Privacy Policy

Dental Design Review is a tool for dental designers and labs to share 3D dental scans with reviewers via a link. We store the files you upload, the metadata you attach (case ID, recipient email, brand), and basic account information. Files auto-delete after 7 days. We don't sell your data and we don't use it to train AI models.

This service is not currently HIPAA-compliant. Do not upload files containing protected health information (PHI) — including patient names, dates of birth, account numbers, addresses, phone numbers, or any other 18-identifier element. 3D dental scans themselves are biometric identifiers under HIPAA; if you are operating under a HIPAA-covered workflow you should not use this tool for real-patient data until our HIPAA-eligible infrastructure (signed BAAs with all sub-processors, authenticated recipient access, full audit logging) is live and we've issued you a BAA.

The Case ID and Patient Name fields in the upload form are free-text — keep these de-identified (e.g. case numbers, initials, abbreviated codes). You alone are responsible for the contents you upload.

• Account information — email address, name (optional), and a hashed password. If you enable two-factor authentication we store a TOTP secret and backup codes (encrypted in transit, stored as opaque values).
• Branding — your company name and logo image (optional).
• Cases (shares) — the 3D files you upload, the case ID, the patient-name field if you fill it in, the recipient email(s), and the share link metadata (view count, last viewed timestamp).
• Address book — contacts you save (name, company, email).
• Diagnostic data — server logs and error reports include IP addresses, user-agent strings, and timestamps. Retained for 30 days.

• Account & metadata: Postgres database hosted on Railway (US-East region).
• 3D files & logos: Cloudflare R2 object storage (global edge, with reads served from the nearest region).
• Email notifications: Resend (share.dentaldesignreview.com).

None of these vendors are operating under a Business Associate Agreement with us. That's the gating dependency for handling PHI, and it's the next major piece of infrastructure work.

• Share files: auto-deleted from R2 7 days after upload via a daily cleanup job.
• Manual deletion: as the share owner you can delete a share at any time from the dashboard — files are removed from R2 immediately and the share link becomes inaccessible.
• Your account: persists until you ask us to delete it. To request deletion email [email protected].

• All connections use HTTPS/TLS.
• R2 is locked down — files are only readable through the share link.
• Owner accounts: password + optional TOTP two-factor authentication.
• Sessions: max 7 days, refreshed on activity, 8-hour idle revalidation.
• Recipient access is currently via long random URLs (unguessable). Per-recipient magic-link authentication is on the roadmap and will replace this model for HIPAA-eligible deployments.

• We don't sell, rent, or share your data with advertisers or data brokers.
• We don't use your files or metadata to train machine learning models.
• We don't set advertising cookies or third-party analytics that build a profile of your activity.

• Access & export: you can download your own shares any time from the dashboard.
• Correction: account name, brand, email — edit any time from Settings.
• Deletion: as above, via the dashboard for shares, or email us to close the account entirely.

Questions, concerns, or HIPAA-related due-diligence requests: [email protected]

← Back to Dental Design Review