Compliance
HIPAA Position
OccluTrace is intended for de-identified 3D dental mesh workflows. The standard service is not designed to receive protected health information, and we do not offer Business Associate Agreements.
Position
Dental Cloud Technologies LLC is not a HIPAA Covered Entity. The standard OccluTrace service does not provide treatment, process insurance claims, transmit HIPAA standard transactions, operate as a health plan, or serve as a healthcare clearinghouse.
We do not offer Business Associate Agreements. If your workflow requires a vendor to create, receive, maintain, or transmit protected health information on behalf of a covered entity, do not use OccluTrace for that workflow.
Intended Data
| Accepted | Not accepted | Why |
|---|---|---|
| De-identified STL, OBJ, or PLY surface mesh files. | Patient-identifying records, images, notes, or metadata. | The product aligns geometry. It does not need patient identifiers to work. |
| Anonymous case labels created by your lab or clinic. | Patient names, chart numbers, dates of birth, or direct identifiers. | Anonymous labels let teams track work without sending PHI. |
| Mesh geometry, optional mesh color/texture, job status, exports. | Radiographs, intraoral photographs, treatment plans, insurance files. | Those records are outside the standard OccluTrace workflow. |
De-identification Before Upload
- Use anonymous case numbers or lab work-order IDs.
- Remove patient names and identifiers from filenames before upload.
- Strip scanner metadata if your scanner embeds operator, clinic, or patient details.
- Do not paste patient information into case names, notes, support tickets, or email.
- Keep your own mapping between anonymous case labels and patient records outside OccluTrace.
Service Provider Categories
Like most SaaS products, OccluTrace uses service providers for hosting, private file storage, mesh processing, transactional email, billing, authentication, security monitoring, product analytics, and error monitoring. Public pages disclose categories rather than a provider-by-provider infrastructure map.
We maintain a provider-level list for enterprise compliance review. A provider-level list can be requested under appropriate confidentiality or contractual terms.
Accidental Upload
If you believe protected health information was uploaded, stop using the affected case, delete it from your dashboard if possible, and contact [email protected] with the case ID so we can assist with removal from active systems.
No Legal Advice
This page is a product-position statement, not legal or compliance advice. Consult your organization’s privacy officer or legal counsel before using any software in a HIPAA regulated workflow.