Placeholder content — not legal advice. Final wording pending counsel review. The substance below is a good-faith description of current practice but is not a binding privacy notice; the real document will replace this before public launch.

Privacy Policy

Last updated: May 5, 2026 · Intended for use in the United States.

1. What we collect

DentGuard is built so that protected health information (PHI) never enters the service. Specifically:

Authentication: the email address you sign in with, and the OAuth identity returned by the provider (Google).
Subscription: billing-tier metadata returned by our payment processor. We do not store card numbers.
Usage analytics: aggregated and pseudonymized page views, feature use, and error reports. Used to improve the product. We do not sell analytics data.
What we do not collect: patient names, date-of-birth, medical-record numbers, addresses, or any other PHI. The product is designed not to need this information at chairside.

2. Where data is stored

Account and subscription data are stored on infrastructure operated by the engineering team in the United States. Authentication tokens are short-lived. Backups follow the underlying provider's standard policy.

For the list of third-party providers that operate this infrastructure on our behalf (hosting, payments, email, observability), see our Subprocessors page.

3. Retention

Account data is retained while your account is active. On account deletion, identifying data is removed within 30 days, except where retention is required by law (e.g. tax records on paid invoices).

4. Your rights

DentGuard is intended for use in the United States. You can request a copy of the data we hold about you, request corrections, or request deletion. California users have rights under CCPA/CPRA; the final policy will document specific timelines and any state-by-state variations (Virginia VCDPA, Colorado CPA, Connecticut CTDPA, Utah UCPA, etc.). Send requests to the contact email below.

5. HIPAA

DentGuard is not a covered entity or business associate under HIPAA; it is designed not to receive PHI. Do not enter patient-identifying information into the product. If you believe PHI has inadvertently been transmitted to DentGuard, contact us immediately so we can purge it.

6. Cookies and tracking

We use first-party cookies for authentication and session management. Analytics is implemented in a way that avoids third-party advertising trackers.

Browser-side analytics (PostHog) and error reporting (Sentry) do not run until you allow them. Manage cookies to review or change your choice at any time.

7. Changes to this policy

We will update the “Last updated” date when this policy changes and surface a notice in-app for material changes.

8. Contact

Privacy questions or requests: support@dentguard.ionudev.ai