Here is a full privacy policy you can paste into Google Sites. It matches how Pharma Shelf actually works (Supabase auth, teams/pharmacies, staff profiles, POS/inventory/purchases/medicines, barcode scanning with the camera, local sign-in hints, optional Edge Function for admin email lookup). Your contact is dadudevstudio@gmail.com; there is no company website in the text. You can add a Telegram line only if you want it to match the in-app Contact us page (@dadu_dev).
Effective date: 27 May 2026
App: Pharma Shelf (Android / iOS) — pharmacy operations software for teams (point of sale, stock, purchases, medicines, and related workflows).
Operator: Dadu Dev Studio
Privacy contact: dadudevstudio@gmail.com
We do not operate a separate public website for Pharma Shelf; this page is the privacy policy for the app.
This Privacy Policy explains what information Pharma Shelf (“the App”) collects, how we use it, where it is stored, and how you can contact us. By using the App, you agree to this policy.
Pharma Shelf is intended for pharmacies and their staff using a shared team workspace, not for general consumer use.
2.1 Account and authentication
To sign up or sign in, the App uses Supabase Auth. Depending on how your organisation configures access, we may process:
Email address and password (passwords are handled by the authentication provider using industry-standard practices; we do not store your password in plain text in the App).
User metadata you provide at registration, such as full name and pharmacy / team name (used to create your workspace).
Session tokens issued after login so the App can stay connected to your account until you sign out or the session expires.
Identifiers such as your user id inside our systems.
Owners and administrators may invite or manage staff accounts. For staff we may process name, role (for example owner, pharmacist, or other roles the App supports), username (where used for sign-in), team membership, branch assignment, and active/inactive status.
In some cases, authorised administrators may use features that resolve a staff member’s sign-in email through our backend (for example a secure server function), only as needed to administer accounts.
2.2 Pharmacy / business profile
Your organisation may enter business profile information in the App, such as:
Pharmacy or business name
Phone number, physical address
License or registration numbers where you choose to store them
This data is stored so the App can show and use it as part of your operations.
2.3 Operational and inventory data
When you use the App for day-to-day work, we process the business records you create or update, for example:
Sales (POS) — line items, quantities, prices, receipts, and related transaction data your team records.
Inventory and stock — products, quantities, adjustments, and stock movements.
Purchases — suppliers, purchase orders or drafts, and receiving goods.
Medicines and product catalog — names, codes, barcodes or identifiers, and related fields you maintain or look up.
Suppliers, branches, and other operational entities your team configures.
This information is tied to your team (pharmacy) so the right people in your organisation can access it according to their role and permissions.
2.4 Camera (medicine barcode scanning)
The App can request permission to use your device camera to scan barcodes on medicines or products (for example to look up or attach a barcode when managing medicines).
The camera preview is used on your device to detect a barcode.
When a code is read successfully, the App typically uses the decoded text of the barcode (not a saved photo gallery workflow) to continue the action you started, such as looking up or linking a product.
We do not use the camera feature to browse your photo library.
If you deny camera permission, barcode scanning in the App will not work; other features may still be available.
2.5 Device and app technical data
The App may process limited technical information needed for reliability and support, for example:
App version (via the operating system’s package information APIs).
Network connectivity status (to reflect online/offline or retry behaviour where the App implements it).
Small local preferences on your device (for example a hint of the last pharmacy team used for staff sign-in, or temporary data while email confirmation is pending), stored in the device’s app storage — not for advertising.
The App includes “Share” actions where you choose to send content through another app (for example your email or messaging app). We do not control those third-party apps; their privacy policies apply when you use them.
2.6 Approximate registration location
When a new pharmacy/team account is registered, the App may automatically estimate the country, region, and city of registration from the device or network IP address. This is approximate and does not use GPS or precise device location.
We use this information to record where a pharmacy/team was registered, support account administration, security, fraud prevention, and service analysis. The registration location is stored with the pharmacy/team record in our database.
We may use a backend function or an IP geolocation provider to perform this lookup. We do not request Android or iOS location permission for this feature, and we do not collect continuous location tracking.
We use the information above to:
Provide, operate, and improve Pharma Shelf;
Authenticate users, enforce team-based access, and separate one pharmacy’s data from another’s;
Run POS, inventory, purchases, medicines, and related workflows you choose to use;
Process barcode scans you initiate;
Communicate with you when you contact support, and to respond to privacy requests sent to dadudevstudio@gmail.com;
Meet legal obligations where applicable (for example if we must respond to lawful requests).
We do not sell your personal information.
Depending on your location, we may rely on one or more of: performance of a contract (providing the service to your organisation), legitimate interests (securing and improving the App, fraud prevention), consent (where required, for example for optional permissions like the camera), or legal obligation.
The App stores and synchronises data using Supabase (database, authentication, and related cloud services). Data may be processed on servers outside your country, depending on how the Supabase project is configured.
For approximate registration location, we may use an IP geolocation lookup provider to convert an IP address into approximate country, region, and city information.
Supabase’s own privacy practices are described here:
https://supabase.com/privacy
We use subprocessors only to host and deliver the service, not to sell your data.
We may share information only when:
Necessary to operate the service (for example with Supabase as our hosting/auth provider);
Your organisation’s administrators access data within the same team workspace;
You explicitly use a feature that sends data elsewhere (for example sharing a receipt via another app);
Required by law or to protect the rights, safety, and integrity of users and the service.
We keep information for as long as your account and team workspace exist and as needed to provide the service, resolve disputes, enforce terms, and comply with law. Some data may remain in backups for a limited period after deletion.
We use reasonable technical and organisational measures appropriate to the service. No online service can guarantee perfect security.
You are responsible for protecting your device, using a strong password, and restricting access to staff accounts in your pharmacy.
Depending on applicable law (for example GDPR or local equivalents), you may have rights to access, correct, delete, restrict, or object to certain processing, or to data portability.
Because many accounts are managed by a pharmacy organisation, some requests may need to be coordinated with your administrator. To exercise rights or ask questions, email dadudevstudio@gmail.com from an address associated with your account where possible, and describe your request clearly.
Pharma Shelf is not directed at children. It is business software for pharmacy teams. We do not knowingly collect personal information from children. If you believe we have, contact dadudevstudio@gmail.com and we will take appropriate steps.
We may update this Privacy Policy. We will change the Effective date at the top when we do. Continued use of the App after an update means you accept the revised policy, unless applicable law requires a different process.
Dadu Dev Studio — Pharma Shelf
Email: dadudevstudio@gmail.com
(Optional: if you want it to match the app’s Contact screen, add one line: “Support chat: Telegram @dadu_dev.”)