OccluTrace

Legal

Privacy Policy

Effective date: January 1, 2026 · Last updated: February 22, 2026

1. Information We Collect

Account information: When you sign in via Google OAuth, we receive your name, email address, and profile image.

Dental scan files: You upload STL files containing 3D dental geometry. These files contain surface mesh data and do not inherently include patient identifiers such as name, date of birth, or medical record numbers.

Usage data: We collect standard analytics data including pages visited, features used, browser type, and IP address.

Processing results: Corrected STL files, contact heatmaps, and associated metrics generated by our system.

2. How We Use Your Information

  • Provide the Service: Process your dental scans and generate occlusion alignment results
  • Account management: Authenticate your identity, manage credits, and communicate service updates
  • Service improvement: Analyze aggregate usage patterns to improve performance and user experience
  • Security: Detect and prevent unauthorized access, fraud, and abuse

3. Data Storage and Security

Your data is stored on secure servers with encryption in transit (TLS 1.2+). STL files and processing results are stored on isolated infrastructure with access controls. We implement industry-standard security measures including regular security audits and monitoring.

4. Data Retention

Scan files: Retained until you delete them or request account deletion.

Account data: Retained while your account is active. Upon account deletion, personal data is removed within 30 days.

Analytics data: Aggregated and anonymized data may be retained indefinitely for service improvement.

5. Third-Party Services

We use the following third-party services:

  • Google OAuth: Authentication provider. Subject to Google’s Privacy Policy.
  • Cloud infrastructure: Servers for scan processing. Data processed in accordance with provider agreements.
  • Analytics: Anonymous usage analytics to improve the Service.

We do not sell your personal data or scan files to any third party.

6. HIPAA Notice

STL files contain 3D surface geometry and do not inherently include Protected Health Information (PHI) as defined by HIPAA. However, we recommend that users de-identify any files before upload by removing patient names from filenames and metadata.

OccluTrace is not a HIPAA-covered entity. If you are subject to HIPAA, you are responsible for ensuring that any data you upload complies with your obligations under HIPAA.

7. GDPR Rights (EU Users)

If you are located in the European Economic Area, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Request correction of inaccurate data
  • Erasure: Request deletion of your personal data
  • Portability: Request transfer of your data in a machine-readable format
  • Objection: Object to processing of your data for certain purposes

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

8. Cookies

We use cookies for:

  • Session management: Maintaining your authenticated session
  • Preferences: Remembering your cookie consent choice
  • Analytics: Understanding how the Service is used (anonymous)

You can manage cookie preferences through your browser settings. Disabling cookies may affect Service functionality.

9. Children’s Privacy

OccluTrace is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a minor, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify registered users of material changes via email. Your continued use of the Service after changes constitutes acceptance.

11. Contact

For questions about this Privacy Policy, contact us at [email protected].