HomePrivacy

Privacy Policy

Effective date: 25 September 2025  • Version: 1.0  • Data Controller: Reminder Tech Co., Ltd.  • remyder.com

1) Scope

This Policy explains how we collect, use, disclose, retain, and protect personal data when you use our mobile app, cloud services, IoT devices, website, and related APIs.

2) Data We Collect

  • Account & Authentication: Display name, email, profile photo (if any) from Google Sign-In / Firebase Auth; user identifiers (UID/ID token).
  • ReMyder Device Data: Serial number, BLE name, MAC address, firmware version, connectivity status.
  • Settings & Content: Alert schedules, language/timezone, volume, preset selections, and your own recorded audio (if any).
  • Technical Data: Device model, OS, app version, IP address, crash/diagnostic logs, usage for debugging.
  • Network & MQTT: Device status/events (minimal/no direct PII by design).
  • Wi‑Fi Provisioning: Credentials transmitted via BLE/QR to the device only — not stored on our servers.
  • Feedback: Content you submit (text/screenshots).

Note: Recorded audio may contain sensitive information you choose to speak. Please record responsibly.

3) Purposes of Processing

  • Provide core functionality (auth, pairing, settings sync, audio alerts).
  • Security, abuse prevention, and service reliability.
  • Quality improvement, debugging, performance analytics.
  • Legal compliance and required communications.
  • Customer support and service updates.

4) Legal Bases

We rely on performance of a contract (to provide the service), legitimate interests (security and service improvement), and consent (e.g., microphone recordings, notifications) where applicable (PDPA/GDPR).

5) Sharing & Processors

We use vetted processors solely to operate the service, including Firebase/Google Cloud and essential infrastructure providers. We do not sell personal data.

6) International Transfers

Data may be processed/stored in Thailand and/or other countries where our providers operate, with appropriate safeguards under applicable law.

7) Retention

  • Account: retained while active and as required by law.
  • Recorded audio/settings: retained until you delete them or close the account.
  • Logs/diagnostics: retained for a reasonable period (e.g., 90–180 days).

8) Security

We use encryption in transit (TLS) and at rest where appropriate, MQTT-TLS for device communications, access controls, and routine reviews. No method is 100% secure; we continuously improve safeguards.

9) Your Rights

Subject to applicable law, you may request access, correction, deletion, portability, restriction or object to processing, and withdraw consent at any time by contacting privacy@remyder.com.

10) Children

Our services are not directed to children under 13/16 (jurisdiction-dependent). If we inadvertently collected a child’s data, contact us for deletion.

11) Changes

We will notify you of material updates and adjust the “Effective date.”

12) Contact

Reminder Tech Co., Ltd.
remyder.com
privacy@remyder.com
[Please insert your company address]