Privacy Policy
Last updated: April 2026
This Privacy Policy explains how [Legal Entity Name Pvt. Ltd.] (operating as “PillR.in”, “we”, “us”, “our”) collects, uses, shares, and protects your personal data when you use pillr.in or our medicine delivery facilitation service in Pune.
We are a Data Fiduciary as defined under the Digital Personal Data Protection Act, 2023 (DPDP Act).
1. Introduction
PillR.in is a technology and logistics service that connects patients with CDSCO-licensed local pharmacies. This policy covers all data we handle in the course of providing that service.
2. Information We Collect
- Personal data — name, phone number, email, delivery address.
- Order data — medicines ordered, prescription images, order history.
- Usage data — anonymised analytics, device type, browser, referral source, page views.
- Device data — IP address, operating system, approximate location (only when you grant permission for delivery routing).
3. How We Use Your Information
- To process, route, and deliver your medicine orders.
- To communicate order status, delivery updates, and refunds.
- To improve service quality, response times, and inventory accuracy.
- To meet legal, tax, and pharmacy compliance obligations.
4. Health Data
Prescription images and medicine lists are health-adjacent data and are treated with elevated security. They are stored encrypted, accessed only by the fulfilling pharmacist and our limited support staff, and never used for marketing.
5. Data Sharing
- Partner pharmacies — only the order details necessary to dispense.
- Delivery partners — only the address and contact info needed to deliver.
- Payment processors (Razorpay) — only the data required to process payment.
- Analytics providers (Google Analytics, Meta Pixel) — anonymised usage data only.
We do not sell or rent your personal data to anyone.
6. Cookies & Tracking
We use essential cookies for site functionality, plus Google Analytics and Meta Pixel for anonymised usage measurement. You can disable non-essential cookies through your browser settings.
7. Data Retention
Order records and prescriptions are retained for the period required under Indian pharmacy and tax laws (typically 5–7 years). Personal data not legally required is deleted within 12 months of your last order or on your written request.
8. Your Rights under the DPDP Act 2023
- Right to access your personal data.
- Right to correction of inaccurate data.
- Right to erasure of data not legally required.
- Right to data portability.
- Right to grievance redressal — see Section 13 below.
9. Data Security
Data is transmitted over HTTPS/TLS, stored encrypted at rest, and access is restricted to authorised personnel on a need-to-know basis.
10. Children's Privacy
PillR is for adults (18+). We do not knowingly collect personal data from children under 18. If you believe we have, contact us immediately and we will delete it.
11. Third-Party Links
Our site may link to third-party websites. We are not responsible for their privacy practices.
12. Changes to This Policy
We will post any updates on this page with a revised “last updated” date. Material changes will be notified via WhatsApp or email.
13. Grievance Officer
Name: [Grievance Officer Name]
Email: hello@pillr.in
Response timeline: within 48 hours of receipt.
14. Contact
[Legal Entity Name Pvt. Ltd.]
[Registered Business Address, Pune, Maharashtra, India — PIN]
Email: hello@pillr.in
Phone: +91 XXXXX XXXXX