Privacy and Data Protection Policy

At Dentalex, we provide a wide range of specialized services in medical, dental, psychological, business, and legal consulting for medical and dental clinics. Our commitment to excellence extends equally to data protection, privacy compliance, and advisory services, as well as to supporting the management and operation of healthcare and dental centers.

Regarding the applicable legal framework, we expressly commit to complying with current data protection laws and regulations in the jurisdictions in which we operate. Within the European Union, we apply the General Data Protection Regulation (Regulation EU 2016/679, GDPR) and the Spanish Organic Law 3/2018 on the Protection of Personal Data and the guarantee of digital rights. In the United Arab Emirates, we comply with Federal Law No. 45 of 2021 on the Protection of Personal Data, as well as with other applicable regulations, including the Federal Telecommunications Law of 2003, the Federal Health Law of 2016, and the Federal Law on Electronic Transactions and Commerce of 2006. In the United States of America, given that there is no single federal law governing data protection, we comply with relevant state-level legislation such as the California Consumer Privacy Act of 2018 and the Virginia Consumer Data Protection Act of 2023. In addition, we ensure compliance with federal sectoral legislation such as the Health Insurance Portability and Accountability Act (HIPAA), which protects the confidentiality of medical information nationwide. In Latin America, we adhere to the principles and guidelines of the Ibero-American Network of Data Protection (RIPD), which serve as international reference standards in the region.

The processing of personal data that we collect is always carried out in accordance with the applicable laws of each jurisdiction, with the aim of safeguarding the security, confidentiality, and integrity of the information entrusted to us.

Our commitments regarding personal data are specific. We use personal information solely to fulfill our contractual obligations with clients and students. We implement technical and organizational measures to ensure confidentiality, integrity, and availability of the information. We do not disclose personal data to unauthorized third parties. Where disclosure to third-party providers such as hosting or cloud service companies is necessary, such processing will always be subject to written agreements that ensure compliance with data protection obligations. All employees and collaborators acting on behalf of Dentalex are bound by confidentiality obligations.

With respect to international transfers of data, if personal data is transferred from the European Economic Area to countries outside this region, we apply the safeguards required under the GDPR. These safeguards may include the use of Standard Contractual Clauses adopted by the European Commission, Binding Corporate Rules, or other mechanisms that guarantee a level of protection equivalent to that provided within the European Union.

Data subjects are entitled to exercise the rights recognized by the GDPR and other applicable regulations. These rights include the right of access to one’s data, the right to rectify inaccurate information, the right to request erasure when data is no longer necessary, the right to restrict processing in specific legal circumstances, the right to object to processing based on legitimate interests or direct marketing, and the right to portability, which allows individuals to receive their personal data in a structured and machine-readable format and transmit it to another controller. To exercise these rights, a written request may be sent to info@dentalexsolutions.com, accompanied by a copy of a valid identification document. In addition, data subjects have the right to lodge a complaint before the competent Supervisory Authority, for example the Spanish Data Protection Agency if the individual resides in Spain.

Dentalex acts as the data controller. Any queries specifically related to privacy and data protection may also be addressed to our Data Protection Officer, who can be reached at

The purposes for which we process personal data are strictly defined. We use data to manage and provide the services contracted, to deliver professional and legal training in face-to-face, online, or distance learning formats, to manage the administrative aspects of the professional relationship, and, if the data subject has expressly authorized it, to send additional communications and information regarding Dentalex services and activities.

Data will be retained for the duration of the contractual relationship and thereafter for the legally required retention periods applicable in areas such as professional liability, healthcare regulation, or taxation. Beyond these periods, data will only be retained if the data subject has given consent or until such consent is revoked or deletion is requested.

The recipients of the data are exclusively Dentalex and those third parties who act as processors in the provision of support services or in cases where disclosure is legally required by competent authorities. Data will not be published or disclosed to unauthorized third parties under any circumstances.

The personal data we process originates directly from the data subjects themselves, provided when requesting information, contracting services, enrolling in training programs, or contacting us via telephone, email, or social media.

Finally, Dentalex applies technical and organizational security measures that are appropriate to the risks involved, ensuring that personal data remains protected against alteration, loss, misuse, unauthorized processing, or access.

Any questions regarding this Privacy and Data Protection Policy may be addressed to info@dentalexsolutions.com.

Privacy and Data Protection Policy – FAQ Format

Who is responsible for your data?
The Data Controller is Dentalex Health & Legal Solutions FZCO, established in Dubai Silicon Oasis, United Arab Emirates. For privacy matters, you may contact us at info@dentalexsolutions.com. Additionally, we have appointed a Data Protection Officer (DPO), who can be reached at dpo@dentalexsolutions.com.

What laws do we comply with?
We comply with the General Data Protection Regulation (Regulation EU 2016/679, GDPR) and the Spanish Organic Law 3/2018 on Data Protection and Digital Rights. In the United Arab Emirates, we follow Federal Law No. 45 of 2021 on the Protection of Personal Data, along with sector-specific laws on telecommunications, health, and electronic commerce. In the United States, we apply relevant state laws, including the California Consumer Privacy Act (2018) and the Virginia Consumer Data Protection Act (2023), as well as the federal HIPAA law for medical information. In Latin America, we respect the principles of the Ibero-American Network of Data Protection (RIPD) as an international reference standard.

For what purposes do we process your data?
We process your data exclusively to deliver and manage the services you contract with us, including legal and professional training (in-person, online, or distance learning), consultancy, and administrative management. If you authorize it, we may also use your data to send you information about our services and training activities.

What is the legal basis for processing?
The primary legal basis is the contractual relationship established when you hire our services. In some cases, your explicit consent will serve as the legal basis, especially for sending communications or additional information. In other cases, we may process your data to comply with legal obligations.

How long do we keep your data?
We retain your data for as long as the contractual relationship remains in force. Once it ends, data will be stored for the statutory periods required by law (for example, professional liability or tax regulations). After those periods, data will be deleted unless you have given us consent to retain it longer or you exercise your right to erasure.

Who are the recipients of your data?
Your data will only be accessed by Dentalex and, where necessary, by third-party service providers (such as hosting or cloud providers) who act on our behalf under strict confidentiality agreements. Data may also be disclosed to public authorities where legally required. We do not sell or publish personal information.

Do we transfer your data internationally?
Yes, in some cases data may be transferred between the European Economic Area, the United Arab Emirates, and the United States. Whenever this occurs, we apply safeguards required by the GDPR, such as Standard Contractual Clauses or equivalent mechanisms, to guarantee the same level of protection.

What rights do you have over your data?
You have the right to access your personal data, request rectification of inaccurate information, request erasure, restrict processing, object to processing based on legitimate interests, and request portability of your data in a structured and machine-readable format. You may exercise these rights by writing to info@dentalexsolutions.com and providing a copy of your identification document.

Can you withdraw your consent?
Yes. Where processing is based on consent, you may withdraw it at any time by contacting info@dentalexsolutions.com. Withdrawal will not affect the lawfulness of processing carried out prior to withdrawal.

How do we protect your data?
We apply technical and organizational security measures to prevent unauthorized access, alteration, disclosure, or destruction of your personal data. All employees and collaborators of Dentalex are bound by confidentiality obligations.

Where does your data come from?
The personal data we process comes directly from you when you contact us, request information, contract our services, or enroll in our training programs through phone, email, or social media.

How can you make a complaint?
If you believe your rights have not been respected, you can contact us at info@dentalexsolutions.com. You also have the right to lodge a complaint before the relevant Supervisory Authority, such as the Spanish Data Protection Agency if you are located in Spain