Privacy Policy

At PharmaList, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and services. Please read this privacy policy carefully.

HIPAA Compliance

PharmaList is a HIPAA-compliant platform. We adhere to all requirements of the Health Insurance Portability and Accountability Act (HIPAA) to protect your Protected Health Information (PHI). All communications with pharmacists are conducted through secure, encrypted Google Cloud Functions to ensure your data remains confidential.

Information We Collect

Personal Information

We collect the following personal information:

• Name and contact information (email address, phone number)
• Account credentials (encrypted)
• Profile information (display name, preferences)

Health Information

With your consent, we collect and store:

• Medication lists (names, strengths, dosages, directions)
• Medication adherence data (doses taken, missed doses)
• Allergies and adverse reactions
• Medical conditions and diagnoses
• Lab results (if provided for pharmacist review)
• Notes and messages to pharmacists

Usage Information

We automatically collect certain information about your device and usage:

• Device type and operating system version
• App usage statistics (features used, time spent)
• Error logs and crash reports
• IP address and general location (for security purposes)

How We Use Your Information

To Provide Our Services

• Deliver medication reminders and notifications
• Track and analyze medication adherence
• Facilitate comprehensive medication reviews by pharmacists
• Generate adherence reports and medication lists
• Enable sharing with caregivers and healthcare providers
• Sync data across your devices

To Improve Our Services

• Analyze usage patterns to enhance user experience
• Identify and fix technical issues
• Develop new features based on user needs
• Conduct research on medication adherence (only with aggregated, de-identified data)

To Communicate With You

• Send service-related notifications
• Respond to your inquiries and support requests
• Provide updates about new features or changes to our services
• Send educational content about medication management (if you opt in)

How We Share Your Information

With Your Consent

We share your medication information with board-certified pharmacists only when you request a medication review. You control which caregivers and healthcare providers can access your medication list through our sharing features.

With Service Providers

We use trusted third-party service providers to help us operate our platform:

• Google Cloud Platform / Firebase: Secure data storage and cloud functions
• Apple: App distribution, push notifications, and device syncing
• Analytics Services: Aggregated, de-identified usage analytics

All service providers are bound by strict confidentiality agreements and HIPAA Business Associate Agreements (BAAs) where applicable.

For Legal Compliance

We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to:

• Comply with legal obligations
• Protect our rights, property, or safety
• Prevent fraud or abuse
• Respond to emergencies involving danger of death or serious physical injury

We Never Sell Your Data

We do not sell, rent, or trade your personal or health information to third parties for marketing purposes. Ever.

Data Security

We implement industry-standard security measures to protect your information:

• Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256)
• Secure Cloud Functions: All Firebase communications use secure, authenticated cloud functions
• Access Controls: Strict role-based access controls limit who can view your data
• Authentication: Multi-factor authentication and biometric login options
• Regular Audits: Periodic security audits and penetration testing
• HIPAA Compliance: Full compliance with HIPAA Security Rule requirements

However, no method of transmission over the internet is 100% secure. While we strive to protect your information, we cannot guarantee absolute security.

Your Privacy Rights

Access and Portability

You have the right to access your personal and health information. You can export your medication list and adherence data at any time through the app.

Correction

You can update or correct your information directly in the app. If you need assistance, contact us at privacy@pharmalist.com.

Deletion

You can request deletion of your account and all associated data. Note that we may retain certain information as required by law or for legitimate business purposes (e.g., completed pharmacist reviews for professional liability records).

Opt-Out

You can opt out of non-essential communications at any time through app settings or by contacting us.

Sharing Controls

You have complete control over who can access your medication information. You can revoke sharing access at any time through the app.

Children's Privacy

PharmaList is designed for use by adults managing their own medications or by parents/guardians managing medications for minors. We do not knowingly collect information from children under 13 without parental consent. If you believe we have inadvertently collected information from a child without proper consent, please contact us immediately.

International Users

PharmaList is based in the United States and our servers are located in the United States. If you are accessing our services from outside the United States, please be aware that your information will be transferred to, stored, and processed in the United States. By using our services, you consent to this transfer.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

• Posting the new Privacy Policy in the app
• Updating the "Last Updated" date
• Sending you a notification (for significant changes)

Your continued use of PharmaList after changes are posted constitutes acceptance of the updated Privacy Policy.

California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information we collect and how we use it
• Right to delete your personal information (subject to certain exceptions)
• Right to opt-out of the sale of personal information (we don't sell your data)
• Right to non-discrimination for exercising your privacy rights

To exercise these rights, contact us at privacy@pharmalist.com or (555) 123-4567.

Contact Us

If you have questions or concerns about this Privacy Policy or our privacy practices, please contact us:

Email: privacy@pharmalist.com
Phone: (555) 123-4567
Mail: PharmaList Privacy Officer
[Your Address]
[City, State ZIP]

HIPAA Authorization

By using PharmaList's pharmacist review services, you authorize us to:

• Share your medication list and health information with board-certified pharmacists for review
• Store your health information securely in our HIPAA-compliant database
• Use your de-identified health information for quality improvement and research

You may revoke this authorization at any time by deleting your account or contacting us. Revocation will not affect information already disclosed based on your prior authorization.

Data Retention

We retain your information for as long as your account is active or as needed to provide services. After account deletion, we may retain certain information:

• Pharmacist review records: 7 years (professional liability requirements)
• Transaction records: As required by law
• De-identified analytics: Indefinitely for research purposes

Third-Party Links

Our app may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

Consent

By using PharmaList, you consent to this Privacy Policy and our collection, use, and disclosure of your information as described herein.