PRIVACY NOTICE - PILLMATE
Last updated November 10, 2025
This privacy notice for PillMATE (operated by Hatsoft) ("Company," "we," "us," or "our"), describes how and why we might collect, store, use, and/or share ("process") your information when you use our services ("Services"), such as when you:
- Download and use our mobile application (PillMATE), or any other application of ours that links to this privacy notice
- Engage with us in other related ways, including any sales, marketing, or events
Questions or concerns? Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at hatanim987@gmail.com.
SUMMARY OF KEY POINTS
This summary provides key points from our privacy notice, but you can find out more details about any of these topics by clicking the link following each key point or by using our table of contents below to find the section you are looking for.
What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with PillMATE and the Services, the choices you make, and the products and features you use. This includes personal data such as your name, email address, phone number, and account credentials.
Do we process any sensitive personal information? Yes. PillMATE processes health-related information to provide medication tracking services. This includes medicine names, dosages, schedules, health notes about family members, dates of birth, and related medical information. We treat all health data with the highest level of security and confidentiality.
Do we receive any information from third parties? We do not receive any information from third parties.
How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We process your information only when we have a valid legal reason to do so.
In what situations and with which parties do we share personal information? We may share information in specific situations and with specific third parties such as Firebase for push notifications and AWS for secure data storage. We do not sell your health information to any third parties.
How do we keep your information safe? We have organizational and technical processes and procedures in place to protect your personal information, including encryption for health data. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information.
What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information. You have the right to access, correct, or delete your health information at any time.
How do you exercise your rights? The easiest way to exercise your rights is by contacting us at hatanim987@gmail.com. We will consider and act upon any request in accordance with applicable data protection laws.
TABLE OF CONTENTS
1. WHAT INFORMATION DO WE COLLECT?
Personal information you disclose to us
In Short: We collect personal information that you provide to us.
We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.
Personal Information Provided by You. The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:
- Full name
- Email addresses
- Phone numbers (optional)
- Passwords (securely encrypted)
- Referral codes
Sensitive Information. PillMATE processes sensitive health-related information necessary to provide our medication tracking services. This information is treated with the highest level of confidentiality and security. See section 2 below for details.
Application Data. If you use our application(s), we also may collect the following information if you choose to provide us with access or permission:
- Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's notifications for medication reminders, camera for photo uploads (optional), and other features. If you wish to change our access or permissions, you may do so in your device's settings.
- Push Notifications. We may request to send you push notifications regarding medication reminders, low stock alerts, and other important updates. If you wish to opt-out from receiving these types of communications, you may turn them off in your device's settings.
This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting and for our internal analytics and reporting purposes.
All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.
2. HEALTH AND MEDICAL INFORMATION
In Short: We collect and process health-related information necessary to provide our medication tracking services. This information is protected with the highest security standards.
PillMATE is a medication tracking application designed to help you and your family manage medications effectively. To provide these services, we collect and process the following health-related information:
Dependent/Family Member Information:
- Names of family members you add to track medications
- Gender (optional)
- Date of birth (optional)
- Relationship to you (e.g., father, mother, spouse, child)
- Health notes (optional free-text field for additional context)
- Profile photo (optional)
Medication Information:
- Medicine names (brand and generic names)
- Dosage schedules (morning, lunch, dinner doses)
- Number of doses per day
- Current medication stock/inventory levels
- Medication pricing information (for cost tracking)
- Medication start and end dates
- Medication usage history and stock update logs
User Preferences:
- Meal times (breakfast, lunch, dinner) for medication reminders
- Timezone information
- Pharmacy discount preferences
- Notification preferences
How We Use Your Health Information:
- To track medication inventory and automatically update stock levels
- To send medication reminders based on your dosage schedule
- To alert you when medication stock is running low
- To provide cost analytics and budget forecasting for medication expenses
- To predict next purchase dates based on usage patterns
- To generate reports and summaries of medication adherence
Important Information About Your Health Data:
• Not Medical Advice: PillMATE is a medication tracking tool and does NOT provide medical advice, diagnosis, or treatment. Always consult with qualified healthcare professionals for medical decisions.
• No Healthcare Provider Relationship: Your use of PillMATE does not create a doctor-patient or healthcare provider relationship. The app is designed solely for personal medication management.
• Data Security: All health information is encrypted and stored securely on protected servers with access controls and regular security audits.
• No Data Selling: We will NEVER sell your health information to third parties, including pharmaceutical companies, advertisers, or data brokers.
• Your Control: You have complete control over your health data and can view, edit, or delete it at any time through the app or by contacting us.
3. HOW DO WE PROCESS YOUR INFORMATION?
In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.
We process your personal information for a variety of reasons, depending on how you interact with our Services, including:
- To facilitate account creation and authentication. We process your information to enable you to create and log in to your account.
- To deliver and facilitate delivery of services to the user. We process your information to track medications, send reminders, and provide cost analytics.
- To send you medication reminders. We use your dosage schedule and meal time preferences to send timely medication reminders via push notifications.
- To send you low stock alerts. We monitor your medication inventory and alert you when supplies are running low.
- To provide cost analytics. We process your medication pricing and usage data to help you track expenses and budget for future purchases.
- To manage user accounts. We process your information for account management and to keep your account in working order.
- To save or protect an individual's vital interest. We may process your information when necessary to save or protect your vital interest, such as to prevent harm.
- To improve our services. We may process your information to understand how you use our services and to make improvements (no health data is used for analytics).
- To troubleshoot errors. We log error information to diagnose and fix technical issues (without exposing sensitive health data).
4. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
In Short: We may share information in specific situations described in this section and/or with the following third parties.
We may need to share your personal information in the following situations:
- Business Transfers. We may share or transfer your information in connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.
- Cloud Service Providers. We share necessary data with Amazon Web Services (AWS) for secure database hosting and storage infrastructure. AWS is contractually bound to protect your data.
- Push Notification Services. We share device tokens with Firebase Cloud Messaging (Google) to deliver medication reminders and alerts. Firebase does not have access to your health information.
- When required by law. We may disclose your information where we are legally required to do so in order to comply with applicable law, governmental requests, a judicial proceeding, court order, or legal process.
- To protect vital interests. We may disclose your information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, situations involving potential threats to the safety of any person, or as evidence in litigation.
We do NOT:
- Sell your health information to pharmaceutical companies
- Share your data with advertisers or marketing companies
- Provide your information to data brokers
- Share your data with social media platforms
- Use third-party analytics services that have access to your health data
5. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
In Short: We may use cookies and other tracking technologies to collect and store your information.
We may use cookies and similar tracking technologies (like web beacons and pixels) to access or store information. Our mobile application uses session tokens and device identifiers for authentication and to maintain your logged-in state. We do not use tracking technologies for advertising purposes.
6. HOW LONG DO WE KEEP YOUR INFORMATION?
In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law.
We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law (such as tax, accounting, or other legal requirements).
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
Data Retention Periods:
- Active Account Data: Retained while your account is active
- Deleted Account Data: Permanently deleted within 30 days of account deletion request
- Backup Data: Removed from backups within 90 days
- Error Logs: Retained for 90 days for troubleshooting purposes
7. HOW DO WE KEEP YOUR INFORMATION SAFE?
In Short: We aim to protect your personal information through a system of organizational and technical security measures.
We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure.
Our Security Measures Include:
- Encryption: All data is encrypted in transit using SSL/TLS protocols and at rest in our databases
- Secure Authentication: JWT token-based authentication with secure password storage
- Access Controls: Strict access controls ensure only authorized personnel can access data
- Secure Servers: Data is hosted on secure AWS infrastructure with regular security audits
- Regular Updates: We regularly update our security protocols and software
- Session Management: Secure session management with automatic logout after inactivity
- Error Monitoring: We monitor for security breaches and unauthorized access attempts
8. WHAT ARE YOUR PRIVACY RIGHTS?
In Short: You may review, change, or terminate your account at any time. You have full control over your health data.
If you are located in the EEA, UK, or Bangladesh and you believe we are unlawfully processing your personal information, you also have the right to complain to your local data protection supervisory authority.
Your Rights Include:
- Right to Access: You can request access to all personal and health information we hold about you
- Right to Rectification: You can update or correct inaccurate information at any time through the app
- Right to Erasure: You can request deletion of your account and all associated data
- Right to Data Portability: You can request a copy of your data in a machine-readable format (available in premium plan)
- Right to Restrict Processing: You can request that we limit how we use your data
- Right to Object: You can object to our processing of your data
- Right to Withdraw Consent: You can withdraw consent at any time where we rely on consent to process your data
Account Information:
If you would at any time like to review or change the information in your account or terminate your account, you can:
- Log in to your account settings and update your user account directly within the app
- Contact us using the contact information provided below
Upon your request to terminate your account, we will deactivate or delete your account and information from our active databases. However, we may retain some information in our files to prevent fraud, troubleshoot problems, assist with any investigations, enforce our legal terms and/or comply with applicable legal requirements.
9. CONTROLS FOR DO-NOT-TRACK FEATURES
Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track ("DNT") feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. At this stage, no uniform technology standard for recognizing and implementing DNT signals has been finalized. As such, we do not currently respond to DNT browser signals or any other mechanism that automatically communicates your choice not to be tracked online. If a standard for online tracking is adopted that we must follow in the future, we will inform you about that practice in a revised version of this privacy notice.
10. DO WE MAKE UPDATES TO THIS NOTICE?
In Short: Yes, we will update this notice as necessary to stay compliant with relevant laws.
We may update this privacy notice from time to time. The updated version will be indicated by an updated "Last updated" date and the updated version will be effective as soon as it is accessible. If we make material changes to this privacy notice, we may notify you either by prominently posting a notice of such changes or by directly sending you a notification. We encourage you to review this privacy notice frequently to be informed of how we are protecting your information.
11. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?
If you have questions or comments about this notice, you may email us at hatanim987@gmail.com or by post to:
Hatsoft
PillMATE Support Team
Dhaka, Bangladesh
Website: https://hatsoft.dev
Email: hatanim987@gmail.com
12. HOW CAN YOU REVIEW, UPDATE, OR DELETE THE DATA WE COLLECT FROM YOU?
Based on the applicable laws of your country, you may have the right to request access to the personal information we collect from you, change that information, or delete it. To request to review, update, or delete your personal information, please email us at hatanim987@gmail.com.
To delete your account and all associated data:
- Open the PillMATE app
- Go to Settings > Account
- Select "Delete Account"
- Confirm deletion (this action is irreversible)
Alternatively, you can email us at hatanim987@gmail.com with the subject line "Account Deletion Request" and we will process your request within 30 days.
Important Notes on Data Deletion:
- Account deletion is permanent and cannot be undone
- All your medication data, family member profiles, and history will be permanently deleted
- You will no longer receive medication reminders or alerts
- Any active premium subscription will be cancelled
- Data in backup systems will be removed within 90 days
This privacy policy was created to ensure transparency and protect your health information. We are committed to maintaining the highest standards of data privacy and security for the PillMATE application.