DENTAL ONE is committed to protecting the integrity of all personal information to which it has access, preventing unauthorized use and/or access, in accordance with the provisions of Law No. 81 of March 26th-2019, of the Republic of Panama on the Protection of Personal Data and the regulations issued by the competent authorities on this matter, as well as Law No. 68 of November 20th-2003, which regulates the rights and obligations of patients regarding information and free and informed decision-making.
Our Objective: Protecting Your Data
At Dental One, we recognize the importance of the privacy and sensitivity of the information we maintain in our database; especially, personal information about the individuals with whom we interact, whether they are patients, clients, users, collaborators, candidates, suppliers, or others. As dental professionals, we have a professional, ethical, and legal obligation to maintain the confidentiality of all information we receive as part of our dentist-patient relationship. Additionally, we are committed to safeguarding the information we store and/or process from individuals.
This Data Protection Policy sets forth the practices we have implemented in our clinic regarding the handling of your data, from its collection and use to whom we share such information with.
This policy complements all prior agreements, whether verbal or written, between you and us regarding the collection, use, and disclosure of your personal, commercial, or financial information.
Who This Policy Applies To
This policy applies to us, as custodians of the database and responsible for the processing of your personal data, and to you, a natural or legal person, as the data subject. When we refer to us, we mean Dental One. When we refer to you, we mean you as a patient, client, user, visitor, collaborator, candidate, supplier, or any other person who shares their data with us.
Legal Basis of this Policy
This Policy is based on Law 81 of March 26th-2019, on the Protection of Personal Data in force in the Republic of Panama, which seeks to protect the rights of natural persons as holders of their personal data, regarding the use of this data (“Law 81”) and Executive Decree 285 of May 28th-2021, which regulates it.
Law 81 applies to all databases located within the territory of the Republic of Panama when they store personal data of nationals or foreigners, or when the data controller is domiciled in the Republic of Panama. Databases of subjects regulated by special laws are excepted, provided that these laws establish minimum technical standards for protection equal to or higher than those established by Law 81.
Guiding Principles
Loyalty: We obtain your personal data only with your knowledge and consent. Purpose: When we obtain your personal data, we inform you of the purpose and will only use it for the stated purposes.
Proportionality: We will only request the necessary personal data related to the stated purpose.
Truthfulness and Accuracy: We will always strive to ensure your data, including health information, is accurate, and we encourage you to notify us to keep it updated. Remember that updating is a shared responsibility.
Data Security: We have taken appropriate technical and organizational measures against unauthorized and unlawful processing of your data and personal information.
Transparency: We will always strive to communicate our data protection policies in easy-to-understand language.
Confidentiality: All individuals who have access to your data due to their role are obligated not to disclose it. We have internal processes, policies, and tools to support us in maintaining the confidentiality of your data.
Lawfulness: When we obtain your data, we ensure we have your consent and document it for future reference.
Portability: If required by you, we will share your personal data with you promptly in a generic and common format.
How and Why We Collect Personal Information
As a dental clinic, we collect personal data as part of our professional activities to serve our patients and comply with applicable legal regulations.
We never collect personal data without your knowledge and consent. We do not use your personal data for purposes other than those indicated. It is important to note that we do not disclose or sell your personal information or business contact information to third parties.
If you are a patient or potential patient of the clinic:
When you request a service or a quote for a service, we may collect your information and data as part of the introductory process to understand, access, and assist you with your needs, to comply with obligations under specific laws, or to ensure that information is correct and up-to-date, among other reasons. We only collect your data through legal and consensual means.
Some of the information we typically collect is:
Basic personal information and data to identify you unequivocally: full name, date of birth, nationality, passport or identification number, and, in the case of a legal entity, your role within the organization.
Contact information to communicate with you and for billing purposes: physical address, email address, telephone numbers, and, in the case of a legal entity, registered address and tax identification number.
Other information necessary to provide services to our patients.
Generally, you will have provided information and data in the course of our relationship. However, as necessary, to provide the requested services and/or comply with legal obligations, we may validate or collect information about you from our various databases or through third parties such as accessible sources, other authorities and/or state entities, and service providers.
We use your personal data only in our regular professional activities and to fulfill our obligations in the contracts or agreements signed to provide you with our services.
Due to the nature of the services we provide, we cannot define a generalized fixed period for the deletion of the personal data we hold in our custody. We will retain your personal data for as long as necessary to address any claim or matter arising from the treatment for which it was collected or to comply with specific laws or their implementing regulations.
As part of our professional relationship, we may send you information about our services, new products or services, events, and news about our clinic. You may withdraw your consent at any time by notifying us at info@dentalone.com.pa.
If you visit us at our dental clinic:
Both we and the building utilize video surveillance around and within our clinic to maintain the security of our patients, collaborators, and other visitors, as well as to protect against theft, fraud, and property damage. Therefore, when you visit our facilities, you may be recorded. All recordings are destroyed after a maximum of one year and will not be used for purposes other than those described here.
If you visit our web pages or service portals:
When you browse our web pages, we do not collect personal data through cookies or similar methods.
When entering one of our customer service portals, such as the payment portal, we also collect the information you provide at the time, which is strictly necessary to fulfill the purpose for which it was designed, for example, to transfer the payment of an invoice. In all cases, we always seek your convenience and the security of your data. In these cases, your data will be stored for the periods established by applicable laws and this policy.
If you provide us with your contact information through our contact form to communicate with us, we will pass your data to the appropriate individuals to address your message. It is not used for any other purpose. If a relationship with you is not established, your data will be discarded after a reasonable time.
If you visit our social media accounts:
By visiting our social media accounts, you will have accepted the Data Protection Policies of these networks. We do not collect your data or offer advice through social media.
If you provide us a service as a supplier or submit service quotes to us: When you are a supplier or quote services to us, we may request general information about your business, such as public registry information, contact details, commercial references, references in the APC (Public Procurement Authority), dignitaries, and any other information required to conduct due diligence and assess the risk of a contractual relationship.
We will store the personal data you provide us during our relationship for a minimum of seven (7) years after the termination of any civil, commercial, or contractual relationship. We will retain your personal data beyond this period for as long as necessary to address any claim or matter arising from the treatment for which it was collected or to comply with specific laws or their implementing regulations.
If you are an employee or candidate for employment with us:
When you apply for a position with us, we collect the information you provide in your resume/CV. Additionally, we may collect additional information, for example, through forms, interviews, or your references. We use this information to evaluate candidates to fill a job vacancy with us or another company within our economic group. If you are not hired, we keep your data for 12 months and then delete it. If you are hired by us, your information will become part of our employee database and your personnel file, for which we may request and store additional information to develop the employment relationship. Once the employment relationship ends, we retain your data in accordance with applicable specific laws.
How We Share or Transfer Your Information
In the course of our business relationship, we provide information to our personnel for reasonable business purposes and to provide services to you. Our personnel are obligated and trained to maintain the confidentiality and security of your data.
All of our personnel have signed a confidentiality agreement and receive training on confidentiality policies and protocols, data protection, and our code of ethics, among other things.
To provide some of our services, we may occasionally use external service providers or professionals who work with us, such as accounting, IT service providers, banks, and others, who may have access to your personal data. In these cases, we require these providers to comply with practices and policies that ensure the security and confidentiality of your personal data and that it is not processed for purposes other than those previously specified.
Always keep in mind that we must and will provide your data and basic information to government authorities when requested and required by law.
Information Security
The information we collect is used strictly for the purposes indicated. Our employees’ access to your information is restricted and limited only to those who have authorization and training in the proper handling of personal data information.
We have adopted and implemented physical, electronic, procedural, and practical security safeguards to ensure that your information remains confidential and secure as required by law and our internal procedures and practices.
If you have any questions about our security measures, you can contact us at
info@dentalone.com.pa.
Retention of Information
You agree that we may retain and use information about you in our records for the purposes described in this Policy, even if you cease to have a relationship with us, but subject to applicable laws.
Accuracy of Personal Information
While a service relationship exists with us, you must at all times provide and keep updated all personal information and must notify us as soon as any changes occur so that we can update our databases and ensure there are no issues in the service relationship we maintain.
Protecting Your Rights as a Data Subject
Access: You can obtain your personal data, know its origin, and the purpose for which it was collected within a period not exceeding 10 business days from the request.
Rectification: You can request the correction of your personal data if you consider it to be incorrect, irrelevant, incomplete, outdated, inaccurate, false, or impertinent. In such a case, we will proceed with the corresponding correction within five (5) business days following the request.
Erasure: You can request the deletion of your data if you consider it to be incorrect, irrelevant, incomplete, outdated, inaccurate, false, or impertinent, within the deadlines established by law.
Objection: When you consider that there are well-founded and legitimate reasons related to a particular matter, you may refuse to provide your personal data or to have it subjected to certain processing, as well as revoke your consent.
Portability: If required by you, we will share your personal data with you in a generic and common format within a period not exceeding 10 business days from the request.
Please note that to protect your rights, we may delete, cancel, modify, or block your personal data without requiring a request from you when there is evidence of inaccuracy in your data. When the accuracy of your data cannot be established or is questionable, we may block your data.
Accessing Your Information and Procedure for Exercising Your Rights
To exercise the rights detailed above, please send an email to our administration, designated as the Data Protection Officer, with the complete request and the required supporting documentation. We must respond within a period not exceeding five (5) business days.
Data Protection Officer
We have designated our administration as the Data Protection Officer, who ensures timely attention to data subjects and competent authorities pursuant to the P e r s o n a l D a t a P r o t e c t i o n L a w . T h e i r c o n t a c t i s : administracion@dentalone.com.pa.
Policy Effective Date
This Policy was updated on January 10, 2025. You agree that we may revise and change our Policy at any time to update our privacy commitment to you, based on current privacy laws and best practices.
