dDoseMate
Sign in Get started free
Features Pricing FAQ Sign in Get started free
DRAFT — pending legal review. This document is a placeholder. Final legal text is to be confirmed before launch (scope §16).

Privacy Policy

Last updated: 4 June 2026

Overview

DoseMate ("we", "us", "our") is a medication tracking and reminder service. We take the privacy of your health information seriously. This Privacy Policy explains what personal information we collect, why we collect it, how we use and protect it, and your rights under the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth).

By creating a DoseMate account and ticking the consent checkbox at registration, you consent to the collection and use of your information as described in this policy.

Who we are

[PLACEHOLDER — entity name, ABN, registered address to be inserted before launch.]

What we collect

  • Account information: your name, email address, optional mobile phone number, and timezone.
  • Health information (sensitive): medication names, dosages, schedules, and dose-tracking records you enter. Under the APPs, health information is a type of sensitive information requiring a higher standard of care.
  • Reminder preferences: your preferred reminder channel (email and/or SMS), timing, and opt-in/opt-out settings.
  • Billing information: plan status and subscription history. We do not store raw card data — all payment processing is handled by Stripe, which is PCI-DSS compliant.
  • Usage data: reminder delivery logs (sent/failed) and exported PDF or data records for operational purposes.
  • Technical data: session data, CSRF tokens, and application logs needed to operate the service securely.

How we use your information

  • To provide the DoseMate tracking and reminder service.
  • To send you reminder emails and/or SMS messages for your medication doses, in accordance with your settings.
  • To process your subscription payments via Stripe.
  • To verify your email address and phone number.
  • To generate PDF exports and data exports at your request.
  • To provide customer support and respond to enquiries.
  • To maintain the security and integrity of the platform.
  • To comply with our legal obligations.

We do not use your health information for marketing, sell it to third parties, or share it with any party not named in this policy.

Disclosure of your information

  • Stripe — billing and payment processing.
  • Mandrill (Mailchimp Transactional) — email delivery for verification and reminder notifications.
  • Twilio — SMS delivery for reminder notifications (paid plan only).
  • Amazon Web Services (AWS) — cloud hosting infrastructure (Sydney region). Your data is stored on servers located in Australia.
  • Law enforcement or legal process — if required by Australian law or a valid court order.

No other disclosures are made without your consent.

Security

We implement reasonable technical and organisational safeguards to protect your information, including: HTTPS-only access, bcrypt password hashing, server-side access controls, CSRF protection on all forms, and scoped data access so users can only access their own records. Admin access to medication detail is audit-logged with a mandatory reason. No raw card data touches our servers.

Despite these measures, no internet transmission is completely secure. We encourage you to use a strong, unique password and to keep your contact details up to date.

Access and correction

Under the Australian Privacy Principles, you have the right to access and correct the personal information we hold about you. You can update your name, email, mobile number, and timezone at any time via Account Settings. To request a copy of all data we hold about you, use the Export my data feature in Account Settings.

Account deletion

You may permanently delete your DoseMate account at any time via the Danger zone section in Account Settings. Deletion is permanent and irreversible. Upon deletion, your medication data, schedules, dose records, reminder settings, and phone verification records are purged. Any active paid subscription is cancelled. Your account row is anonymised in place to preserve billing and audit records required by law, but no personally identifiable health data is retained.

Data export

You can request a machine-readable export of all data we hold about you — including your profile, medications, schedules, doses, and reminder history — from Account Settings. Exports are prepared as a JSON file and delivered by email as a time-limited secure download link.

Cookies

DoseMate uses only essential session cookies required to keep you logged in and to protect forms against cross-site request forgery (CSRF). We do not use advertising cookies, analytics cookies, or any third-party tracking scripts.

Contact us

If you have a question, concern, or complaint about how we handle your personal information, please contact us at:

[PLACEHOLDER — contact email / postal address to be inserted before launch.]

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).