D Dripfy

Dripfy mobile app and patient portal

Privacy Policy

This policy explains how DRIPFY UK LTD collects, uses, stores, protects, and shares personal data and health data in connection with the Dripfy mobile app, patient portal, and related health services.

Effective date: July 2, 2026. Controller: DRIPFY UK LTD.

1. Controller and Contact

The controller responsible for personal data processing is:

DRIPFY UK LTD
71-75 Shelton Street, Covent Garden
London WC2H 9JQ, United Kingdom

General support: support@dripfy.app
Privacy requests: privacy@dripfy.app
Phone: +49 69 33299155

2. Data We Process

3. Purposes and Legal Bases

4. Health Data Protections

Health data is treated as special-category data under GDPR Article 9. Access is limited to authorized medical, operational, or support personnel with a valid role-based purpose. Dripfy uses encryption in transit and at rest, access controls, audit logs, and data minimization controls.

Optional features such as HealthKit or wearable sync are used only after you enable them. You may withdraw consent for optional health data processing through the app or by contacting the privacy address above.

5. Processors and Recipients

Dripfy may use service providers for hosting, authentication, payment processing, video consultation infrastructure, transactional email, SMS, diagnostics, analytics, and push notifications. These providers process data only for Dripfy service purposes and under appropriate contractual safeguards.

Dripfy does not sell personal data or health data.

6. International Transfers

Where data is transferred outside the EU or EEA, Dripfy uses appropriate safeguards such as EU Standard Contractual Clauses, adequacy decisions, data processing agreements, and additional technical or organizational protections.

7. Retention

8. Your Rights and Privacy Choices

You may request access, correction, deletion, restriction, portability, objection, withdrawal of consent, or review of automated processing where applicable. You can exercise rights in the Dripfy app or by emailing privacy@dripfy.app.

You may also request account deletion from within the app where the account deletion feature is available. Certain medical, financial, or compliance records may be retained where legally required.

9. Complaints

You may lodge a complaint with a competent supervisory authority. DRIPFY UK LTD is registered with the UK Information Commissioner's Office (ICO) under registration reference ZC027335. You may also contact the supervisory authority in your place of residence.

10. Changes

We may update this Privacy Policy. Material changes will be communicated through the app, website, or email where required.