Privacy Policy

Summary: DentalPulse collects your email address and optional name to send you a daily dental research digest. We do not sell your data. We do not share it except with the service providers needed to operate the newsletter (listed below). You can unsubscribe and request deletion at any time.

Who We Are
Data We Collect
Legal Basis for Processing
How We Use Your Data
Data Processors & Third-Party Services
Cookies & Tracking
Data Retention
Your Rights
CAN-SPAM Compliance
International Data Transfers
Security
Children's Privacy
Changes to This Policy
Contact Us

1. Who We Are

DentalPulse ("DentalPulse," "we," "us," or "our") is an AI-powered dental research digest service operated at dentalpulse.io. We aggregate publicly available dental research abstracts from PubMed (maintained by the National Library of Medicine / NIH), generate AI-powered summaries, and deliver them to dental professionals via email newsletter.

For privacy inquiries, contact us at: contact@dentalpulse.io

2. Data We Collect

Information you provide

Email address — required to send the newsletter
Name — optional, used to personalise the greeting in emails
Specialty preference — optional, used to filter the digest to your chosen dental specialties

Information collected automatically

Usage data — IP address, browser type, operating system, pages visited, and the date/time of your visit, collected when you access dentalpulse.io
Email engagement data — whether emails are opened and which links are clicked, collected via a tracking pixel embedded in each email (see Section 6)

Information we do not collect

We do not collect payment information, government identifiers, sensitive health data, or any information about your patients. We do not send subscriber personal data to AI systems — only publicly available article abstracts are processed by AI.

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we process your personal data on the following legal bases:

Performance of a contract — delivering the newsletter service you subscribed to
Consent — where required by law, we rely on your explicit consent to send marketing communications. You may withdraw consent at any time by unsubscribing without affecting the lawfulness of prior processing
Legitimate interests — analysing aggregate usage data to improve the service, preventing fraud and abuse, and maintaining system security, provided these interests are not overridden by your rights

4. How We Use Your Data

To send you the daily DentalPulse research digest to which you subscribed
To personalise emails with your name and filter content by your selected specialty
To measure newsletter performance (open rates, click rates) in aggregate
To prevent fraudulent signups and abuse of the service
To respond to your support and contact requests
To comply with legal obligations

We do not use your data for advertising, we do not build behavioural profiles, and we do not sell, rent, or trade your personal information to any third party.

5. Data Processors & Third-Party Services

We share data only with the following processors who act on our behalf under data processing agreements:

Processor	Purpose	Location	Privacy Policy
Supabase, Inc.	Database storage of subscriber email addresses, name, and preferences	US	supabase.com/privacy
Resend, Inc.	Email delivery — transmits the newsletter to your inbox	US	resend.com/legal/privacy-policy
Anthropic, PBC	AI processing — generates article summaries from PubMed abstracts only. No subscriber personal data is sent to Anthropic.	US	anthropic.com/privacy
Render Services, Inc.	Backend server hosting	US	render.com/privacy
Netlify, Inc.	Website hosting and delivery	US	netlify.com/privacy

Note on AI processing: When we use Anthropic's Claude API to generate summaries, only the article abstract text from PubMed is submitted — never your email address, name, or any personal information. Per Anthropic's API terms, API inputs and outputs are not used to train Anthropic's models.

We do not sell your personal data. We require all processors to implement appropriate technical and organisational security measures and to process data only for the specific purposes we authorise.

6. Cookies & Tracking

Website cookies

DentalPulse uses only essential cookies required for the website to function (e.g., theme preference). We do not use advertising or behavioural tracking cookies.

Email tracking pixel

Our emails contain a small transparent image (tracking pixel) that allows us to determine whether an email was opened and which links were clicked. This data is used solely to measure the performance of the newsletter. You can prevent tracking by disabling image loading in your email client.

We do not use advertising networks or sell email engagement data to third parties.

7. Data Retention

We retain your email address and subscription preferences for as long as you remain an active subscriber.

If you unsubscribe, your subscription status is set to inactive. We retain your email address on a suppression list for up to 12 months to honour your opt-out and prevent accidental re-subscription. All other personal data associated with your subscription is deleted within 30 days of an unsubscribe or deletion request, unless we are legally required to retain it longer.

Aggregate, anonymised analytics data (e.g., aggregate open rates) may be retained indefinitely as it cannot be used to identify you.

8. Your Rights

All subscribers

Unsubscribe — click the unsubscribe link in any email at any time
Access & correction — email us to request a copy of your data or to correct inaccurate information
Deletion — email us to request deletion of your personal data

EEA, UK, and Switzerland residents (GDPR)

You have the following additional rights under the General Data Protection Regulation:

Right of access (Art. 15) — request a copy of the personal data we hold about you
Right to rectification (Art. 16) — request correction of inaccurate data
Right to erasure (Art. 17) — request deletion under certain conditions
Right to restriction of processing (Art. 18) — request we limit how we use your data
Right to data portability (Art. 20) — receive your data in a structured, machine-readable format
Right to object (Art. 21) — object to processing based on legitimate interests or for direct marketing
Right to withdraw consent — withdraw consent at any time without affecting the lawfulness of prior processing

To exercise any of these rights, email contact@dentalpulse.io. We will respond within 30 days. You also have the right to lodge a complaint with your local data protection supervisory authority.

California residents (CCPA)

We do not sell personal information. California residents have the right to know what personal information we collect, to request deletion, and to opt out of any sale (which we do not engage in). To submit a CCPA request, email contact@dentalpulse.io.

9. CAN-SPAM Compliance

In compliance with the federal CAN-SPAM Act of 2003 (15 U.S.C. § 7701 et seq.), all commercial email messages sent by DentalPulse will:

Clearly identify DentalPulse as the sender
Include a clear, conspicuous, and functioning unsubscribe mechanism in every email
Honour unsubscribe requests within 10 business days
Not use deceptive subject lines or sender information
Include our contact address: contact@dentalpulse.io

To unsubscribe, click the "Unsubscribe" link in any DentalPulse email, or email contact@dentalpulse.io with "Unsubscribe" in the subject line.

Mailing address (required by CAN-SPAM): DentalPulse · [MAILING ADDRESS — add P.O. box or business address]

10. International Data Transfers

DentalPulse is operated in the United States. If you are located outside the United States, your information will be transferred to and processed in the United States. By subscribing, you consent to this transfer.

For EEA/UK subscribers, where we transfer personal data outside the EEA/UK, we rely on appropriate safeguards including Standard Contractual Clauses approved by the European Commission, and/or our processors' participation in recognised data transfer frameworks. Our key processors (Resend, Supabase) maintain GDPR-compliant Data Processing Addendums available at their respective privacy pages.

11. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encrypted data transmission (HTTPS), access controls, and use of reputable third-party infrastructure providers.

However, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security and encourage you to use a unique, strong password for any accounts you maintain.

12. Children's Privacy

DentalPulse is intended for dental professionals and is not directed at children under the age of 16. We do not knowingly collect personal information from children under 16. If you believe we have inadvertently collected such information, please contact us at contact@dentalpulse.io and we will promptly delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable law. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify active subscribers by email. Your continued use of DentalPulse after changes are posted constitutes acceptance of the revised policy.

14. Contact Us

For any privacy-related questions, requests, or complaints, please contact us:

DentalPulse
Email: contact@dentalpulse.io
Website: dentalpulse.io

We will respond to all privacy requests within 30 days.

Contents