← Back to home

Privacy Policy

Last updated: April 11, 2026

1. Who we are

SmileMatch ("we," "us") operates a web platform that may help connect patients with dental students and participating educational programs. This Privacy Policy describes how we collect, use, store, and share information when you use the Platform.

2. Information we collect

We may collect information you provide directly, such as:

  • Account identifiers (for example, email address)
  • Name and name initial (as described at registration)
  • Phone number and city or location fields you choose to provide
  • Profile and school-related details for students (for example, institution, year of study)
  • Descriptions of dental needs, cases, or requests you submit
  • Messages you send through in-platform messaging after a match
  • Technical data such as IP address, device/browser type, and logs needed to operate and secure the service

3. How we use information

We use information to:

  • Create and maintain accounts and authenticate users
  • Match patients and students and display relevant listings where permitted
  • Enable messaging between matched parties
  • Operate, secure, debug, and improve the Platform
  • Comply with law and respond to lawful requests

4. Storage and security

We use Supabase-hosted infrastructure (including PostgreSQL) with industry-standard protections. Data may be encrypted in transit and at rest depending on provider configuration. No method of transmission or storage is completely secure; we work to safeguard information but cannot guarantee absolute security.

5. Sharing

We do not sell your personal information. We may share information with service providers who process data on our behalf (for example, hosting and authentication infrastructure) under appropriate agreements. We may disclose information if required by law, to protect rights and safety, or in connection with a business transfer subject to applicable requirements.

6. Cookies and similar technologies

We use cookies and similar technologies needed to operate authentication and sessions (for example, Supabase auth cookies). We do not use third-party advertising trackers on the Platform as part of this MVP description; if that changes, we will update this Policy.

7. Retention

We retain information for as long as needed to provide the Platform, meet legal obligations, resolve disputes, and enforce our agreements. Retention periods may vary based on account activity and legal requirements.

8. Your choices and rights

Depending on your location, you may have rights to access, correct, delete, or export certain information, or to object to or restrict certain processing. You may contact us to make a request. We may need to verify your identity before fulfilling requests.

9. Children

The Platform is not intended for children under the age required by applicable law to consent to data collection without parental authorization. Do not provide information if you do not meet that age requirement.

10. Changes

We may update this Privacy Policy from time to time. We will post the updated Policy with a new "Last updated" date. Where required by law, we will provide additional notice or obtain consent.

11. Contact

For privacy questions or requests, contact us using the contact method published on the Platform. Replace this placeholder with a production support email or form after legal review.