Privacy policy.

Last updated: April 20, 2026

1. Overview

This privacy policy covers the RemMedy Android application (including the Wear OS companion app) and the website remmedy.70six.de. It explains what personal data we process, for which purpose, and on which legal basis.

Short version: RemMedy is offline-first. The app stores all health data (medication plans, intakes, measurements, diary entries) exclusively locally on your device. We do not operate any server that this data is transmitted to. There is no user account, no cloud sync, no ads, no advertising ID, no analytics, and no tracking or advertising SDKs.

2. Data controller

Data controller within the meaning of Art. 4(7) GDPR is:

70six – Thomas Peter Webconsulting
Sole proprietor: Thomas Peter
Odenwaldstraße 7
63814 Mainaschaff
Germany

Phone: +49 179 10 70 272
Email for RemMedy matters: remmedy@70six.de
Business email: thomas@70six.de
VAT ID: DE225866452

Data protection officer

A data protection officer is not mandatory under § 38 BDSG and Art. 37 GDPR (sole proprietorship without employees; core activity is not the large-scale processing of special categories of personal data – health data stays on the user's device). Please send data-protection enquiries directly to the controller at remmedy@70six.de.

3. Data the app stores on your device

The following data is produced during normal use of the app and stored exclusively locally in an SQLite database (Room) on your device. It is never transmitted to us or to any third party:

• Medications you add, including name, dosage, schedule, and stock.
• Intake records (taken, skipped, postponed).
• Measurements (e.g. blood pressure, blood glucose, weight, pulse, temperature, and custom measurement types).
• Diary entries (mood, pain and energy level, sleep quality, free-text notes, tags).
• Injection logs, appointments, doctor contacts – if you enter them.
• App settings (e.g. theme, language, minimal mode, blood-pressure guideline, default reminder times).
• Unlocked achievements and streaks.

This data falls under the „special categories of personal data" within the meaning of Art. 9(1) GDPR (health data). Because it never leaves your control, there is no processing by us in the sense of the GDPR – we have no access to it.

Legal basis for the local storage is your use of the app at your explicit request (Art. 6(1)(b) GDPR, performance of a contract, as well as Art. 9(2)(a) GDPR, explicit consent through initial data entry).

4. App permissions

The app requests the following Android permissions – each with the sole purpose of enabling core on-device functionality (reminders):

• Notifications (POST_NOTIFICATIONS) – to display reminders.
• Exact alarms (SCHEDULE_EXACT_ALARM) – so reminders fire on time even in Android's power-saving modes.
• Battery optimization exemption (optional) – so reminders aren't suppressed by vendor-specific battery-saving mechanisms.
• Foreground service (FOREGROUND_SERVICE) – for scheduled background tasks (recalculating upcoming alarms).
• Auto-start after reboot (RECEIVE_BOOT_COMPLETED) – so reminders are rescheduled after a device restart.

None of these permissions cause any data transmission to us or to third parties.

5. Google Play Billing (Premium purchase)

If you purchase the optional Premium feature (€6.99 one-time, lifetime) or start the 7-day trial, the payment flow is handled exclusively by Google Play Billing. We never process payment data ourselves. Google only transmits an anonymized purchase token to the app so it can verify locally that Premium is unlocked. This token contains no personally identifiable information.

Google Play privacy policy: policies.google.com/privacy.

Legal basis: Art. 6(1)(b) GDPR (performance of the contract between you and Google).

6. No tracking SDKs, no analytics, no ads

RemMedy contains no tracking SDKs, no analytics tools, no ads, and no crash reporters that send data to external vendors. In particular, we do not integrate SDKs from Google Analytics, Firebase Analytics, Meta/Facebook, TikTok, AppsFlyer, Mixpanel, Amplitude, Sentry, or comparable services.

The app needs Google Play Services only to handle the Premium purchase (see section 5). All other features also run on devices without Google services (e.g. de-Googled ROMs).

7. Export and import of your data

You can export your data from the app at any time via Settings – as a doctor-friendly PDF report (Premium), CSV, or Core JSON file. The export is produced locally on your device and stays there until you actively share it with another app or person.

If you import a previous export file, the app explicitly warns you that existing local data may be overwritten.

8. Data deletion

You can delete individual entries in the app at any time. Deleted items first go to the trash, where they can be restored, until you remove them permanently.

To delete all data, uninstall the app or clear its data via Android's system settings ("Settings → Apps → RemMedy → Storage → Clear data"). We have no server-side copy we would need to delete as well.

9. The website remmedy.70six.de

When you visit this website, the following data is processed short-term:

• Server log files at our hosting provider's web server: IP address (truncated / anonymized as soon as technically possible), date and time, requested URL, referrer, user agent. Purpose: technical provisioning, attack prevention. Retention: maximum 14 days.
• Fonts (Inter, Fraunces): we host the fonts ourselves on our server. No data is transmitted to Google Fonts or similar providers.
• No cookies, no analytics: the website sets no cookies and integrates no analysis or tracking services.
• Referrer policy: strict-origin-when-cross-origin is set for all outgoing links, so no full referrer URLs are passed to third parties.

Legal basis for the server logs: Art. 6(1)(f) GDPR (legitimate interest in the secure operation of the website).

10. External links

The website contains links to external sites, in particular 70six.de (operator information) and to the Google Play Store. Clicking such a link takes you off our site; from that point on, the privacy policy of the respective provider applies.

11. Your GDPR rights

Since we do not store any personal data centrally, most rights are effectively moot – all your data is already on your device. Formally, you have the following rights under GDPR:

• Access to data processed by us (Art. 15) – in our case: no central data held.
• Rectification of incorrect data (Art. 16) – directly editable in the app.
• Erasure (Art. 17) – via the app or by uninstalling.
• Restriction of processing (Art. 18).
• Data portability (Art. 20) – via the built-in CSV / Core JSON export.
• Objection to processing based on legitimate interest (Art. 21).
• Complaint to a supervisory authority (Art. 77). The authority with jurisdiction over us is the Bavarian State Office for Data Protection Supervision (BayLDA), Promenade 18, 91522 Ansbach, Germany – www.lda.bayern.de. You may also lodge a complaint with the supervisory authority of your habitual residence.

12. Children and minors

RemMedy is not specifically designed for users under 16. Minors should use the app only with the consent of a parent or legal guardian. Because we do not collect any data centrally, no age-based special handling is technically necessary.

13. International transfers

Because health data never leaves your device in normal operation, no transfer to third countries takes place. The exception is the Premium purchase via Google Play Billing: Google LLC, USA may process data in the US – the legal basis are the EU Standard Contractual Clauses (see the Google privacy policy).

14. Not a medical device

RemMedy is an organizational tool and not a medical device within the meaning of EU Regulation 2017/745. The app does not replace medical advice, diagnosis, or treatment.

15. Changes to this privacy policy

We reserve the right to update this privacy policy if legal requirements or technical circumstances change. The current version is always available at this URL; the date at the top of the document indicates the most recent revision.

16. Contact

If you have questions about this privacy policy or about the processing of your data, please reach us in writing at the address listed under „Data controller" above, or by email at remmedy@70six.de.