address associated with your account and we will provide a machine-readable export of all data we hold about you within 30 days.
Revoke caregiver access: Settings › Caregiver Sharing › tap a caregiver › Remove. Access is cut off immediately.
Cancel your subscription: manage subscriptions in Google Play (Android) or the App Store (iOS). Cancelling does not delete your data.
Revoke camera permission: Android Settings › Apps › PillDrops › Permissions, or iOS Settings › PillDrops.

If you are in the European Economic Area, the United Kingdom, Switzerland, California, or another jurisdiction with a comprehensive privacy law, you have additional rights, including the right to access, correct, or restrict processing of your personal data, and the right to lodge a complaint with a supervisory authority. To exercise any of these rights, email support@pilldrops.com.

6.Children’s privacy

PillDrops is not directed at children under 13 (or under 16 in the European Economic Area). We do not knowingly collect personal information from children in this age group. If you believe a child has provided personal information to us, please contact support@pilldrops.com and we will delete it promptly.

A parent or legal guardian may use PillDrops to manage a child’s medications on the parent’s own device and under the parent’s own account; in that case the parent is the account holder and controls the data.

7.Changes to this policy

We may update this policy from time to time. When we do, we will update the “Last updated” date at the top of this page, and for material changes we will also notify active users inside the app before the new policy takes effect. Continued use of PillDrops after an update means you accept the revised policy.

8.Contact

For any privacy question, concern, or data request, contact us at support@pilldrops.com. We respond to privacy requests within 30 days.