Privacy Policy — Dentariq

How we collect, use, store, and protect your data.
Last updated: 2025-09-05

1) Overview

Dentariq (“we”, “us”, “our”) provides a dental assistant platform that helps dental professionals manage patient information, imaging, diagnostics, treatment planning, and related workflows.

This Privacy Policy explains what data we collect, how we use it, and the choices you have. By using Dentariq, you agree to the practices described here.

Compliance GDPR Morocco Law 09-08 (CNDP)

2) Data We Collect

Account & Profile: name, email, role, organization, contact details, authentication identifiers.

Clinical/Patient Data: patient demographics, clinical notes, diagnoses, imaging metadata and files (e.g., photos, radiographs), treatment plans, payments/estimates you record. These are special-category data.

Usage & Device: app interactions, device model, OS version, crash/ANR data, IP-derived region, and diagnostic logs.

Support & Feedback: messages, attachments, and metadata you share with support.

Cookies/Local Storage: only what is necessary for login/session integrity and performance; analytics may use similar technologies.

Sources: information you enter, files you upload, systems you integrate (e.g., Firebase Auth), and diagnostics generated by our services.

3) How We Use Your Data

  • Provide and secure the service (authentication, authorization, audit logs).
  • Store, render, and back up clinical records you choose to process in Dentariq.
  • Improve reliability, performance, and user experience (analytics, crash reports).
  • Respond to support requests and communicate important changes.
  • Meet legal, regulatory, and security obligations.

4) Legal Bases

  • Consent (e.g., when you upload patient data with appropriate consent).
  • Contract (to deliver the service you requested).
  • Legitimate Interests (to maintain and improve our platform and protect against abuse).
  • Legal Obligation (to comply with applicable law and regulatory requests).

5) Health Data & Sensitivity

Clinical data processed in Dentariq may constitute special-category data. You are responsible for ensuring you have a valid legal basis and patient consent (as required) to process such data in Dentariq. We implement enhanced safeguards, including encryption in transit and at rest, strict access controls, and audit logging.

Important: Dentariq is a software tool to assist clinical workflows and documentation; it does not replace professional judgment and is not a medical device unless explicitly stated.

6) Sharing & Processors

We do not sell personal data. We share data with service providers (“processors”) strictly to operate Dentariq:

  • Google Firebase / Google Cloud — authentication, databases, storage, hosting, analytics, crash reports.
  • Cloudflare — security, CDN, and edge delivery for web assets.

Processors are bound by contracts and only process data under our instructions and for specified purposes.

7) Retention

We retain data while your account is active. You may request deletion of account-level data at any time; clinical records retention may also follow your local professional/legal obligations. Backups are purged on a rolling schedule.

8) Security

  • Encryption in transit (TLS) and at rest (per provider standards).
  • Role-based access control, least-privilege principles, and audit trails.
  • Continuous monitoring, vulnerability management, and backups.

No method of transmission or storage is 100% secure. We work to protect your data using commercially reasonable measures.

9) International Transfers

Your data may be processed in data centers outside your country. Where required, we rely on appropriate safeguards (e.g., Standard Contractual Clauses) and vendor compliance programs.

10) Your Rights

Subject to applicable law (e.g., GDPR, Morocco Law 09-08/CNDP), you may have rights to access, rectify, erase, restrict or object to processing, and data portability. You may also withdraw consent where processing relies on consent.

To exercise your rights, contact us using the details below. We may need to verify your identity.

11) Children’s Privacy

Dentariq is intended for professional use. We do not knowingly collect personal data directly from children. If you believe a child’s data was provided to us without proper authorization, please contact us for prompt action.

12) Changes to This Policy

We may update this policy from time to time. We will change the “Last updated” date and, where appropriate, provide additional notice.

13) Contact

Controller: Dentariq
Email: contact@dentariq.com
Location: Casablanca, Morocco

If you are located in the EU/EEA or Morocco and believe your rights were infringed, you may also contact your data protection authority (including Morocco’s CNDP).

↑ Back to top