Privacy Policy

Last updated: March 24, 2026

This privacy notice for Dose AI, Inc.(“we,” “us,” or “our”), describes how and why we might collect, store, use, and/or share (“process”) your information when you use our services (“Services”), such as when you:

  • Visit our website at https://www.doseai.app, or any website of ours that links to this privacy notice
  • Download and use our mobile application (Dose AI), or any other application of ours that links to this privacy notice
  • Engage with us in other related ways, including any sales, marketing, or events

Questions or concerns? Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at support@doseai.app.

SUMMARY OF KEY POINTS

This summary provides key points from our privacy notice, but you can find out more details about any of these topics by reading the full sections below.

What personal information do we process? When you visit, use, or navigate our Services, we may process personal information depending on how you interact with us and the Services, the choices you make, and the products and features you use. This includes health and medication data you provide.

Do we process any sensitive personal information? Yes. We process sensitive health information including medication names, dosages, schedules, and related health data when necessary to provide our Services, with your consent or as otherwise permitted by applicable law.

Do we share data with third-party AI services? Yes. Certain AI-powered features send data to OpenAI for processing. This is described in detail in the “Third-Party AI Services” section below. We obtain your explicit consent before sending any data to third-party AI services.

Do we collect any information from third parties? We do not collect any information from third parties.

How do we process your information? We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law. We may also process your information for other purposes with your consent.

In what situations and with which parties do we share personal information? We may share information in specific situations and with specific third parties, including OpenAI for AI-powered features, Sentry for crash reporting, and Firebase for push notifications.

How do we keep your information safe? We have organizational and technical processes and procedures in place to protect your personal information. However, no electronic transmission over the internet or information storage technology can be guaranteed to be 100% secure.

What are your rights? Depending on where you are located geographically, the applicable privacy law may mean you have certain rights regarding your personal information.

How do you exercise your rights? The easiest way to exercise your rights is by submitting a data subject access request, or by contacting us.

TABLE OF CONTENTS

  1. WHAT INFORMATION DO WE COLLECT?
  2. HEALTH AND MEDICATION DATA
  3. THIRD-PARTY AI SERVICES
  4. HOW DO WE PROCESS YOUR INFORMATION?
  5. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
  6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
  7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?
  8. HOW LONG DO WE KEEP YOUR INFORMATION?
  9. HOW DO WE KEEP YOUR INFORMATION SAFE?
  10. DO WE COLLECT INFORMATION FROM MINORS?
  11. WHAT ARE YOUR PRIVACY RIGHTS?
  12. CONTROLS FOR DO-NOT-TRACK FEATURES
  13. DO WE MAKE UPDATES TO THIS NOTICE?
  14. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

1. WHAT INFORMATION DO WE COLLECT?

Personal information you disclose to us

In Short: We collect personal information that you provide to us.

We collect personal information that you voluntarily provide to us when you register on the Services, express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.

Personal Information Provided by You. The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:

  • names
  • phone numbers
  • email addresses
  • usernames
  • passwords
  • contact preferences
  • contact or authentication data

Sensitive Information. We process sensitive information when necessary with your consent or as otherwise permitted by applicable law. This includes health and medication data as described in the next section.

Social Media Login Data. We may provide you with the option to register with us using your existing social media account details, like your Apple ID or Google account. If you choose to register in this way, we will collect certain profile information about you from the social media provider, as described in the section called “HOW DO WE HANDLE YOUR SOCIAL LOGINS?” below.

Application Data. If you use our application(s), we also may collect the following information if you choose to provide us with access or permission:

  • Camera Access.We request access to your device's camera to scan medication labels, prescriptions, and packaging for identification purposes. Photos taken for medication scanning are processed to extract text and may be sent to third-party AI services as described in the “Third-Party AI Services” section.
  • Photo Library Access. We may request access to your photo library so you can select existing images of medication labels for scanning.
  • Calendar Access. We may request access to your calendar to schedule medication reminders.
  • Contacts Access. We may request access to your contacts to import emergency contact information.
  • Push Notifications.We may request to send you push notifications regarding medication reminders, refill alerts, and health-related updates. If you wish to opt out from receiving these types of communications, you may turn them off in your device's settings.
  • Mobile Device Data. We automatically collect device information (such as your mobile device ID, model, and manufacturer), operating system, version information and system configuration information, device and application identification numbers, browser type and version, and Internet Protocol (IP) address (or proxy server).

This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting, and for our internal analytics and reporting purposes.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

2. HEALTH AND MEDICATION DATA

In Short: We collect health and medication information you provide to help you manage your medications.

The core function of Dose AI is medication management. To provide this service, we collect and process the following health-related data that you voluntarily provide:

  • Medication information: names, dosages, strengths, forms, and active ingredients of medications you add to your library
  • Medication schedules: dosing times, frequencies, and reminder preferences
  • Medication photos: images of medication labels, prescriptions, and packaging that you scan using the camera
  • Health profile data: blood type, height, weight, smoking status, and alcohol consumption as provided during onboarding
  • Emergency contacts: names and phone numbers of emergency contacts you designate
  • AI chat messages: questions you type about your medications in the AI assistant feature

IMPORTANT

We do not collect or store personal health identifiers such as Social Security numbers, insurance policy numbers, or medical record numbers. Your name and email address are used for account authentication only and are not linked to health data when sent to third-party AI services.

3. THIRD-PARTY AI SERVICES

In Short: Certain AI-powered features send data to OpenAI for processing. We obtain your explicit consent before any data is shared.

Dose AI uses artificial intelligence to provide features such as medication label scanning (OCR), AI chat for medication questions, and automatic form filling. These features are powered by OpenAI (OpenAI, L.L.C., openai.com).

What data is sent to OpenAI

When you use AI-powered features, the following data may be sent to OpenAI for processing:

  • Medication photos: Photos you take of medication labels and packaging are sent for text recognition (OCR) to identify medication names, dosages, and other label information.
  • Medication details: Names, dosages, active ingredients, warnings, and schedules of medications in your library may be sent to provide context for AI responses.
  • Health questions: Questions you type in the AI chat about your medications are sent to generate responses.

What data is NOT sent to OpenAI

  • Your name, email address, or other personal identifiers
  • Your account credentials
  • Your emergency contact information
  • Your health profile data (blood type, weight, height)

How OpenAI handles your data

Data sent via the OpenAI API is processed according to OpenAI's API data usage policies. As of the date of this policy, data sent through the API is not used to train OpenAI's models. OpenAI retains API data for up to 30 days for abuse and misuse monitoring, after which it is deleted.

Your consent and control

Before any data is sent to OpenAI, we ask for your explicit consent through an in-app consent dialog. This dialog clearly explains:

  • What data will be shared
  • Who receives the data (OpenAI)
  • How to revoke consent at any time

You can revoke consent at any time in the app's Settings screen. Revoking consent will disable AI-powered features (medication scanning OCR, AI chat, and auto-fill) but will not affect other app functionality. Already-processed data cannot be recalled from OpenAI's systems, but no further data will be sent.

AI FEATURES ARE OPTIONAL

If you decline AI data sharing, you can still use all other Dose AI features including manual medication tracking, reminders, family sharing, and health profile management. Only AI-powered features (scan OCR, AI chat, auto-fill) require data to be sent to OpenAI.

4. HOW DO WE PROCESS YOUR INFORMATION?

In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention, and to comply with law.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

  • To facilitate account creation and authentication. We process your information so you can create and log in to your account.
  • To provide medication management features. We process medication data to maintain your medication library, send reminders, and check for potential drug interactions.
  • To power AI features. With your consent, we send medication data and photos to OpenAI for text recognition, medication Q&A, and form auto-fill.
  • To send medication reminders and health alerts. We process your medication schedules to send push notifications at the appropriate times.
  • To identify usage trends and improve our Services. We may process information about how you use our Services to improve them.
  • To diagnose and fix technical problems. We use crash reporting (Sentry) and analytics (Firebase) to identify and fix bugs.

5. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?

In Short: We may share information in specific situations described below.

We may need to share your personal information in the following situations:

  • OpenAI (AI Features). With your explicit consent, medication data, photos, and questions are sent to OpenAI's API for AI-powered features. See “Third-Party AI Services” section for full details.
  • Sentry (Crash Reporting). We use Sentry to collect crash reports and performance data. This includes device information and error logs but does not include your health or medication data. See Sentry's privacy policy.
  • Firebase (Notifications & Crash Reporting). We use Firebase Cloud Messaging for push notifications and Firebase Crashlytics for crash reporting. See Firebase's privacy policy.
  • Amazon Web Services (Infrastructure). Our backend services and data storage are hosted on AWS. Your data is stored in encrypted form. See AWS privacy policy.
  • FDA Drug Database. We query public FDA databases for medication information (indications, warnings, interactions). No personal data is sent to the FDA.

We do not sell your personal information. We do not share your data with data brokers. We do not use your data for targeted advertising or advertising measurement.

6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?

In Short: We may use cookies and similar tracking technologies to collect and store your information on the web platform.

We may use cookies and similar tracking technologies (like web beacons and pixels) on our web platform to access or store information. We do not use tracking technologies for advertising or cross-app tracking purposes.

7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?

In Short: If you choose to register or log in using a social media account, we may have access to certain information about you.

We offer you the ability to register and log in using your Apple ID or Google account. When you do this, we receive your name and email address from the social media provider. We use this information solely for account creation and authentication. We do not access your social media contacts, posts, or other social data.

8. HOW LONG DO WE KEEP YOUR INFORMATION?

In Short: We keep your information for as long as necessary to fulfill the purposes outlined in this privacy notice unless otherwise required by law.

We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice, unless a longer retention period is required or permitted by law. When you delete your account, we will delete your personal information within 30 days, except where we are required to retain it by law.

Data sent to OpenAI through the API is retained by OpenAI for up to 30 days for abuse monitoring, after which it is deleted according to their data retention policies.

9. HOW DO WE KEEP YOUR INFORMATION SAFE?

In Short: We aim to protect your personal information through a system of organizational and technical security measures.

We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. This includes encryption of data in transit and at rest, secure authentication using AWS Cognito, and regular security audits. However, despite our safeguards, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure.

HIPAA Compliance

Dose AI is designed to help users manage their medications safely. While we handle health-related information, we are not a covered entity under HIPAA. However, we apply similar privacy and security standards to protect your health information.

10. DO WE COLLECT INFORMATION FROM MINORS?

Dose AI is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us and we will delete such information.

11. WHAT ARE YOUR PRIVACY RIGHTS?

You have the right to:

  • Access your personal information
  • Correct or update your information
  • Delete your account and associated data
  • Opt out of AI data sharing at any time via Settings
  • Opt out of push notifications
  • Export your data
  • Withdraw consent for data processing where consent is the legal basis

To exercise these rights, contact us at privacy@doseai.app or use the relevant features in the app (Settings → Delete Account, Settings → AI Data Sharing).

12. CONTROLS FOR DO-NOT-TRACK FEATURES

Most web browsers and some mobile operating systems and mobile applications include a Do-Not-Track (“DNT”) feature or setting you can activate to signal your privacy preference not to have data about your online browsing activities monitored and collected. Dose AI does not track users across apps or websites for advertising purposes.

International Data Transfers

Your information may be transferred to and processed in countries other than your own (including the United States, where OpenAI is based). We ensure that such transfers comply with applicable privacy laws and that your information receives adequate protection.

13. DO WE MAKE UPDATES TO THIS NOTICE?

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the “Last updated” date. We encourage you to review this Privacy Policy periodically. If we make material changes to how we handle your health data or share data with third-party AI services, we will notify you through in-app notification.

14. HOW CAN YOU CONTACT US ABOUT THIS NOTICE?

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

Email: privacy@doseai.app

Support: support@doseai.app