We use cookies to ensure that we give you the best experience on our website.

AMOSYS is GDPR compliant

What is GDPR ?

General Data Protection Regulation is a General Regulation (EU) 2016/679). It has a significant impact on dentistry and dental technology, as dental practices and dental laboratories process a large volume of sensitive personal information – patients’ health data. And AMOSYS is GDPR compliant.

Types of data processed

Dental practices and dental technicians collect and store “sensitive personal data”. All fall under the GDPR category, with dental laboratories signing a personal data processing contract with the dentist. This data includes:

  • Names, personal identification numbers, addresses, telephone numbers, emails;
  • Medical history (dental pictures, diagnoses, treatments, allergies);
  • Health insurance data;
  • Financial information (for private treatment).
Legal grounds for processing

Laboratories and dental practices have the right to process personal data in the following cases:

  • The patient has given informed consent;
  • The processing is necessary for medical purposes (treatment, prevention);
  • There is a legal necessity – for example, the retention of medical records by law.

The dental practice is obliged to conduct a register of processed data. A data protection officer may also be appointed (if applicable) and staff training on GDPR should be provided. Labs and practices conlcude confidentiality agreements with external suppliers (e.g. software, laboratories). And it is also recommended to use antivirus programs and software in the practice and laboratory that also meet the requirements of GDPR. AMOSYS is GDPR compliant.

Data processing requirements

Labs and practices should inform patients about what data is they collect, why they collect it and how long they store it. It is important to note that by law, only data that is necessary to be collected can be collected. Labs and practies must protect data with physical and digital measures – encryption, password protection, limited access. Another important thing is that practices and labs cannot store longer than necessary the data.

Patients’ rights

Patients also have rights regarding their personal data. These are:

  • Access to data ;
  • Correction of inaccurate data ;
  • Erasure (“right to be forgotten”) – where applicable;
  • Restriction of processing ;
  • Objection to processing – if there is no legal basis.

AMOSYS complies with the GDPR regulation . TEACS Ltd. processes personal data as a personal data administrator of our partners, employees and users/clients, as well as as a personal data processor in order to provide data storage services to dental practices and dental laboratories and organize the exchange of orders between them. You can learn more in our section on the Personal Data Processing and Protection Policy .