Privacy Policy

Last updated: June 19, 2026

1. Information We Collect

Account Information
We may collect information you provide when creating or using an account, including your name, email address, phone number, account role, login information, clinic information, and provider or patient profile details. Authentication may be handled through Firebase Authentication.

Medication and Health Information
Depending on the features you use, PillThinker may collect and store medication names, dosage details, medication schedules, pill counts, refill details, health logs, medical history entries, allergies, conditions, records, and related notes that you add to the app.

Patient-Provider Connection Information
If you connect to a provider or clinic through PillThinker, we may process clinic identifiers, provider account information, patient update requests, clinic messages, patient-selected updates, and related account-linking information.

MyChart / Epic FHIR Health Data
If you choose to connect a MyChart or Epic-supported account, PillThinker may request access to health information through SMART on FHIR / FHIR APIs. This may include information such as medications, medication requests, allergies, conditions, patient demographics, observations, lab-related information, and other health records depending on the permissions you approve and the data made available by your healthcare organization.

PillThinker will not access MyChart/Epic data unless you choose to connect your account and authorize access. You may be shown a separate authorization screen from your healthcare organization, Epic, or MyChart explaining the information being shared.

NextGen and Other Integrations
PillThinker may support integrations with healthcare platforms such as NextGen in the future. If those integrations become available, we will only access information through supported authorization flows or user/provider-approved workflows.

Device, Usage, and Analytics Information
We may collect device and usage information such as app activity, feature usage, crash information, diagnostic data, device identifiers, notification tokens, IP address, operating system, and general analytics data. We may use Firebase Analytics, Firebase Messaging, Firebase Firestore, Firebase Storage, Firebase Functions, and related Google/Firebase services to operate and improve the app.

Local Device Storage
Some information may be stored locally on your device so the app can function properly, remember your preferences, schedule reminders, and load saved data. This may include medication lists, health logs, medical history entries, account role/profile data, clinic messages, and analytics counters.

2. How We Use Information

We use information to:
- create and manage accounts;
- provide medication tracking, reminders, refill reminders, and health organization features;
- display medication, health log, and health record information;
- help identify possible medication interaction warnings;
- support patient-provider sharing features when you choose to use them;
- import or display health information from MyChart/Epic or other supported systems when authorized by you;
- send push notifications and reminders;
- respond to support requests;
- improve app performance, safety, reliability, and usability;
- detect, prevent, or investigate misuse, security issues, or technical problems;
- comply with legal obligations.

3. Important Health and Medical Notice

PillThinker is not a healthcare provider, pharmacy, insurance company, emergency medical service, or substitute for professional medical care. PillThinker does not provide medical diagnosis, treatment, or professional medical advice. Medication information, AI explanations, reminders, health record imports, and interaction warnings are for informational and organizational purposes only and may be incomplete, outdated, or inaccurate.

Use of PillThinker does not create a physician-patient, pharmacist-patient, therapist-patient, clinician-patient, or other healthcare provider relationship. Always confirm medication instructions, dosage, interactions, allergies, and health decisions with a licensed physician, pharmacist, or qualified healthcare professional. In an emergency, call emergency services immediately.

4. AI Features

PillThinker may include AI-powered explanations or summaries. AI-generated content may be incorrect, incomplete, outdated, or not specific to your personal medical situation. AI output should not be used as a substitute for professional medical advice, diagnosis, or treatment. You should independently verify important health information with qualified healthcare professionals.

5. How We Share Information

We do not sell your personal information.

We may share information:
- with service providers that help us operate the app, such as Firebase/Google services;
- with healthcare providers or clinics when you choose to send or share information with them;
- through MyChart/Epic or other integrations when you authorize the connection;
- when required by law, subpoena, court order, or valid legal process;
- to protect the rights, safety, and security of PillThinker, users, or others;
- during a business transfer such as a merger, acquisition, financing, or sale of assets.

6. Firebase and Third-Party Service Providers

PillThinker may use Firebase Authentication, Firestore, Storage, Analytics, Cloud Messaging, and Cloud Functions. These services may process account data, health-related data, app usage data, device tokens, and technical information to support app functionality.

Your use of PillThinker may also involve third-party systems such as Apple, Epic/MyChart, NextGen, healthcare organizations, analytics providers, hosting providers, and infrastructure providers depending on the features used.

7. Data Retention

We keep personal information only as long as reasonably needed for app functionality, account management, security, legal compliance, dispute resolution, and business operations. Some data may remain in backups, logs, audit records, or security records for a limited period.

8. Data Deletion Requests

You may request deletion of your PillThinker account and associated data by contacting us at support@getpillthinker.com. We will process deletion requests within a reasonable timeframe unless retention is required or permitted by law, security needs, fraud prevention, audit obligations, dispute resolution, contractual obligations, or legitimate business purposes.

Deleting the app from your device may remove some locally stored data, but it may not automatically delete information stored in Firebase, cloud backups, provider-shared records, or connected third-party systems. Please contact us if you want to request account or cloud data deletion.

9. MyChart / Epic Consent and Revocation

If you connect a MyChart, Epic, or other health account, you authorize PillThinker to access, process, and display the information you approve for app functionality. You may disconnect connected health accounts or revoke access through the relevant healthcare portal, MyChart/Epic authorization settings, or app settings when available.

Disconnecting or revoking access will stop future imports where technically supported, but it may not automatically delete information that was previously imported into PillThinker. You may request deletion of previously imported information by contacting us.

10. Your Choices and Controls

You may:
- update or delete certain information inside the app;
- revoke connected health account access when available;
- disable notifications through your device settings;
- request access, correction, or deletion of your information by contacting us;
- stop using the app at any time.

11. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. These safeguards may include authentication controls, secure cloud infrastructure, access controls, encrypted communications where supported, and monitoring designed to protect user information.

However, no method of transmission, processing, or storage is completely secure, and we cannot guarantee absolute security.

12. Children’s Privacy

PillThinker is not intended for children under 16. We do not knowingly collect personal information from children under 16 without appropriate consent. If you believe a child has provided personal information, contact us so we can review and take appropriate action.

13. HIPAA and Healthcare Data

PillThinker may process health-related information. Where applicable, we take reasonable steps to safeguard health information in accordance with applicable laws, user consent, and contractual obligations. This statement does not mean that every use of PillThinker is covered by HIPAA or that PillThinker is acting as a HIPAA-covered entity in every circumstance. HIPAA obligations may depend on the user, provider relationship, feature used, data source, and agreements in place.

14. State Privacy Rights

Depending on where you live, you may have rights to access, correct, delete, or receive information about how your personal information is used. To make a request, contact us at support@getpillthinker.com.

15. International Users

PillThinker is currently intended for users in the United States. If you access the service from outside the United States, you understand that your information may be processed and stored in the United States or other locations where our service providers operate.

16. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will update the “Last updated” date and may provide additional notice through the app, website, or email.

17. Contact Us

For privacy, support, access, correction, deletion, or data-related requests, contact:

support@getpillthinker.com