Legal
Last updated 2026-07-12
Garbí Dental is an AI operating system for dental clinics, operated by Pending entity registration[LEGAL ENTITY NAME]("Garbí", "we", "us"). This policy explains how we handle information.
This policy covers two things: the garbidental.com website, and the Garbí service that we provide to dental clinics. Where a section applies to only one of them, we say so. The website is a marketing site. It does not collect patient health information.
This website does not collect patient health information. Patient data is handled only within the Garbí service, described below.
We use Google Analytics 4 to understand how visitors use the site, such as which pages they view and which links they click. Google acts as our analytics provider and may set cookies to do this. IP addresses are anonymized by default and we do not use this data for advertising.
Our primary audience is in the United States, so we do not currently show a cookie banner for basic analytics. You can opt out of Google Analytics using Google's browser add-on.
When you book a walkthrough, the details you enter are processed by our scheduling provider, Cal.com, to arrange the meeting. Their handling of that data is governed by their own privacy policy.
When a dental clinic uses Garbí, the clinic is the covered entity and data controller for its patient data. Garbí acts as a service provider and business associate, processing that data only to run the service on the clinic's behalf. We sign a Business Associate Agreement with each clinic. Protected health information is handled only inside the service, under that agreement, and never on this website.
Patients opt in to text messages and calls through their dental clinic, not through this website. Every message honors STOP to unsubscribe and HELP for assistance.
No mobile information will be shared with third parties or affiliates for marketing or promotional purposes. All other categories exclude text messaging originator opt-in data and consent; this information will not be shared with any third parties.
We rely on a small set of trusted providers to run the service. Each processes data only as needed to perform its function. We disclose them here by category and name the specific providers in the data processing terms we share with clinics.
| Cloud hosting and storage | Runs the service, under a signed BAA |
|---|---|
| Telephony and SMS | Places calls and sends text messages |
| AI processing | Powers the voice and messaging agents |
| Email delivery | Sends transactional email |
| Calendar scheduling | Syncs appointments |
| Website hosting | Serves this marketing website |
We keep information for as long as needed to provide the service and to meet legal obligations. Clinic and patient data is retained according to the clinic's contract and Business Associate Agreement, and deleted or returned when that agreement ends.
Data is encrypted in transit and at rest. The service maintains audit trails, access controls, and PHI redaction as part of its compliance layer.
Depending on where you live, you may have the right to access, correct, or delete personal information we hold about you, and to not be discriminated against for exercising those rights. Visitors in the European Union and United Kingdom have equivalent rights under GDPR and UK GDPR. To make a request, email us at the address below.
This website is not directed at children under 16 and we do not knowingly collect their information through it.
We process data in the United States. If you contact us or use the site from another country, you understand that your information is processed in the United States.
We may update this policy. When we do, we update the date shown at the top of the page.
Questions about this policy can go to hello@garbidental.com, or by post to Pending entity registration[LEGAL ENTITY NAME].