top of page

Data & Privacy Policy

Last updated: September 2025

rmndr (“we”, “us”, or “our”) is committed to protecting your privacy. This Policy explains how we collect, use, store, and protect your personal data when you use our smart pill pot, mobile app, and associated services (“Services”).

1. Who We Are

We are rmndr ltd, a UK-registered company providing a medication reminder service comprising a smart pill pot, mobile application, and user dashboard. We act as the data controller of your personal data under the UK General Data Protection Regulation (UK GDPR).

2. What Data We Collect

We collect the following categories of data:

  • Identity & Contact Data: name, email address.

  • Medication & Adherence Data (health data): medications you track, scheduled reminder times, adherence events (e.g., when a dose is marked taken).

  • Device & Technical Data: device identifiers, app version, diagnostics/crash logs, usage events (e.g., via Firebase).

  • Account Preferences: notification settings, language, accessibility choices.

  • Optional Demographic Data: gender and age band (e.g., 18–24, 25–34, etc.). We do not require full date of birth. “Prefer not to say” is available.

Sensitive data notice: Medication/adherence data may constitute health data. Where required by law, we seek your explicit consent before processing such data.

3. How We Collect Your Data

We collect data when you:

  • create an account or purchase our product,

  • use the app to schedule reminders and record adherence,

  • interact with the smart pill pot (via the app),

  • contact support or engage with in-app features,

  • optionally provide demographics.

4. How We Use Your Data

We use your data to:

  • Provide the Services: schedule reminders, send notifications (including critical alerts), power your dashboard and stats, and provide customer support.

  • Maintain & Improve: monitor performance, debug issues, enhance security, and develop new features.

  • Analytics & Research: use aggregated and/or de-identified information (including grouping by age band and gender) for statistics, research, product development, and commercial purposes. We apply measures designed to reduce the risk of re-identification.

  • Legal & Compliance: meet legal, regulatory, and safety obligations.

If we intend to use your health or demographic data for new purposes that are not compatible with the purposes described at the time of collection, we will seek your consent where required and/or provide appropriate opt-out options.

5. Legal Basis for Processing

Depending on the context, we rely on:

  • Contract: to provide the Services you use or purchase.

  • Consent: for push notifications, emails (where required), processing of health data and optional demographics, and other non-essential purposes. You may withdraw consent at any time in the app or by contacting us.

  • Legitimate Interests: to improve, secure, and operate our Services (balanced against your rights).

  • Legal Obligation: to comply with applicable laws.

6. Sharing & Disclosure

We do not sell your personal data.

We may share data as follows:

  • Service Providers (Processors): trusted vendors (e.g., cloud hosting, analytics, notification delivery) processing data on our instructions under contractual safeguards.

  • Legal/Safety: where required by law or necessary to protect rights, safety, or the integrity of our Services.

  • Aggregated/De-identified Data: we may use and share aggregated and/or de-identified information (including insights by age band and gender) that does not identify you.

  • Business Transfers: in connection with a merger, acquisition, financing, reorganization, or sale of assets, your information may be transferred to relevant parties, subject to applicable law and your rights.

If our practices change to constitute a “sale” or “sharing” of personal data under applicable law, we will update this Policy and provide required consent and/or opt-out mechanisms before such activity.

7. Data Storage & International Transfers

We store data using Firebase/Google Cloud (primarily located in the United States). Where data is transferred outside the UK, we implement appropriate safeguards (e.g., UK Standard Contractual Clauses and Google’s Data Processing terms) consistent with UK GDPR.

8. Data Retention

We retain personal data only for as long as necessary to provide the Services and for legitimate business or legal purposes. If your account is inactive for 24 months, we may delete or de-identify your data. We retain consent records (e.g., version and timestamp) to demonstrate compliance.

9. Your Rights

Subject to applicable law, you may:

  • Access your personal data;

  • Rectify inaccurate or incomplete data;

  • Erase data (“right to be forgotten”);

  • Restrict or Object to processing;

  • Port data to another provider;

  • Withdraw consent at any time (does not affect prior lawful processing).

Some adherence data used for your stats may not be editable in-app; contact us for review or deletion where applicable.

10. Managing Your Data & Consent

Within the app you can:

  • delete reminders and adjust notification settings,

  • add/update/remove gender and age band (optional),

  • review and toggle consents (e.g., health data processing, demographics analytics).

You can also email support@rmndr.co.uk to exercise rights or withdraw consent.

11. Security

We implement administrative, technical, and physical safeguards appropriate to data sensitivity, including encryption in transit and at rest, access controls, and monitoring. No system is 100% secure.

12. Children’s Privacy

Our Services are not intended for children where valid consent cannot be provided under local law. We do not knowingly collect personal data from such children.

13. Where You’ll Find This Policy

This Policy is hosted on our website (canonical version) and is also linked within the app (e.g., Settings and onboarding). We will prompt for re-consent in-app if we make material changes that require it.

14. Contact Us

Email: support@rmndr.co.uk

15. Updates to This Policy

We may update this Policy to reflect legal, technical, or business changes. We will post updates with a new “Last updated” date and, where required, notify you and/or seek consent.

bottom of page