Privacy Policy

Last updated: February 20, 2026

1. Introduction

Dentala Health ("Dentala," "we," "us," or "our") is committed to protecting the privacy and security of the personal and clinical information processed through our AI-powered voice operating system for dental clinics. This Privacy Policy describes how we collect, use, store, and protect your information when you use our platform and services.

2. Information We Collect

2.1 Clinical Data

When dental practitioners use the Dentala platform, we process:

  • Audio recordings of clinical conversations (with practitioner and patient consent)
  • Speech-to-text transcriptions generated from audio input
  • Structured treatment plans, cost estimates, and clinical summaries generated by the platform
  • Patient profile information extracted from clinical conversations (names, medical history, allergies, medications)

2.2 Account Information

When you register for Dentala, we collect:

  • Practitioner name, email address, and clinic information
  • Billing and subscription details
  • Usage data and platform interaction logs

2.3 Website Visitors

When you visit dentala.health, we may collect:

  • Browser type, device information, and IP address
  • Pages visited and time spent on the website
  • Information submitted through contact forms

3. How We Use Your Information

We use collected information to:

  • Provide and operate the Dentala clinical intelligence platform
  • Generate treatment plans, cost estimates, and clinical documentation from voice input
  • Detect medical alerts, allergies, and drug interactions
  • Improve our AI models and speech recognition accuracy
  • Provide customer support and respond to inquiries
  • Comply with legal and regulatory obligations

4. Data Storage & Security

All data is stored securely on Amazon Web Services (AWS) infrastructure with the following protections:

  • Encryption in transit: All data transmitted to and from Dentala is encrypted using TLS 1.3
  • Encryption at rest: All stored data is encrypted using AES-256 encryption
  • Access controls: Role-based access control (RBAC) ensures only authorized personnel can access data
  • Infrastructure isolation: Multi-account AWS Organization with separate production and development environments
  • Audit logging: Comprehensive audit trails for all data access events

5. Data Sharing

We do not sell, rent, or trade your personal or clinical data. We may share data only in the following circumstances:

  • With your consent: When you explicitly authorize data sharing (e.g., exporting treatment plans to a practice management system)
  • Service providers: With trusted infrastructure providers (AWS) who process data on our behalf under strict contractual obligations
  • Legal requirements: When required by law, regulation, or legal process

6. Data Retention

We retain clinical data for the duration specified by applicable healthcare record retention laws. Account information is retained for the duration of your subscription and for a reasonable period thereafter. You may request deletion of your data at any time by contacting us.

7. Your Rights

Depending on your jurisdiction, you may have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data
  • Request deletion of your data
  • Object to or restrict processing of your data
  • Request data portability

8. Healthcare Compliance

Dentala's infrastructure is designed to meet the technical safeguard requirements of healthcare data protection regulations, including HIPAA. We implement administrative, physical, and technical safeguards appropriate for protecting health information.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of material changes by posting the updated policy on our website and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at: