Back to Home
Privacy Policy
Effective Date: September 2024
Your Privacy Matters: We are committed to protecting your medical information and being transparent about our data practices. This policy explains exactly what we collect, why, and how we protect it.
1. Introduction
RINA Ventures, LLC, doing business as Droppies ("we," "our," or "us") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our medication tracking application and related services (the "Service").
2. Information We Collect
2.1 Personal Information You Provide
- Email Address: Required for account creation and magic link authentication
- Medication Data: Names, schedules, and administration records of your medications
- User Preferences: Settings and customization options you select
2.2 Information Collected Automatically
- Usage Analytics: How you interact with the Service (via PostHog analytics)
- Device Information: Browser type, operating system, and device identifiers
- Log Data: IP addresses, access times, and pages visited
- Cookies and Similar Technologies: For authentication and user preferences
2.3 Information We Do NOT Collect
- Passwords: We use passwordless authentication via magic links
- Medical Diagnoses: We only track medication names and schedules, not medical conditions
- Personal Health Records: We are not a medical records system
3. How We Use Your Information
We use your information to:
- Provide the Service: Enable medication tracking, reminders, and scheduling features
- Authentication: Verify your identity through magic link authentication
- Improve the Service: Analyze usage patterns to enhance functionality
- Communication: Send important updates about the Service (not marketing)
- Legal Compliance: Meet legal obligations and protect rights
4. Legal Basis for Processing (GDPR)
We process your personal information based on:
- Consent: You have given clear consent for specific purposes
- Contract: Processing is necessary for the performance of our service contract
- Legitimate Interest: For service improvement and security purposes
5. Information Sharing and Disclosure
5.1 User-Controlled Sharing
- Medication Sharing: You can choose to share specific medication data with other users
- Permission Levels: You control what level of access (Viewer, Contributor, Manager) others have
- Revocable Access: You can remove sharing permissions at any time
5.2 Service Providers
We may share information with:
| Provider |
Purpose |
Data Shared |
| Supabase |
Database and authentication |
Email, medication data |
| PostHog |
Analytics and usage insights |
Usage patterns, anonymized data |
| Netlify |
Hosting and deployment |
Access logs, IP addresses |
5.3 What We Don't Do
- Never Sell Data: We do not sell, rent, or trade your personal information
- No Marketing: We do not use your information for marketing purposes
- No Third-Party Advertising: We do not share data with advertisers
6. Data Security
We implement industry-standard security measures:
- Encryption: Data is encrypted in transit and at rest
- Access Controls: Limited access to personal information on a need-to-know basis
- Regular Audits: Ongoing security assessments and improvements
- Secure Infrastructure: Hosted on secure cloud platforms with robust security practices
7. Data Retention
- Active Accounts: We retain your information while your account is active
- Account Deletion: When you delete your account, all personally identifiable information (PII) is destroyed immediately with no retention period
- Anonymized Data: Anonymized usage data may be retained in perpetuity for service improvement and analytics
- Legal Requirements: Some anonymized data may be retained longer if required by law
8. Your Rights and Choices
8.1 Access and Control
- View Your Data: Access all personal information we have about you
- Update Information: Modify your email address and medication data
- Delete Account: Remove your account and associated data
- Export Data: Download your medication tracking history
- Manage Sharing: Control who has access to your medication data
8.2 Regional Rights
California Residents (CCPA):
- Right to know what personal information we collect
- Right to delete personal information
- Right to opt-out of data sales (we don't sell data)
- Right to non-discrimination
European Residents (GDPR):
- Right to access your personal data
- Right to rectification
- Right to erasure ("right to be forgotten")
- Right to restrict processing
- Right to data portability
- Right to object to processing
9. Children's Privacy
Droppies is not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.
10. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top.
11. Contact Information
If you have questions about this Privacy Policy or our data practices, please contact us:
RINA Ventures, LLC
Email: hey@getdroppies.com
Website: getdroppies.com
12. Data Processing Addendum
For enterprise customers or healthcare organizations requiring a Data Processing Addendum (DPA), please contact us at hey@getdroppies.com.
Your Trust is Our Priority: We take your privacy seriously and are committed to protecting your medical information with the highest standards of security and confidentiality.