Data Processing Agreement

Introduction

This Data Processing Agreement (“DPA”) forms part of the agreement between Dental Dash and the customer for the provision of our services. This DPA sets out the terms that apply when personal data is processed by Dental Dash on behalf of the customer.

Definitions

• Data Controller: The customer who determines the purposes and means of processing personal data.
• Data Processor: Dental Dash, which processes personal data on behalf of the Data Controller.
• Personal Data: Any information relating to an identified or identifiable natural person.

Scope of Processing

Dental Dash processes personal data solely for the purpose of providing dental analytics services as described in the main service agreement.

Data Processor Obligations

Dental Dash shall:

• Process personal data only on documented instructions from the Data Controller
• Ensure that persons authorised to process personal data are bound by confidentiality obligations
• Implement appropriate technical and organisational security measures
• Assist the Data Controller in responding to data subject requests
• Delete or return all personal data upon termination of services

Sub-Processors

Dental Dash may engage sub-processors to assist in providing the services. A current list of sub-processors is available upon request.

Data Transfers

Any transfer of personal data outside the European Economic Area will be conducted in compliance with applicable data protection laws.

Contact

For questions about this DPA, please contact us at legal@dentaldash.com.