Privacy Policy

The controller responsible for your personal data is: Pillomi SAS, accessible at pillomi.app

Contact: privacy@pillomi.app

2.1 Data you provide directly

• Medication names, dosages, schedules, icons and colors
• Configured stock quantities and refill alert thresholds
• Free-form notes associated with a medication
• Reminder preferences (days, times, frequency)
• Family member information (first name, nickname, relationship) when using Family Mode

2.2 Data collected automatically

• Apple identifier (Sign in with Apple) or Google identifier (Sign in with Google) — opaque ID only, never your password
• Email address, if you choose to share it during sign-in
• First name and profile picture, if you choose to share them
• Push notification token (for sending reminders)
• Intake logs: actual date and time each medication was taken, missed, or skipped
• Anonymized usage data: aggregated adherence rate and intake patterns (used solely for personalized recommendations)

2.3 Data from AI features

• Prescription images sent for analysis (processed by Google Gemini API, never retained after analysis)
• Aggregated adherence data sent to Gemini for weekly coaching (no personally identifiable information is transmitted)

2.4 Data we do NOT collect

Pillomi never collects:

• Your prescriptions or medical records (prescription images are analyzed then immediately deleted)
• Biometric data (heart rate, blood glucose, weight, etc.)
• Your GPS location
• Your contact list
• Browsing or advertising data

Your data is used exclusively to:

• Display your medications, schedules and reminders in the app
• Send push notification reminders at configured times
• Calculate and display your personal adherence rate
• Generate your personalized weekly coaching messages (via Gemini)
• Suggest schedule adjustments based on your actual habits (adaptive reminders)
• Automatically identify medications from a prescription photo (AI scan)
• Display official medication information (via the French BDPM database)
• Allow a caregiver to manage a family member's medications (Family Mode)
• Maintain your login session securely
• Manage your Premium subscription and associated payments

We do not use your data for advertising, commercial profiling, or sale to any third party.

• Performance of contract (Art. 6.1.b): processing necessary to deliver the Pillomi service
• Legitimate interest (Art. 6.1.f): service improvement, abuse detection, security
• Consent (Art. 6.1.a): push notifications and optional features
• Legal obligation (Art. 6.1.c): retention of billing records

Database

Your data is hosted on Supabase (PostgreSQL), infrastructure operated in Europe, encrypted in transit (TLS 1.3) and at rest (AES-256).

Authentication token

Your session token is stored in your device's secure vault (iOS Keychain / Android Keystore) via expo-secure-store. It is never accessible to other apps on your device.

Prescription images

Photos sent for AI analysis are transmitted directly to Google's Gemini API over an encrypted connection and are never stored on our servers. They are deleted immediately after analysis.

Retention periods

• Account data: retained while your account is active
• Intake logs: 90 days for free users, unlimited for Premium users
• Billing data: 10 years in accordance with applicable accounting regulations
• Upon account deletion: all personal data is erased within 30 days

We never sell, rent, or share your personal data with third parties for commercial purposes. Data may be transmitted only in the following cases:

• Supabase: database hosting (technical provider, for service delivery only)
• Google Gemini API: prescription analysis and coaching generation (anonymized data or non-retained images)
• BDPM API: official medication info lookup (no personal data transmitted)
• Stripe or equivalent: Premium payment processing (billing data only)
• Apple / Google: authentication (opaque identifier only)
• Legal obligation: if required by a court order or competent authority

Under the General Data Protection Regulation, you have the right to:

• Access: obtain a copy of all data we hold about you
• Rectification: correct inaccurate data
• Erasure (right to be forgotten): request deletion of your account and all your data
• Portability: receive your data in a structured format (JSON)
• Object: object to certain processing of your data
• Withdraw consent: at any time, without retroactive effect

To exercise any of these rights, contact us at: privacy@pillomi.app. We commit to responding within 30 days.

You also have the right to lodge a complaint with your national data protection authority (in France: CNIL — www.cnil.fr).

Push notifications are sent only after your explicit consent on first use. You may disable them at any time from app or device settings. Pillomi never uses push notifications for marketing.

In Family Mode, reminders for family members are sent to the caregiver's device. The family member can set up their own notifications if they have the app.

Pillomi is not intended for children under 16. We do not knowingly collect data from minors under 16 without parental consent. Contact privacy@pillomi.app if you believe a minor has provided us with data without consent.

The Pillomi mobile app does not use cookies. The pillomi.app website uses only strictly necessary technical cookies. No advertising or tracking cookies are used.

Some service providers (Google Gemini, Apple, Google Sign-In) are based outside the EU. These transfers are governed by standard contractual clauses approved by the European Commission, ensuring an adequate level of data protection.

We may update this policy to reflect legal or technical changes. Material changes will be communicated via in-app notification or email. The last updated date always reflects the current version.

Email: privacy@pillomi.app
Data Controller: Pillomi SAS — pillomi.app
Supervisory authority: CNIL (France) — www.cnil.fr