Informativa sulla Privacy

DoseSync (“we”, “us”, “our”) is the data controller responsible for your personal data. For privacy inquiries, contact us at help@dosesync.app. We respond to requests within 30 days.

DoseSync collects only the minimum data required to provide the service:

• Account data: email address, display name, profile preferences.
• Health data:medication names, dosages, schedules, dose confirmation records, and adherence logs. This is “special category” data under GDPR Article 9 and “sensitive personal information” under the California CPRA. This data is stored in our Supabase database — DoseSync does not access Apple HealthKit.
• Family data: family space membership, roles (owner, caregiver, viewer, guest), invitation records.
• Device data: push notification tokens (APNs), app version, language preference, device model.
• Subscription data: active plan, renewal dates, and purchase receipts from Apple StoreKit — used for entitlement verification.
• Product analytics (PostHog): pseudonymous usage events such as screen views, feature-use counters, and funnel progression. No email, name, or medication content is sent. A pseudonymous ID is assigned at first launch; events may be associated with your user account for product improvement purposes.
• Attribution data (AppsFlyer):if you grant permission via the App Tracking Transparency (ATT) prompt, AppsFlyer collects your device's Identifier for Advertisers (IDFA) and device ID to measure which advertising channels led you to install DoseSync. If you deny ATT permission, AppsFlyer uses only probabilistic attribution via SKAdNetwork — no IDFA is collected. See §10 for details.
• Crash and performance data (Sentry): crash reports, error traces, and performance timings. Personally identifiable fields (email, IP address, authentication tokens) are stripped client-side before send. No medication content is attached to error events.
• Website usage (Vercel Analytics): aggregate, cookieless page-view counts on dosesync.app. No personally identifiable information.

We do not sell your data. We do not build advertising profiles or use your data for behavioral advertising. We use AppsFlyer solely for install attribution measurement — to understand which marketing channels bring users to the app. No medication data, dose records, or health information is shared with AppsFlyer.

Your data is used exclusively to operate DoseSync:

• Synchronising dose records across family members in real time.
• Sending medication reminders via push notifications.
• Generating PDF adherence reports for your personal use.
• Managing family spaces and member access.
• Processing subscriptions and billing through Apple.
• Improving app performance, detecting crashes, and fixing bugs.
• Measuring install attribution to improve marketing efficiency (AppsFlyer, with ATT consent only).

• Contract performance (Article 6(1)(b)): account data, family data, device data, and subscription data, to provide the DoseSync service you requested.
• Explicit consent (Article 6(1)(a) + Article 9(2)(a)): medication and adherence data as health data. By creating an account and using DoseSync, you give explicit consent for this processing. You may withdraw consent at any time via Settings → Delete Account.
• Legitimate interest (Article 6(1)(f)): pseudonymous crash, performance, and product-analytics data, to secure and improve the service.
• Consent (Article 6(1)(a)):IDFA-based attribution via AppsFlyer, subject to your ATT permission choice. You may revoke this at any time in iOS Settings → Privacy & Security → Tracking.

Your medication schedules, dose confirmations, and adherence records constitute health data under GDPR Article 9. We process this data solely to coordinate medication tracking within your family. We do not share this data with healthcare providers, insurers, employers, or any third parties except our infrastructure subprocessors (see §9).

DoseSync is not a medical device. It is not intended to diagnose, treat, cure, or prevent any disease. Always consult a qualified healthcare professional regarding medications and dosages.

DoseSync does not access Apple HealthKit. Medication data is stored directly in our Supabase database.

• All family members can view shared medication schedules and dose confirmations for dependents in that space.
• Each family space is isolated from other families.
• Guest members (temporary access via QR or link) can confirm doses but cannot edit medications or manage family settings. Guest tokens expire on a configurable schedule.
• Family owners can remove members at any time; removed members immediately lose access to shared data.
• Each adult member provides their own consent when joining.

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use row-level security (RLS) in our database — each family can only access their own data. Authentication is handled via Supabase with industry-standard encryption, Sign in with Apple, and optional Face ID / Touch ID app lock.

DoseSync is not end-to-end encrypted: our database provider can technically decrypt data at rest to provide the service. We are not a HIPAA-covered entity.

Account data is retained while your account is active. Upon account deletion, all personal data is permanently removed from our active systems within 30 days. Backup copies may persist for up to 90 days, after which they are permanently deleted. Waitlist email addresses are retained until 90 days after app launch. You can request immediate deletion at any time by emailing help@dosesync.app.

No medication data, dose records, or health information is shared with any of these services beyond what is necessary to operate their respective functions.

When you first open DoseSync, you will see an Apple system prompt asking whether to allow DoseSync to track your activity across other companies' apps and websites. This prompt relates exclusively to install attribution via AppsFlyer.

If you tap “Allow”: AppsFlyer collects your IDFA and device ID to attribute your installation to the advertising channel that brought you to DoseSync. This data is used to measure marketing efficiency. No health or medication data is involved.

If you tap “Ask App Not to Track” (or deny): AppsFlyer uses SKAdNetwork-only attribution — a privacy-preserving framework managed by Apple that provides aggregate campaign data without identifying you. No IDFA is collected.

To change your choice at any time:iOS Settings → Privacy & Security → Tracking → toggle DoseSync off.

Your data may be transferred to and processed in countries outside the European Economic Area (EEA), including the United States. Supabase and Vercel participate in the EU-US Data Privacy Framework. Transfers to Apple, PostHog, Sentry, and AppsFlyer are covered by Standard Contractual Clauses (SCCs) approved by the European Commission.

• Access your personal data.
• Rectify inaccurate or incomplete data.
• Request erasure (“right to be forgotten”).
• Restrict or object to processing.
• Data portability (receive your data in a machine-readable format).
• Withdraw consent at any time.
• Lodge a complaint with your local data protection supervisory authority.

To exercise these rights, email help@dosesync.app. We will respond within 30 days.

DoseSync does not use automated decision-making or profiling that produces legal effects or significantly affects you. All medication decisions remain entirely in your control.

Our website does not use cookies. Our website analytics (Vercel Analytics) is cookieless and does not collect personally identifiable information.

The DoseSync iOS app does not use advertising SDKs for behavioral targeting. The app uses Apple's App Tracking Transparency (ATT) framework in connection with AppsFlyer for install attribution only (see §10). No cross-context behavioral advertising is conducted.

If you are a California resident, you have the right to:

• Know what personal information we collect, use, and disclose.
• Request deletion of your personal information.
• Correct inaccurate personal information.
• Opt out of the sale or sharing of your personal information.

We do not sell personal information.We share pseudonymous analytics data with PostHog and attribution data with AppsFlyer (with your ATT consent) for the purposes described in this policy. These are not “sales” under the CCPA/CPRA, but you may opt out of the AppsFlyer sharing at any time via iOS Settings → Privacy & Security → Tracking.

To submit a request, email help@dosesync.app.

DoseSync is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us with personal data without consent, contact help@dosesync.app and we will delete it promptly.

DoseSync is an organisational tool for coordinating medication within families. It does not provide medical advice, diagnosis, or treatment recommendations. DoseSync is not a medical device and is not regulated by the FDA, EMA, MHRA, or any other medical regulatory body.

We may update this Privacy Policy to reflect changes in law, our practices, or for operational reasons. Material changes will be notified to you inside the app or by email at least 30 days before they take effect.

Questions about your privacy? Email us at help@dosesync.app.