Privacy Policy

1. Who we are

DentaCall ("we", "us") provides missed-call recovery and CRM software to UK dental practices. For information about how to contact us, see our Contact page.

2. What data we process

We process two broad categories of personal data: (a) information about practice users (name, work email, work phone), and (b) information about callers to the practice that flows through our system (phone number, SMS conversation, optional name and appointment preference shared by the caller).

3. Lawful basis

For practice users, our lawful basis is the performance of our contract with the practice. For caller data, the practice is the controller and DentaCall is the processor under a signed Data Processing Agreement. Caller SMS consent is captured at first contact.

4. Retention

We retain caller data for as long as the practice's account remains active, plus a limited statutory retention period. Callers can request deletion of their data at any time via the practice.

5. Your rights

Under UK GDPR you have rights of access, rectification, erasure, restriction, portability and objection. To exercise these rights, contact the practice you spoke with, or contact us directly.

6. International transfers

Patient data is processed in the UK. Where any sub-processor is based outside the UK, we rely on appropriate safeguards including UK IDTA / Standard Contractual Clauses.