Effective date: 19 June 2026
Smileproof ("Smileproof", "we", "us", or "our") is a chairside smile-simulation product operated by ClinicEdge Studio. This Privacy Policy explains how we handle information in connection with our website at smileproof.ai (the "Website") and the Smileproof application used by dental clinics (the "App"). Together the Website and the App are the "Service".
We built Smileproof around a simple principle: collect as little personal data as possible, and keep patient images on the clinic's own device. This policy describes what that means in practice.
This summary is for convenience only. The full policy below governs.
For the Website: Smileproof (ClinicEdge Studio) is the controller of the limited personal data you submit through the Website.
For the App: the dental clinic that uses Smileproof is the controller of patient data. Smileproof provides the software that runs on the clinic's device and acts as a processor or software provider only. The clinic is responsible for obtaining patient consent and for complying with the laws that apply to its practice. Where a written data processing agreement or business associate agreement is required, contact us through the form on our website.
When you request a demo or contact us, we collect the information in the form, which is typically your name, your clinic name, and your email address. We also use an anti-spam challenge (Cloudflare Turnstile) to protect the form.
Like most websites, we may collect basic technical and usage data such as IP address, browser type, pages viewed, and referring source, through privacy-respecting analytics. This helps us understand traffic and improve the site.
When a clinic uses the App, patient photos and the generated before-and-after previews are created and processed on the clinic's device. These images are not transmitted to or stored by Smileproof. They remain under the clinic's control, subject to the clinic's own retention and security practices.
We do not knowingly collect patient images on our servers. If a future feature would change this, we will update this policy and ask for appropriate consent before that feature is enabled.
We use Website information to respond to demo requests and inquiries; to provide, maintain, and improve the Service; to communicate with clinics about the product, onboarding, and support; to protect the Service against fraud, abuse, and security threats; and to comply with legal obligations. We do not use patient images for advertising, model training, or resale.
Where the EU or UK GDPR applies, we rely on consent (for example when you submit a demo request), legitimate interests (such as securing and improving the Service, balanced against your rights), and legal obligation (where we must retain or disclose data to comply with law).
Where the Saudi Personal Data Protection Law (PDPL) or the United Arab Emirates Personal Data Protection Law applies, processing of personal data, including photographs and images that can identify a person, requires a clear and informed legal basis, which is usually the explicit consent of the individual. In the clinic setting, that consent is obtained by the clinic from its patient before any image is captured or used.
Photographs and video that can identify a person are personal data under the GDPR, the Saudi PDPL, and the UAE PDPL. Before capturing or using a patient image in the App, the clinic must obtain the patient's clear, specific, and informed consent, and must honour any withdrawal of that consent. Smileproof helps by keeping those images on the device, but the responsibility for consent and for lawful use of patient data sits with the clinic.
We do not sell personal data. We share limited Website data only with service providers who help us run the Website and communications (for example hosting, email, and analytics providers) under contracts that require them to protect the data; with legal and safety recipients where disclosure is required by law or to protect rights, safety, and the integrity of the Service; and with a successor entity in connection with a merger, acquisition, or sale of assets, subject to this policy.
We operate across Jordan, the Gulf region, and other markets. Where personal data is transferred across borders, we take steps to ensure it remains protected through appropriate safeguards consistent with applicable law. Patient images processed on the device are not transferred to us.
We keep Website contact data only as long as needed for the purposes above or as required by law, then delete or anonymise it. We use reasonable technical and organisational measures, including encryption in transit and access controls, to protect the data we hold. No method of transmission or storage is completely secure, so we cannot guarantee absolute security.
Depending on where you live, you may have the right to access the personal data we hold about you, correct inaccurate data, request deletion, object to or restrict certain processing, withdraw consent at any time (without affecting prior lawful processing), request a copy of your data in a portable format, and lodge a complaint with your data protection authority.
To exercise any of these rights regarding Website data, contact us through the form on our website. If your request concerns patient data held by a clinic that uses the App, please contact that clinic, which is the controller of that data.
The Service is intended for dental professionals and is not directed at children. Where a clinic treats a minor, the clinic is responsible for obtaining consent from a parent or legal guardian in line with local law.
We may update this policy from time to time. When we do, we will revise the effective date above and, for material changes, provide a more prominent notice. Your continued use of the Service after an update means you accept the revised policy.
Smileproof is a product of ClinicEdge Studio. If you have questions about this policy or how your data is handled, contact us through the form on our website and we will respond within a reasonable time.