Privacy Policy

Last updated: March 15, 2026

1. Introduction

Percip ("the Company", "we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, store, and protect your personal and health-related information when you use the Percip platform ("the Service"). By using the Service, you consent to the practices described in this policy.

2. Information We Collect

We collect the following categories of information:

Account Information

Name, email address, and authentication credentials provided during registration.

Medical Profile Data

Date of birth, gender, blood type, height, weight, comorbidities, allergies, emergency contacts, insurance information, and physician details — as voluntarily provided by you.

Medication Data

Medication names, dosages, frequencies, instructions, prescriber information, drug classifications, and prescription images captured through the scanning feature.

Adherence & Usage Data

Dose logs (taken, skipped, timestamps), adherence percentages, streak data, SOS medication usage, and appointment attendance records.

Technical Data

Device type, browser information, IP address, and usage patterns for service optimization and security.

3. How We Use Your Information

Your information is used for the following purposes:

  • Service Delivery: To provide medication tracking, reminders, drug interaction checking, appointment management, and adherence analytics.
  • Notifications: To send medication reminders and appointment alerts via email when enabled by you.
  • Personalization: To customize your experience, including personalized greetings and relevant health insights.
  • Service Improvement: To analyze usage patterns and improve the functionality, reliability, and user experience of the Service.
  • Security: To detect, prevent, and address technical issues, fraud, or unauthorized access.

4. Anonymized Data & Research

With your separate, explicit consent (provided during onboarding or managed in Settings), we collect anonymized analytics events when you interact with the Service. These events contain only non-identifying information such as drug class, time of day, day of week, country, age bracket, and gender. Your name, email, phone number, date of birth, and any other personally identifiable information are never included in analytics data.

What We Collect for Research

When you consent, each dose action generates an anonymous event containing: medication drug class (e.g., "statin", "antibiotic" — not the specific drug name tied to you), time of day, day of week, your country, age group (e.g., "25–34"), gender, and current adherence streak. No user IDs, names, or contact details are attached to these events.

How We Protect Your Anonymity

We apply k-anonymity with a minimum group size of 10 users. This means any data point that could describe a group of fewer than 10 people is automatically discarded. Analytics events are aggregated daily into summary statistics, and all individual-level identifiers (including internal user IDs) are permanently stripped during aggregation. The resulting aggregate data cannot be traced back to any individual.

How Anonymized Data May Be Used

  • Internal research and development to improve our algorithms and features
  • Population-level studies on medication adherence patterns, timing trends, and retention
  • Collaboration with academic institutions and healthcare organizations for public health research
  • Generation of aggregate health analytics and industry reports
  • Sharing aggregated, anonymized insights with healthcare partners (e.g., pharmaceutical companies, insurers) — only in aggregate form where no individual can be identified

Your Consent & Right to Withdraw

Research data collection is entirely optional and requires your separate consent, which is distinct from accepting the Terms & Conditions. You may withdraw your consent at any time through the Settings page. Upon withdrawal, no new analytics events will be generated from your actions. Previously aggregated data that has already been anonymized and stripped of all identifiers will be retained, as it cannot be linked back to you.

Examples of what is shared: "84% of metformin users take their dose before 9 AM" · "1,247 users track metformin in Kuwait" · "Users aged 25–34 have 89.7% adherence"

Examples of what is never shared: Individual patient data · Individual medication lists · Groups with fewer than 10 users · Names, emails, phone numbers, or dates of birth

5. Data Storage & Security

Your data is stored on secure, encrypted servers. We implement industry-standard security measures including encryption in transit (TLS/SSL), secure authentication protocols, and access controls to protect your information. While we strive to protect your data, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Data Sharing

We do not sell your personal information. We may share your data only in the following circumstances:

  • With Your Consent: When you explicitly authorize sharing, such as caregiver access features.
  • Service Providers: With trusted third-party providers who assist in operating the Service (e.g., cloud hosting, email delivery), bound by confidentiality agreements.
  • Legal Requirements: When required by law, regulation, or legal process.
  • Anonymized Research: De-identified, aggregate data as described in Section 4, only when you have provided separate research consent.
  • Healthcare Partners: Aggregated, anonymized insights (never individual data) may be shared with pharmaceutical companies, insurers, or research institutions to improve patient outcomes — subject to your research consent and k-anonymity safeguards.

7. Data Retention

We retain your personal data for as long as your account is active or as needed to provide the Service. Medication history and adherence data are retained to support features like Year in Review and Past Medications. You may request deletion of your account and associated data by contacting us. Anonymized data that has already been aggregated for research purposes will be retained as it cannot be linked back to you.

8. Your Rights

Depending on your jurisdiction, you may have the following rights:

  • Access: Request a copy of the personal data we hold about you.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal retention requirements.
  • Portability: Request your data in a portable format.
  • Opt-out: Disable email notifications at any time through the Settings page.
  • Withdraw Research Consent: Revoke your anonymized data research consent at any time through the Settings page. No new data will be collected after withdrawal.

To exercise any of these rights, please contact us at [email protected].

9. Children's Privacy

The Service is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will take steps to delete such information.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at [email protected].