Privacy

Our privacy position

PillBird is local-first. The reminders you set, the doses you log, your mood and symptom notes, and your app settings are stored on your device, not on our servers by default. We collect as little as possible, and we never sell health-related information.

Because contraception and cycle data are sensitive, we treat them as sensitive. The default posture is that your data stays with you, on your phone, under your control.

What the app stores

The information PillBird keeps exists to make reminders and tracking work. That includes:

• Your selected method and schedule (for example, pill, patch, ring, shot, IUD, or implant)
• Reminder times and notification preferences
• Dose history — taken, snoozed, skipped, or missed
• Optional mood, symptom, period, and flow logs you choose to add
• App settings such as theme, screen-lock, and personalization

Location and timezone context

PillBird's travel reminder feature uses your device time zone by default and does not need location. If you choose approximate or precise location in Settings, the app requests foreground location permission only for travel and timezone context.

Coordinates are not stored in your logs, sent to us, or used for advertising. You can switch back to device-time-zone-only context from Settings.

PillBird does not request microphone, camera, photo-library, or contacts access, and it does not record audio or read your images.

Analytics and diagnostics

If crash reporting is enabled, PillBird may send anonymized, aggregated diagnostic information so we can find and fix stability problems. This is intended to exclude the content of your logs — it tells us that something broke, not what you recorded.

We do not build advertising profiles, and we do not share your health data with advertisers or data brokers.

Sync and sharing (when enabled)

If you choose to turn on a sync, sharing, Plus/payment-linked, or other authenticated feature, the relevant data may leave your device so that feature can work. These features are opt-in — the base app works without sign-in, and you can turn optional features back off at any time.

• Cloud sync stores only encrypted settings/log blobs and a passphrase-locked recovery bundle on Cloudflare R2
• Firebase Auth is used only when you opt into signed-in Plus/payment-linked or authenticated features
• RevenueCat and the app stores process purchases; PillBird stores entitlement status, not payment-card details
• Firebase Crashlytics may receive anonymized crash and stability diagnostics

Your control

You can review and change reminders, edit or remove logs, and stop using optional features from inside the app without contacting us. If you opted into a signed-in feature, account deletion also asks PillBird's backend to remove the Firebase Auth user, related subscription/profile records, share records we own, and any cloud sync copy.

• Edit or delete individual logs at any time
• Turn optional sharing or sync features off whenever you want
• Delete everything from the You (Account) tab → App → Delete my account

Children

PillBird is intended for use by people old enough to manage their own contraception, and is not directed at children under the age required by law in your region.

Changes to this notice

If this privacy approach changes in a meaningful way, we'll update this page and the in-app copy, and revise the date above so you can see when it last changed.