Tilio Privacy Policy

Version dated 30 April 2026

1. Controller

The controller is Erwan Brosseau, an individual.

Contact: contact@tilio-app.com
Website: https://tilio-app.com

The controller’s private address is not published in this policy. It may be provided to authorities, service providers or legally entitled persons where required by applicable law.

This policy is intended to meet information duties under Swiss data protection law and, where the European General Data Protection Regulation applies, the GDPR.

2. Summary

Tilio helps track treatments and doses within a household. To provide this service, the application may process personal data, including data that may reveal health information.

Tilio is not designed to sell your data, display targeted advertising or enable third-party advertising tracking.

3. Data Collected or Processed

Depending on your use, Tilio may process the following categories of data.

Account Data

  • email address;
  • first and last name;
  • user identifier;
  • role in a household;
  • login and authentication information.

Household and Sharing Data

  • household name;
  • household members;
  • invitations sent or received;
  • roles, access rights and notification preferences;
  • email addresses of invited people.

Tracked Person Data

  • first and last name;
  • profile type, such as adult or child;
  • possible link to a user account;
  • notes or settings associated with the profile.

Treatment and Tracking Data

  • medication or treatment name;
  • form, icon, dosage, unit, notes;
  • schedule, times, meal timing, start and end dates;
  • dose status: pending, taken, not taken, ignored, missed;
  • scheduled time and actual time;
  • person who validated a dose;
  • notes associated with doses;
  • dose log histories.

This data may be sensitive when it relates to health.

Technical Data

  • technical identifiers required for operation;
  • push notification tokens;
  • device-related information required for notifications, widgets and synchronisation;
  • limited technical logs where needed for security or diagnostics.

Subscription Data

  • free, premium, trial, active, expired or equivalent status;
  • Apple transaction identifiers useful for subscription verification;
  • product purchased, expiry date and household sync status.

Tilio does not directly receive your payment card details. In-app purchases are managed by Apple.

4. Purposes

We use data to:

  • create and manage your account;
  • create and manage a household;
  • enable treatment and dose tracking;
  • display history and filters;
  • synchronise data between authorised household members;
  • send reminders and notifications if enabled;
  • provide premium features;
  • manage invitations and access rights;
  • enable widgets and quick actions;
  • secure the service;
  • handle support requests;
  • respond to access, deletion or export requests;
  • comply with legal obligations.

5. Legal Bases

Depending on the context, legal bases may include:

  • performance of the contract or terms of use;
  • your consent, in particular for certain sensitive data or notifications;
  • legitimate interest in ensuring security, preventing abuse and improving the service;
  • compliance with legal obligations.

Treatment and dose data may be sensitive, in particular where it reveals health information. Its processing is based on your voluntary use of the application to organise a household, on the permissions you grant to household members and, where necessary, on your consent or another applicable legal basis.

6. Local Storage and Cloud Synchronisation

Tilio may store data:

  • locally on the device;
  • in a local cache to improve display and offline operation;
  • in Firebase/Google Cloud where synchronisation is needed, particularly for premium or shared households;
  • in Apple services for in-app purchases and system notifications.

Firebase/Google Cloud is used in production, including Firestore, Functions and App Check. The configured or planned region is europe-west6 (Zurich), subject to final production configuration.

For households without premium access, Tilio limits local dose log history to 7 days.

Premium households benefit from unlimited history, subject to technical limits, service availability and applicable rules.

When a household becomes premium again after a local-only period, local dose logs may be added to the cloud history without overwriting existing cloud dose logs, while avoiding duplicates where technically possible.

7. Data Sharing

Data may be accessible to:

  • household members and helpers according to their roles and rights;
  • technical service providers required for operation, including Firebase/Google Cloud;
  • Apple for in-app purchases, free trials, subscriptions and system notifications;
  • competent authorities where required by law.

We do not sell your personal data.

8. Website, Cookies and Analytics

As of this policy, the public website tilio-app.com is not intended to use non-essential analytics, cookies or trackers. If this changes, this policy will be updated and, where required, an information or consent mechanism will be added.

9. International Transfers

Some providers, including Apple or Google/Firebase, may process data in other countries. Where international transfers are necessary, they must be covered by appropriate safeguards under applicable regulation.

Because the publisher is located in Switzerland, data may be processed from or to Switzerland. Specific international transfer rules may apply for users located in the European Union, the United Kingdom or other countries.

10. Retention Periods

Retention periods depend on the type of data and use.

  • Account data: kept while the account is active, then deleted or anonymised after deletion according to technical and legal constraints.
  • Household, profile, treatment and premium history data: kept while the relevant household or account is active, unless deleted.
  • Dose logs for households without premium access: local history limited to 7 days.
  • Local data and caches: kept on the device until deletion, replacement, expiry, uninstall or technical cleanup.
  • Subscription data: kept as long as needed to verify premium rights, handle support and comply with purchase-related obligations.
  • Support data: kept as long as necessary to handle the request.

When an account is deleted, the goal is to delete active data without delay once the request has been processed. Some deleted data may temporarily remain in technical backups for an estimated maximum period of 30 days.

11. Data Deletion and Export

Account deletion is available in the application. It deletes associated data as far as technically possible and according to the requester’s rights.

Deleting your Tilio account does not automatically delete data managed by Apple for purchases and does not necessarily cancel an active subscription.

Data export is not directly available in the application. You may request an export by email at contact@tilio-app.com.

We aim to respond to personal data requests within 14 days, subject to identity verification, request complexity and applicable legal deadlines.

12. Security

We implement reasonable measures to protect data, including authentication, access rules, household separation, permissions, protected local storage where available and recognised service providers.

No application can guarantee absolute security. You must protect your device, Apple account, email and credentials.

13. Notifications

If you enable notifications, Tilio may process a notification token and send information required for reminders through Apple Push Notification service. Notifications may appear on the lock screen depending on your device settings.

You can manage notification permissions from iOS and from the application where available.

14. Children, Minors and Tracked Persons

Tilio may be used to track treatments for children, minors or dependent persons. Tilio does not set its own minimum age for direct account use, subject to App Store rules, applicable laws and the responsibility of legal representatives where required.

You must have the necessary authorisation before entering data about another person.

15. Your Rights

Depending on applicable law, you may have rights of access, rectification, erasure, objection, restriction, portability and withdrawal of consent.

To exercise your rights, contact us at:

contact@tilio-app.com

We may ask for information to verify your identity and your right to act on the relevant data.

16. Complaint

If you believe your rights are not respected, you may contact the competent data protection authority in your country.

For Switzerland, the competent authority is the Federal Data Protection and Information Commissioner (FDPIC): https://www.edoeb.admin.ch

For users located in the European Union or European Economic Area, you may also contact the data protection authority of your country of residence.

17. Language

This policy may be provided in several languages. In case of discrepancy between versions, the French version prevails, subject to applicable mandatory rules.

18. Changes

We may modify this policy to reflect changes to the application, service providers, legal obligations or our practices.

The applicable version is the one available in the application or on the website at the time of use.