Legal

Privacy Policy

Last updated: May 2026 · This is a prototype policy for beta use. A verified legal policy will replace this before general availability.

Overview

TreatPath is a desktop software application designed for dental practices. This Privacy Policy describes how TreatPath handles data collected through our website (gettreatpath.com) and our software application.

TreatPath is built on a local-first architecture. Patient treatment plan data is stored entirely on your office computer and never transmitted to TreatPath servers. We do not have access to patient records, signed plans, or any clinical data stored by the application.

Information we collect on this website

When you visit gettreatpath.com, we may collect:

Email addresses submitted through our waitlist or contact forms
Basic analytics data such as page views and browser type via standard web analytics tools
Information you voluntarily provide when contacting us

We do not sell, rent, or share your contact information with third parties for marketing purposes.

How the TreatPath application handles data

The TreatPath desktop application stores all data locally on the office computer on which it is installed. This includes:

Patient names and dates of birth used as plan identifiers
Treatment plan procedures, costs, and tier assignments
Insurance coverage information entered by staff
Patient signatures captured on the iPad
Signed plan records and dashboard history

None of this data is transmitted to TreatPath or stored on any TreatPath server. Your practice retains full ownership and control of all patient data at all times.

AI processing and third-party services

TreatPath uses Anthropic's Claude API to process screenshot images for OCR (optical character recognition). When you use the screen capture feature, the captured image is transmitted to Anthropic's servers for processing and the extracted text is returned to your application.

This is the only instance in which any data leaves your local network. The image may contain procedure codes and fee information visible in your practice management software. Anthropic's data use policy governs how this data is handled on their end. Per Anthropic's policy, API data is not used to train their models.

We recommend ensuring no patient-identifying information (names, dates of birth) is visible in the captured screenshot.

HIPAA considerations

TreatPath's local-first architecture is designed with HIPAA-conscious practices in mind. Because patient data remains on your office computer and is never transmitted to TreatPath servers, many of the compliance risks associated with cloud-based software are avoided.

Practices with formal HIPAA compliance requirements should review our data handling documentation with their compliance officer. Business Associate Agreements (BAA) are available for Enterprise customers upon request.

Data retention

TreatPath does not retain any patient data on its servers because no patient data is ever transmitted to TreatPath. Email addresses collected through our waitlist are retained until you request removal. To request deletion of your email from our waitlist, contact us at ethan.chotiner08@gmail.com.

Changes to this policy

This is a prototype privacy policy for beta use. A legally verified privacy policy will replace this document before TreatPath becomes generally available. We will notify beta partners of any material changes.

Contact

For any questions about this privacy policy or how TreatPath handles data, contact us at ethan.chotiner08@gmail.com.