Consent Framework

Consent should be specific, visible, and revocable

DentoGraph uses consent checkpoints for record upload, AI processing, record requests, provider uploads, and sharing.

AI processing consent

Patients should know when uploaded records may be processed by AI to produce summaries, tooth findings, cost ranges, and plain-language explanations.

Record sharing consent

Patients should choose when to create a share link, who it is intended for, and when it expires. Revoking a link should stop future access.

Provider upload consent

Provider upload links should be connected to a patient request or authorization and logged for audit review.

Record request authorization

Requests sent to clinics should include patient identity, requested files, delivery method, authorization text, and timestamp.

This page describes product behavior. Final consent language requires legal review.