Privacy Policy

This Privacy Policy explains how 2 Bears Software Limited (“we”, “us”, or “our”) handles information when you use the Pill Monitor mobile application (the “App”).

We are committed to protecting your privacy and complying with applicable data protection laws worldwide, including (where applicable) the UK GDPR, EU GDPR, Data Protection Act 2018, CCPA/CPRA, PIPEDA, Australia’s Privacy Act 1988, Brazil’s LGPD, India’s DPDPA 2023, and other equivalent privacy standards.

For the purposes of applicable data protection laws, 2 Bears Software Limited is the data controller. The App is designed so that all medication data stays on your device and is never transmitted to us.

Overview

Pill Monitor is a medication reminder app. It helps users record medications, schedules, reminders, dose history, refill information, and optional medication photos.

This app is designed to store user information locally on the user’s device. It does not require an account, does not upload medication data to our servers, and does not sell user data.

Information the App Stores

The app may store the following information on the user’s device:

• Medication names
• Dosage amounts and units
• Medication schedules
• Dose history, including taken, skipped, missed, or adjusted doses
• PRN/as‑needed medication notes or reasons, if entered by the user
• Refill tracking information, such as current supply, refill amount, and low‑stock thresholds
• Optional medication photos selected by the user
• App preferences, such as theme, clock format, notification settings, and accessibility colour mode

This information may include health‑related information because it relates to medications and reminders. All such data is stored locally on your device only. We do not access, collect, transmit, store, or back up this data on our servers.

Information We Do Not Collect

We do not require you to provide, and we do not collect or store on our servers:

• your real name
• your email address (unless you contact us directly)
• your phone number
• precise or approximate location
• payment or billing information
• government‑issued identifiers
• your contacts or media
• IP addresses or device identifiers used to track you
• any medication or health data you enter into the App

We do not sell, rent, or monetise personal data. We do not use tracking technologies for behavioural profiling.

We do not monitor, access, review, or moderate any medication information, schedules, photos, or other content you enter into the App. You are solely responsible for ensuring its accuracy.

Medication Photos

If the user chooses to add a medication photo, the app copies the selected image into the app’s private local storage on the device.

Medication photos are used only as a visual recognition aid inside the app. The app does not use photos to identify medication, verify medication safety, or provide medical advice.

The app uses the Android system photo picker to access photos. We do not access the user’s photo library beyond the image selected.

Notifications and Alarms

The app uses local notifications and Android alarm/reminder APIs to remind users when medication is due and, where enabled, when tracked supply is low.

Notification content may include medication names and reminder information so that reminders are useful to the user. Notifications are generated locally on the device. We do not receive or process notification content on our servers.

Local notifications are processed under your consent, which you provide by enabling reminders within the App. You may withdraw this consent at any time by disabling notification permissions in your device settings.

Technical and Diagnostic Data

The App uses Android Vitals, Google Play’s built‑in diagnostic service, to receive crash reports and performance metrics. This service is provided automatically by Google LLC for all apps distributed through Google Play.

Data received by Android Vitals may include:

• device model and manufacturer
• Android OS version and app version
• crash stack traces and error logs
• app startup time and performance timing data

This data does not include your name, medication data, or any information you enter into the App. It is pseudonymous and cannot be directly linked to you by us. It is used solely to identify and fix technical issues with the App.

Android Vitals data is processed by Google LLC. See the International Data Transfers section below for details.

International Data Transfers

All medication and health data you enter into the App is stored solely on your device and is never transferred internationally by us.

Technical diagnostic data (crash reports and performance metrics via Android Vitals) is processed by Google LLC, which operates servers in the United States and other countries. For users in the UK and EEA, this transfer is carried out under:

• Google’s Standard Contractual Clauses (SCCs) approved by the European Commission
• The UK International Data Transfer Agreement (IDTA) for UK users

Google LLC is certified under the EU‑US Data Privacy Framework. No other personal data is transferred internationally by us.

Data Sharing

The app does not sell user data.

The app does not intentionally share medication data, dose history, refill information, or medication photos with third parties.

The app may use standard Android system services, such as notifications, alarms, storage, and the system photo picker, to provide app functionality. These services are provided by the operating system.

Accounts and Cloud Sync

The app currently does not require users to create an account.

The app currently does not provide cloud sync. Medication data is stored locally on the device.

Data Retention and Deletion

Medication data remains on the device until the user deletes it in the app, clears the app’s storage, or uninstalls the app.

Users can delete medications from within the app. Deleting a medication may also remove related schedules and history held by the app.

Users can remove a medication photo from the medication edit screen. Uninstalling the app or clearing app storage removes all locally stored app data from the device.

We hold no copies of user medication data on our systems, so there is nothing for us to delete on our end. Technical diagnostic logs are retained by Google for a limited period in accordance with Google’s own retention policies.

Emails you send us are retained for up to 24 months for support and record‑keeping purposes only. They are not shared with third parties and are deleted when no longer needed to resolve your enquiry.

Security

We take reasonable steps to protect the data processed in connection with the App:

• All medication data is stored in Android’s private app storage (internal storage), which is inaccessible to other apps without root access.
• On devices with a screen lock enabled, Android’s built‑in encryption protects app storage at rest (Android 6.0 and above).
• No medication data is transmitted over a network, so there is no in‑transit exposure of your health information.
• The App requests only the permissions necessary to function: notifications, alarm scheduling, and the system photo picker. It does not request access to contacts, location, microphone, camera, or your full photo library.
• We apply secure coding practices and keep app permissions under regular review.

Users are responsible for protecting access to their own device, for example by enabling a screen lock or biometric authentication.

No Automated Decision‑Making

The App does not use automated decision‑making or profiling as defined under the UK GDPR or EU GDPR (Article 22). All reminders and tracking are based solely on information you choose to enter into the App. No decisions with legal or similarly significant effects are made about you automatically.

Children and Caregivers

The app is not intended for children under 16 without parental involvement. We do not knowingly collect personal data from children.

The app may be used by parents, carers, or caregivers to manage medication reminders. Users should only enter information they are authorised to manage.

The app is not intended to provide medical advice, diagnosis, or treatment.

Medical Disclaimer

The app is a reminder and tracking tool only. It does not verify medication correctness, dosage safety, interactions, timing suitability, or medical appropriateness.

Users should follow advice from qualified healthcare professionals and medication labels. In an emergency, users should contact emergency services or a qualified medical professional.

Limitation of Liability

The App is provided “as is” and “as available” without warranties of any kind, express or implied, including but not limited to warranties of merchantability, fitness for a particular purpose, or uninterrupted availability.

To the fullest extent permitted by applicable law, 2 Bears Software Limited shall not be liable for:

• loss of data caused by device failure, user error, or uninstalling the App
• missed or failed medication reminders caused by device settings, notification permissions, power‑saving modes, or operating system restrictions
• any health outcome arising from reliance on the App or failure of a reminder
• unauthorised access to your device by third parties
• misuse of the App by the user or any third party

Nothing in this section limits our liability for death or personal injury caused by our negligence, or for fraud or fraudulent misrepresentation, or for any liability that cannot be excluded or limited under applicable law.

Legal Basis for Processing

Depending on your location:

• Medication and health data is processed on your device under your control and with your consent
• Local notification delivery is processed under your consent, given by enabling reminders within the App
• Anonymised technical data is processed under our legitimate interests in maintaining and improving the App
• Contact information you send us is processed under our legitimate interests in responding to enquiries

Your Rights (UK and EU/EEA Users)

If you are located in the UK or EU/EEA, you have rights under the UK GDPR or EU GDPR to:

• access information about how your data is processed
• request rectification of inaccurate data
• request erasure of your data
• object to or restrict certain processing
• data portability where applicable
• withdraw consent at any time
• lodge a complaint with a supervisory authority

Because all medication data is stored locally on your device, most of these rights are exercised directly within the App or by uninstalling it.

If you are in the UK, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO).

If you are in the EU or EEA, you have the right to lodge a complaint with your local Data Protection Authority (DPA).

To exercise any right that requires our assistance, contact us at 2bearssoftware@gmail.com.

US Residents — CCPA / CPRA

If you are a resident of the United States, including California, you may have rights under the CCPA/CPRA to know, delete, and opt out of the sale or sharing of personal information.

We do not sell or share personal information. Medication data remains on your device and is not collected by us. You may contact us at 2bearssoftware@gmail.com with any privacy‑related requests.

Canadian Residents — PIPEDA

We collect only the personal data you choose to enter into the App, for the sole purpose of displaying it back to you on your device. We do not share it with third parties. You may request access to or deletion of any data we hold by contacting us.

Australian Residents — Privacy Act 1988

We handle personal information in accordance with the Australian Privacy Principles. You have the right to access and correct personal information we hold about you. Contact us at 2bearssoftware@gmail.com.

Brazilian Residents — LGPD

We process your personal data on the basis of your consent (Art. 7, I, LGPD) and, where applicable, for the protection of health (Art. 7, VII, LGPD). You have the rights of confirmation, access, correction, anonymisation, deletion, portability, and information about sharing. Contact us to exercise these rights.

Indian Residents — DPDPA 2023

We process personal data only for the purposes described in this policy and only with your consent. You have the right to access information, correct inaccuracies, and withdraw consent. Contact us at 2bearssoftware@gmail.com.

Changes to This Policy

We may update this Privacy Policy from time to time. If we make changes, we will update the effective date above. Continued use of the App after a change constitutes acceptance of the revised policy.

If the App ever introduces features that involve cloud storage, account creation, or any transmission of medication data to external servers, we will notify users through the App and/or this policy page, and will obtain any necessary consent before such processing begins. Material changes of this nature will not take effect until users have had the opportunity to review and accept them.

Governing Law and Jurisdiction

This Privacy Policy, and any dispute or claim arising out of or in connection with it or your use of the App, shall be governed by and construed in accordance with the laws of England and Wales.

Where legally permitted, any legal proceedings relating to this Privacy Policy or your use of the App must be brought exclusively in the courts of England and Wales.

Nothing in this section affects any mandatory rights you may have under the laws of your country of residence, including any right to bring proceedings before your local courts that cannot be waived or restricted by applicable law.

Contact

For privacy questions or requests, contact: