Privacy Policy

1. Overview

DDMC is operated by Dentis USA. References to "DDMC," "we," "our," or "us" include Dentis USA and its affiliated divisions.

This Privacy Policy describes how we collect, use, and protect information about dental offices and their authorized users ("you") who access our platform.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Policy.

2. Information We Collect

We collect the following categories of information:

3. How We Use Your Information

We use your information to:

• Process and fulfill dental laboratory orders.
• Communicate order status, shipping updates, and design confirmations.
• Issue invoices and process payments.
• Manage accounts, credits, and referral rewards.
• Improve our platform and customer support.
• Maintain system security and prevent fraud.
• Send service-related notifications. Marketing communications are sent only with your explicit consent.

4. Patient Data

Patient information submitted through the Service, such as names, dates of birth, and gender, is used solely to identify dental cases and fulfill laboratory orders. This information is never sold or used for unrelated purposes.

We treat patient data with strict confidentiality consistent with clinical standards. You are responsible for obtaining appropriate patient consent before sharing such information with DDMC.

5. HIPAA Compliance

Where applicable, DDMC complies with the Health Insurance Portability and Accountability Act (HIPAA). When acting as a service provider to dental practices, DDMC operates as a Business Associate and will execute a Business Associate Agreement (BAA) upon request.

6. Data Sharing

We do not sell personal information. We share data only in the following circumstances:

• Laboratory Partners: To manufacture and fulfill dental cases.
• Payment Processors: Stripe, Inc. processes all payment transactions.
• Service Providers: Trusted vendors who support secure hosting, communications, and analytics.
• Legal Requirements: When required by law or to protect the rights, safety, and integrity of our business and users.

7. Data Security

We implement industry-standard security measures, including:

• TLS encryption for data in transit.
• Encrypted storage for sensitive data.
• Role-based access controls.
• Secure cloud infrastructure and monitoring.

However, no system can guarantee absolute security.

8. Data Retention

We retain data as follows:

• Account and order data: For the duration of the account and as required by law.
• Financial records: Up to seven (7) years for tax and accounting purposes.
• Digital scan and STL files: Retained for up to two (2) years unless otherwise requested.

You may request deletion of your data by contacting us.

9. Your Rights

You have the right to:

• Access personal information we hold about you.
• Correct inaccurate information.
• Request deletion of your data.
• Opt out of marketing communications.

To exercise these rights, contact us at privacy@ddmc.com.

10. California Privacy Rights (CCPA/CPRA)

California residents have the right to request access to, correction of, or deletion of their personal information in accordance with applicable privacy laws. DDMC does not sell personal data.

11. International Data Transfers

If you access the Service from outside the United States, your information may be transferred to and processed within the United States.

12. Cookies

We use essential session cookies to maintain login sessions and ensure platform security. We do not use third-party advertising or tracking cookies.

13. Children's Privacy

The Service is not intended for individuals under the age of 18, and we do not knowingly collect personal information from minors.

14. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email or in-app notifications.

Continued use of the Service constitutes acceptance of the updated policy.

15. Contact Information