ddentorra.
Sign In

Privacy Policy

Last updated: February 2026

1. Scope

This Privacy Policy applies to all users of Dentorra globally, including dental clinics, dental laboratories, and manufacturing labs. Dentorra is committed to protecting your privacy and handling your data transparently in compliance with applicable privacy laws and regulations worldwide.

2. Data Collected

Account Information: Name, email address, professional credentials, business name, location, and contact details.

Professional Credentials: License numbers, certifications, professional registration details, and verification documentation.

Case Files: Digital files including dental scans, models, impressions, design files, clinical notes, and any supporting documentation uploaded by users.

Communications: Messages, files, and interactions within case-specific chats and platform communications.

Payment-Related Data: Transaction history, order metadata, and payment status (note: Dentorra does not store full payment card details).

3. Purpose of Processing

Dentorra processes personal and case-related data for the following purposes:

  • Account creation, verification, and authentication
  • Case submission, quoting, and order fulfillment
  • Communication and coordination between users and labs
  • Payment processing and financial recordkeeping
  • Platform security, fraud prevention, and abuse detection
  • Platform improvement and analytics
  • Compliance with legal obligations

4. GDPR Alignment

Principles: Dentorra processes personal data in accordance with GDPR principles, including data minimization, purpose limitation, and storage limitation, regardless of user location.

Lawful Bases: Processing is based on contractual necessity (fulfilling case requirements), legitimate interests (platform security and improvement), and, where applicable, explicit consent.

User Rights: Users in EU/EEA jurisdictions have rights to access, correction, deletion, and data portability. To exercise these rights, contact Dentorra Support.

5. Health Information Safeguards

HIPAA Alignment: Dentorra applies administrative, technical, and organizational safeguards aligned with HIPAA principles to protect health information, regardless of user location.

Data Controller & Processor Roles: When health information is submitted through Dentorra, the user (clinic or lab) remains the data controller, and Dentorra acts as a data processor. Manufacturing labs also act as processors for the purposes of case fulfillment.

Patient Consent: Users are responsible for obtaining appropriate patient consent before submitting case files containing patient data to Dentorra.

6. International Data Transfers

Cross-Border Processing: Dentorra operates globally. Data may be processed, stored, or transferred across multiple jurisdictions to fulfill cases, process payments, and improve the Platform.

Safeguards: Dentorra applies appropriate safeguards, including Standard Contractual Clauses and compliance with applicable transfer mechanisms, to protect data in transit and in jurisdictions with different privacy standards.

7. Data Retention

Retention Period: Dentorra retains personal and case-related data only as long as necessary to fulfill Platform purposes or comply with legal obligations.

Deletion: After the retention period, data is securely deleted or anonymized. Users may request deletion of their account and associated data at any time by contacting Dentorra Support, subject to legal retention requirements.

8. Subprocessors

Dentorra uses third-party service providers to facilitate Platform operations:

  • Cloud hosting providers for data storage and infrastructure
  • Payment processors for secure transaction handling
  • Manufacturing labs (as data processors) for case fulfillment
  • Analytics and monitoring providers for security and performance

All subprocessors are contractually bound by confidentiality and data protection standards consistent with this Privacy Policy.

9. Security Measures

Technical Safeguards: Dentorra employs encryption (TLS/SSL), secure authentication, and access controls to protect data in transit and at rest.

Administrative Safeguards: Dentorra restricts access to personal data to authorized personnel only and maintains policies for secure data handling.

Continuous Monitoring: Dentorra monitors the Platform for security threats and responds promptly to potential breaches.

10. Contact

For privacy inquiries, data access requests, or concerns about how your data is handled, contact us via the Contact Us page.

Terms of ServicePayment ProtectionHelp Center