Our Commitment to Your Privacy

Tooth to Tooth Mobile Dental Hygiene Clinic ("we", "us", "our") is committed to protecting your personal information in accordance with Quebec's Law 25 (Act to modernize legislative provisions as regards the protection of personal information), PIPEDA, and PHIPA. This page explains how we collect, use, store, and protect your data.

Privacy Officer

As required by Law 25, we have designated a Privacy Officer responsible for ensuring compliance with privacy legislation:

Joy Maderazo, RDH

Privacy Officer & Owner

Email: toothtotooth.mobile@gmail.com

Phone: (514) 431-1999

Information We Collect

Contact & Appointment Information

Full name
Email address
Telephone number
Postal address (for mobile services)
Preferred appointment dates and times
Service preferences
Communication language preference (English/French)

Health Information (Protected)

When you complete our patient intake form, we collect:

Date of birth
Medical history and current health conditions
Current medications and allergies
Dental history and concerns
Emergency contact information
Primary physician contact (optional)

Health information is encrypted using AES-256 encryption before transmission and storage.

Technical Information

IP address (for security and fraud prevention)
Browser type and device information
Cookie consent preferences

How We Use Your Information

We use your personal information solely for the following purposes:

Service Delivery: To schedule and provide dental hygiene services
Communication: To confirm appointments, send reminders, and respond to inquiries
Health & Safety: To provide safe and appropriate dental care based on your medical history
Legal Compliance: To maintain records as required by Quebec health regulations
Security: To prevent fraud and protect our website from abuse

We do not: Sell your data, use it for marketing purposes, or share it with third parties for advertising.

Your Consent

In accordance with Law 25, we obtain your consent before collecting personal information:

Booking Forms: By submitting a booking request, you consent to our collection and use of your contact information for appointment scheduling
Health Information: Our patient intake form requires explicit consent via checkbox before submission
Cookies: Our cookie banner allows you to accept or reject non-essential cookies
Minors: For patients under 14 years of age, consent must be provided by a parent or guardian

You may withdraw your consent at any time by contacting our Privacy Officer. Note that withdrawing consent may affect our ability to provide services.

Data Security Measures

We implement robust security measures to protect your information:

Encryption: Health information is encrypted using AES-256-GCM encryption
Secure Transmission: All data is transmitted over TLS 1.3 encrypted connections
Access Controls: Only authorized personnel can access patient records
Audit Logging: All access to sensitive data is logged and monitored
CAPTCHA Protection: Forms are protected against automated abuse
Rate Limiting: Systems prevent excessive access attempts
SOC 2 Compliant Infrastructure: Our hosting provider (Cloudflare) maintains SOC 2 Type II certification

Data Retention

We retain your information for the following periods:

Health Records: 7 years from the date of last treatment, as required by Quebec health regulations
Appointment Records: 7 years for administrative and legal purposes
Contact Inquiries: Until resolved, then archived for up to 2 years
Technical Logs: 90 days for security purposes

After the retention period, data is securely deleted or anonymized.

Third-Party Service Providers

We use the following third-party services to operate our website. These providers are bound by data protection agreements:

Service	Purpose	Data Shared
Cloudflare	Website hosting & security	Encrypted data storage, IP addresses
Cloudflare Turnstile	Bot protection (CAPTCHA)	Interaction patterns (no personal data)
Resend	Email delivery	Email address, name, appointment details

All service providers comply with GDPR and/or SOC 2 security standards. We do not share health information with third parties except as required by law.

Your Rights Under Law 25

As a Quebec resident, you have the following rights:

Right to Access: Request a copy of your personal information we hold
Right to Rectification: Request correction of inaccurate information
Right to Deletion: Request deletion of your data (subject to legal retention requirements)
Right to Data Portability: Receive your data in a structured, commonly used format
Right to Withdraw Consent: Withdraw previously given consent
Right to Object: Object to automated decision-making
Right to Complain: File a complaint with the Commission d'accès à l'information du Québec

To exercise any of these rights, please contact our Privacy Officer. We will respond within 30 days.

Data Breach Notification

In the event of a data breach that poses a risk of serious harm, we will:

Notify affected individuals promptly
Report the breach to the Commission d'accès à l'information du Québec
Take immediate steps to mitigate any harm
Document the breach and our response

Cookies & Tracking

Our website uses minimal cookies:

Essential: Cookie consent preference (stored locally in your browser)
Security: Cloudflare security cookies for DDoS protection

We do not use: Advertising cookies, tracking pixels, or third-party analytics. You can reject non-essential cookies via our cookie banner.

Contact Us

For privacy-related questions, requests, or complaints, please contact:

Joy Maderazo, RDH - Privacy Officer

Tooth to Tooth Mobile Dental Hygiene Clinic

6600 Transcanadienne, Suite 510

Pointe-Claire, QC H9R 2S2