Skip to content
Legal

Privacy Policy

Compliant with Moldovan Law No. 133/2011 on personal data protection and EU Regulation 2016/679 (GDPR).

Last updated: 16 May 2026

This translation is provided for information only. In case of any discrepancy, the Romanian version prevails. Text pending legal review.

1. Who we are

The controller of your personal data is Avicenna Dental Clinic SRL, registered at Calea Liceului 12, Magdacești, Criuleni, MD-4829, Republic of Moldova. You can reach us at programari@avicennadental.md or +373 693 11 163.

2. What data we collect

  • Identification data: first name, last name, date of birth, gender (if provided).
  • Contact data: phone, email, address (if provided).
  • Dental medical data: medical history, allergies, medications, radiographs, treatment plans and outcomes. This data is strictly necessary for medical care and kept as required by law.
  • Payment data: invoices, amounts paid, payment method. We do not store card numbers — card payments are processed directly by the banking processor.
  • Technical data (site): IP address, device and browser type, pages visited, traffic source. We use Google Analytics 4 with IP anonymization.

3. Why we use your data

  • To deliver the dental services requested.
  • To schedule and confirm your visits (phone, SMS, email, WhatsApp).
  • To meet legal obligations (medical records, invoicing, fiscal record-keeping).
  • To improve our services and website — based on aggregated analytics.
  • For marketing communications — ONLY with your explicit consent, revocable at any time.

4. Legal basis

Under GDPR and Law 133:

  • Performance of a contract for medical services (Art. 6.1.b GDPR).
  • Legal obligation — retention of medical documentation under the Health Protection Law (Art. 6.1.c GDPR).
  • Your explicit consent for special category data (health) — Art. 9.2.a GDPR.
  • Legitimate interest for anonymized website analytics (Art. 6.1.f GDPR).

5. Who we share data with

Your data is NOT sold or shared with third parties for marketing. We only share it with:

  • Dental laboratories — for the manufacture of prosthetic work (impressions only, with no personal identification).
  • External specialist doctors — ONLY with your consent, for referrals to additional consultations.
  • Payment processors — Maib, Victoriabank (for card payments).
  • IT providers — Google (Gmail, Analytics, Calendar) under a Data Processing Agreement (DPA) and extra-EU transfer under Standard Contractual Clauses.
  • Public authorities — ONLY upon an official legal request.

6. How long we keep data

  • Medical record: 30 years, per medical legislation.
  • Contact data: 3 years after your last visit, then automatically deleted.
  • Billing data: 10 years, per fiscal legislation.
  • Site analytics data (anonymous): 14 months.
  • Cookies: per the cookie policy — see /politica-cookies/.

7. Your rights

Under GDPR and Law 133, you have the following rights:

  • Access: learn what data we hold about you.
  • Rectification: correct inaccurate data.
  • Erasure ("right to be forgotten"): within the limits of legal obligations.
  • Restriction of processing: temporarily stop processing of certain data.
  • Portability: receive a copy of your data in a structured format.
  • Objection: to processing based on legitimate interest.
  • Withdrawal of consent: at any time, without affecting our services.

To exercise any right, email dpo@avicennadental.md. We respond within 30 days.

8. Data security

We apply reasonable technical and organizational measures: HTTPS, strong passwords, role-based access, encrypted backups, regular staff training. Digital medical data is stored on servers located in the EU.

9. Complaints

If you believe we have violated your rights, you may file a complaint with the National Center for Personal Data Protection of the Republic of Moldova (www.datepersonale.md).

10. Changes to this policy

We may update this policy periodically. Material changes will be announced on the site at least 30 days before they take effect.