Privacy Policy
Last Updated: March 10, 2026
This privacy policy governs your use of the software application dminder ("Application") for mobile devices, created by Ontometrics. The Application is a comprehensive Vitamin D tracking app that uses your device's GPS to determine your location, computes when you can produce Vitamin D from the sun, tracks how much you make, provides a session timer, and estimates your blood Vitamin D level on an ongoing basis.
What Data Does dminder Collect?
User Profile Information
When you set up dminder, you provide personal information used to personalize Vitamin D calculations:
- Name — for display within the app
- Date of birth — age affects Vitamin D synthesis rates
- Biological sex — influences calculation parameters
- Skin type (Fitzpatrick I–VI) — determines UV sensitivity and burn time
- Height and weight — body composition affects Vitamin D metabolism
If you use a health platform (Apple Health on iOS, Health Connect on Android), the Application may read height and weight from there with your permission.
Sun Session History
Each sun session records:
- Start and end times
- Location (latitude, longitude, timezone)
- UV conditions (UV index, solar elevation, ozone levels)
- Skin exposure percentage and clothing configuration
- Vitamin D produced (IU)
Supplement Doses
Timestamps and dosage amounts (IU) for any Vitamin D supplements you log.
Food Doses
Timestamps, food names, and Vitamin D amounts (IU) for dietary Vitamin D you log.
Lab Results
If you enter blood test results, the app stores sample dates, Vitamin D levels (ng/mL), and any other markers you provide. These are used to calibrate the D level estimator.
Device Information
For crash reporting and diagnostics, we collect device model, operating system version, and crash stack traces via Firebase Crashlytics. This data is anonymous and cannot be tied to your health information.
Anonymous Analytics
Firebase Analytics collects anonymous usage data (screen views, feature usage patterns) to help us improve the app. This data is aggregated and does not identify individual users.
Location Data
The Application uses your device's location to calculate solar position, UV index availability, and ozone levels at your coordinates. Location data is used locally for these calculations and is stored as part of your session history. On the free tier, location data never leaves your device. On the premium tier, session locations are synced to the cloud as part of your session history.
Free Tier — Local-Only Storage
On the free tier:
- All data is stored locally on your device only. No personal or health data is transmitted to our servers.
- The history UI shows a 90-day rolling window of sessions.
- You can export all your data at any time in JSON or CSV format via the in-app export feature.
- Ads are displayed via Google AdMob (see Third-Party Services below).
Premium Tier — Cloud Sync
If you subscribe to the premium tier, your data is synced to Google Cloud Platform (Firestore) for backup and cross-device access:
- Storage region: United States
- Encryption in transit: TLS 1.3
- Encryption at rest: AES-256 (GCP default encryption)
- User isolation: Firestore security rules enforce strict user-level data isolation. No one at Ontometrics can view individual user data. Each user's documents are accessible only via their authenticated account.
- Data retention: Your cloud data is retained while your subscription is active, plus 90 days after your subscription lapses. We send warning emails at 60 days and 80 days after lapse. After 90 days, cloud data is permanently deleted.
- No ads: Premium users do not see advertisements.
Third-Party Services
dminder integrates with the following third-party services:
| Service | Purpose | Data Shared |
|---|---|---|
| Google AdMob | Advertising (free users only) | Advertising ID, approximate location for ad targeting. Google Privacy Policy |
| Firebase Crashlytics | Crash reporting | Crash logs, device model, OS version. No health data. |
| Firebase Analytics | Anonymous usage analytics | Aggregated, anonymous usage patterns. No personal identifiers. |
| Firebase Auth | User authentication (premium) | Email address and password (hashed). Firebase Privacy |
| Google Cloud Firestore | Cloud data storage (premium) | All user data as described above, encrypted and user-isolated. |
| Apple CloudKit (iOS) | iCloud sync (iOS) | User data synced via Apple's iCloud. Apple Privacy Policy |
| Google Play Billing / Apple StoreKit | Subscription management | Purchase transactions handled entirely by Apple/Google. We receive subscription status only. |
Your Rights (GDPR / CCPA)
Regardless of where you live, we respect your data rights:
- Right to access: You can export all your data at any time using the in-app export feature (JSON or CSV format).
- Right to erasure: Use the "Delete Cloud Data" button in Settings to remove your cloud data immediately. You can also email support@ontometrics.com and we will process your deletion request within 30 days.
- Right to data portability: The in-app export produces standard JSON and CSV files that you can import into other tools.
- Right to opt out of cloud storage: Downgrade to the free tier at any time. Your data will revert to local-only storage after the retention period.
- Right to opt out of analytics: You can disable analytics collection in Settings.
- Right to opt out of personalized ads: Adjust ad personalization in your device settings, or subscribe to premium to remove ads entirely.
Data deletion requests are processed within 30 days of receipt.
Children's Privacy
dminder is not directed to children under the age of 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal data, please contact us at support@ontometrics.com and we will promptly delete it. We do not engage in COPPA-regulated data collection.
Security
We take data security seriously:
- Local data is protected by your device's built-in encryption and access controls.
- Cloud data is encrypted in transit (TLS 1.3) and at rest (AES-256).
- Firestore security rules prevent cross-user data access.
- We do not store passwords in plaintext. Firebase Auth handles all credential management.
- We conduct periodic reviews of our security practices.
Data Retention
- Local data: Retained on your device until you delete the app or clear app data.
- Cloud data (premium): Retained while your subscription is active, plus 90 days after lapse. Warning emails are sent at 60 and 80 days post-lapse.
- Crash reports: Retained by Firebase Crashlytics for 90 days.
- Analytics data: Retained by Firebase Analytics per Google's standard retention policies (14 months for user-level data, aggregated data retained indefinitely).
- Health platform data: If you use Apple Health or Health Connect, deleting dminder will prompt you to choose whether to keep the data the app wrote to the health store.
Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last Updated" date. For material changes, we will include a notice in the app's release notes. Continued use of the Application after changes constitutes acceptance of the updated policy.
Your Consent
By using dminder, you consent to the collection and use of your information as described in this Privacy Policy. If you reside outside the United States, your information may be transferred to and processed in the United States.
Contact Us
If you have any questions about this Privacy Policy or your data, please contact us:
- Email: support@ontometrics.com
- General inquiries: info@ontometrics.com
Medical Disclaimer
D-Minder is not a medical device and is not intended to diagnose, treat, cure, or prevent any disease. Vitamin D estimates are based on published research and may not reflect your individual physiology. Always consult your healthcare provider before making changes to your sun exposure, supplement intake, or health regimen. Do not use D-Minder as a substitute for professional medical advice.