Last updated: July 2026
Privacy, information security, and transparency are built into DentaTool. This page explains in clear language how we protect sensitive data in dental labs.
Dental labs trust DentaTool with sensitive business, patient, and health-related data every day. We treat that trust as a responsibility.
We do not want to bind customers through technical barriers or proprietary data formats. We want to earn trust through a secure, transparent, and reliable working environment.
DentaTool is operated exclusively in professional data centers located in Germany. This means customer data generally remains within the German legal sphere and is subject to GDPR requirements.
Our hosting infrastructure is continuously monitored, regularly updated, and operated according to the principle of least privilege.
Privacy is not a separate product feature at DentaTool. It is part of our development and business processes. We process personal data only to provide the contractually agreed services.
Sensitive data is protected in transit and at rest. DentaTool uses TLS, encryption of sensitive data inside the database, encrypted backups, and secure password storage with current hashing methods.
Particularly sensitive information, especially patient master data, is additionally stored encrypted inside the database.
Each dental lab works within its own logically separated tenant. Users of one tenant can access only the data of their own organization.
Logical tenant separation is enforced at the application level.
Regular backups protect the availability and integrity of customer data. Backups are used to restore the platform after technical disruptions, security incidents, or other exceptional events.
Backups are created regularly as part of a defined backup strategy, and their recoverability is regularly tested.
Backup retention and overwrite periods are defined in accordance with our deletion and retention policy.
Access to DentaTool is possible only through authenticated user accounts. User accounts are personal and may not be shared by multiple people.
Support access is tenant-specific and takes place only where required to process a support request, analyze an issue, or fulfill contractual services.
Security starts during the conception of new features. Privacy and security requirements are considered during development.
AI can support dental labs with recurring organizational tasks. Professional, legal, and business decisions remain human responsibilities.
Customer data is not used to train our own AI models. When DentaTool provides AI features, they should make clear when AI is used, what task it performs, and which results should be reviewed.
We transparently document key privacy- and security-relevant measures and provide customers with the information required for their own review and documentation.
Security and privacy measures should be understandable, not hidden. We answer questions openly and clearly.
Documents
Additional documents are available to customers through the DentaTool platform and our website. They are reviewed regularly and updated when needed.
The rules governing the contractual relationship between DentaTool and its customers.
The agreement governing the processing of personal data in accordance with Article 28 GDPR.
An overview of the technical and organizational measures we use to protect personal data.
Information about how personal data is processed when using DentaTool and our website.
Definitions of important legal and technical terms used throughout our documentation.
A list of service providers that process personal data on our behalf.
Information about how long data is retained and when it is securely deleted.
A detailed overview of how personal data is processed within the DentaTool platform.
Contact
We are happy to personally answer questions about privacy or information security. If you have information about potential security issues, we welcome responsible disclosure.
© 2026 DentaTool
