Privacy Policy

Dental IT Services is a trading name of DISUK LTD. DISUK LTD — registered in England & Wales. Company no. 17294220. Our registered office is 167-169 Great Portland Street, 5th Floor, London, W1W 5PF.

For the personal data we handle through this website and in providing our services, DISUK LTD is the "data controller". You can contact us at info@dentalitservices.co.uk or 0333 339 5575 for any privacy matter, including to exercise your rights.

We collect information in a few ways:

• Information you give us — when you complete our enquiry form, email or call us, we collect your name, practice name, email address, telephone number and the details of your enquiry.
• Information we collect automatically — when you visit this website, our hosting provider may process limited technical data such as your IP address and basic request logs for security and to keep the site running. These strictly necessary cookies do not require consent.
• Cookies and similar technologies — we use a small number of essential cookies to make the site work. With your consent, we also use analytics and advertising cookies (including Google Ads) to measure traffic and the performance of our advertising. When you first visit, a cookie banner lets you accept, reject, or choose which of these you allow, and nothing non-essential is set until you consent. You can change your choice at any time by clearing your browser's site data for this site, which brings the banner back.
• Information we process for clients — when you become a client, we process the data needed to deliver IT services under a separate written agreement (see 'Acting on behalf of dental practices' below).

We use the information you provide to:

• respond to your enquiry and provide you with a quote;
• arrange and carry out the IT services you ask us to provide;
• manage our relationship with you, including support, billing and administration; and
• meet our legal, regulatory and accounting obligations.

Our lawful bases under UK GDPR are: your consent (where you contact us); the performance of a contract (where we provide services to you); our legitimate interests in running and promoting our business; and compliance with legal obligations. We do not send marketing emails without your consent, and you can opt out at any time.

When we deliver IT services to a dental practice, that practice remains the data controller for its patient and practice data. We act as a data processor, handling that data only on the practice's documented instructions under a written Data Processing Agreement, in line with Article 28 of the UK GDPR.

In that role we put in place appropriate technical and organisational measures — including encryption, access controls and audited backups — to protect the data we handle, and we support our clients with their NHS Data Security and Protection Toolkit and information governance obligations.

We do not sell your personal data. We share it only where necessary:

• with trusted service providers who help us operate (for example our website host and our email delivery provider), who act under contract and only on our instructions;
• where required by law, regulation, or a valid request from an authority; and
• with your consent, or as otherwise described to you at the time.

Some providers may process data outside the UK. Where they do, we rely on appropriate safeguards (such as UK adequacy regulations or standard contractual clauses) to keep your data protected.

We keep enquiry information for no longer than is necessary to respond to you and, where relevant, to keep a record of our dealings — typically up to 24 months for enquiries that do not become clients. Client records are kept for the duration of our engagement and for as long afterwards as we are required to by law (for example for tax and accounting purposes), then securely deleted.

Under UK data protection law you have the right to:

• access the personal data we hold about you;
• ask us to correct inaccurate or incomplete data;
• ask us to erase your data, or restrict or object to our processing, in certain circumstances;
• request portability of data you have provided to us; and
• withdraw consent at any time where we rely on it.

To exercise any of these rights, contact us at info@dentalitservices.co.uk. We will respond within one month. You also have the right to complain to the Information Commissioner's Office (ICO) at ico.org.uk, although we would welcome the chance to resolve any concern first.

We take the security of personal data seriously and maintain appropriate technical and organisational measures to protect it against loss, misuse and unauthorised access. No method of transmission over the internet is completely secure, but we work to industry-recognised standards and continually review our controls.

We may update this policy from time to time. Any changes will be posted on this page with a revised 'Last updated' date.