Privacy Policy

Last updated: March 6, 2026

1. Introduction

SmileReach Dentist ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our dental practice management platform.

By using SmileReach Dentist, you agree to the collection and use of information in accordance with this policy. If you do not agree with our policies and practices, do not use our Platform.

2. Information We Collect

2.1 Personal Information

We collect the following types of personal information:

For Dental Clinics:

  • Business name and contact information
  • Administrator and staff names, email addresses, and phone numbers
  • Payment and billing information
  • Professional credentials and licenses
  • Business location and operating hours

For Patients:

  • Name, email address, and phone number
  • Date of birth and demographic information
  • Appointment history and preferences
  • Medical and dental history (when provided by the clinic)
  • Treatment records and notes
  • Payment information for appointments

2.2 Automatically Collected Information

When you access our Platform, we automatically collect:

  • IP address and device information
  • Browser type and version
  • Operating system
  • Pages visited and time spent on pages
  • Referring website addresses
  • Clickstream data

2.3 Cookies and Tracking Technologies

We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities. You can control cookies through your browser settings, but disabling cookies may affect Platform functionality.

2.4 Third-Party Analytics

We may use third-party analytics services (such as Google Analytics) to help understand how users interact with our Platform. These services may collect information sent by your browser, including cookies and IP addresses.

3. How We Use Your Information

We use collected information for the following purposes:

3.1 Service Delivery

  • Provide and maintain the Platform functionality
  • Process and manage appointments
  • Facilitate communication between clinics and patients
  • Store and manage patient records
  • Process payments and billing

3.2 Communication

  • Send appointment confirmations and reminders
  • Provide customer support
  • Send service updates and notifications
  • Respond to inquiries and requests
  • Send marketing communications (with your consent)

3.3 Platform Improvement

  • Analyze usage patterns to improve features
  • Develop new features and services
  • Monitor and analyze trends
  • Detect and prevent fraud or security issues

3.4 Legal Compliance

  • Comply with legal obligations
  • Enforce our Terms and Conditions
  • Protect our rights and property
  • Resolve disputes

4. Information Sharing and Disclosure

4.1 With Dental Clinics

Patient information is shared with the dental clinic(s) you book appointments with. Clinics are responsible for maintaining the confidentiality of your medical information in accordance with applicable healthcare privacy laws.

4.2 With Service Providers

We may share information with third-party service providers who perform services on our behalf, including:

  • Payment processors (Stripe, PayPal, etc.)
  • Cloud hosting providers (Firebase, Google Cloud)
  • Email service providers
  • SMS notification services
  • Analytics providers
  • Customer support tools

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.3 Business Transfers

If we are involved in a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will provide notice before your information is transferred and becomes subject to a different privacy policy.

4.4 Legal Requirements

We may disclose your information when required by law, such as:

  • To comply with legal process or court orders
  • To respond to lawful requests from government authorities
  • To protect our rights, privacy, safety, or property
  • To investigate potential fraud or security issues

4.5 With Your Consent

We may share information for other purposes with your explicit consent.

5. Data Security

5.1 Security Measures

We implement industry-standard security measures to protect your information:

  • SSL/TLS encryption for data in transit
  • Encryption of sensitive data at rest
  • Regular security audits and assessments
  • Access controls and authentication mechanisms
  • Firewall protection and intrusion detection
  • Regular backups and disaster recovery procedures

5.2 HIPAA Compliance

For healthcare data subject to HIPAA regulations, we implement additional safeguards to ensure compliance. Dental clinics using our Platform are responsible for executing Business Associate Agreements (BAAs) where required.

5.3 Limitations

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security of your data.

6. Data Retention

We retain your information for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required by law.

  • Account information is retained while your account is active
  • Medical records are retained according to healthcare regulations
  • Payment information is retained for tax and accounting purposes
  • Analytics data may be retained in aggregated, anonymized form

When you close your account, we will delete or anonymize your information within a reasonable timeframe, except where retention is required by law.

7. Your Rights and Choices

7.1 Access and Correction

You have the right to access and update your personal information through your account settings. You may also contact us to request corrections.

7.2 Data Portability

You can export your data from the Platform in common formats. Dental clinics can export patient records and appointment data.

7.3 Deletion

You may request deletion of your account and personal information, subject to legal and regulatory retention requirements. Note that some information may remain in backups for a limited period.

7.4 Marketing Communications

You can opt out of marketing emails by clicking the "unsubscribe" link in our emails or adjusting your communication preferences in your account settings. You cannot opt out of transactional emails (appointment confirmations, etc.).

7.5 Cookie Preferences

Most browsers allow you to control cookies through settings. Note that disabling cookies may limit your ability to use certain features of the Platform.

7.6 Do Not Track

Some browsers include a "Do Not Track" (DNT) feature. Our Platform does not currently respond to DNT signals.

8. International Data Transfers

Your information may be transferred to and maintained on servers located outside your country of residence. By using our Platform, you consent to the transfer of your information to countries that may have different data protection laws.

We take appropriate measures to ensure your data receives adequate protection in accordance with this Privacy Policy, regardless of where it is processed.

9. Children's Privacy

Our Platform is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately and we will delete such information.

For pediatric dental patients under 13, the parent or legal guardian must provide consent and manage the child's appointments and records.

10. Regional Privacy Rights

10.1 European Union (GDPR)

If you are in the European Economic Area, you have additional rights under GDPR:

  • Right to access your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent
  • Right to lodge a complaint with a supervisory authority

10.2 California (CCPA/CPRA)

California residents have specific rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of sale of personal information (we do not sell data)
  • Right to non-discrimination for exercising privacy rights

10.3 Other Jurisdictions

We comply with applicable data protection laws in all jurisdictions where we operate.

11. Third-Party Links

Our Platform may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies.

12. Changes to Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the new Privacy Policy on this page
  • Updating the "Last updated" date
  • Sending you an email notification (for significant changes)
  • Displaying a prominent notice on the Platform

Your continued use of the Platform after changes are posted constitutes acceptance of the updated Privacy Policy.

13. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

SmileReach Dentist - Privacy Team

Contact Us

Visit our website for more information

We will respond to your privacy request within 30 days.

14. Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer through our contact page:

Contact DPO

By using SmileReach Dentist, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.