Privacy Policy

Last Updated: February 24, 2026  ·  MCAI Consulting  ·  Clinic Front AI

MCAI Consulting ("we," "us," or "our") operates Clinic Front AI, an AI-powered phone receptionist service for dental and private medical clinics. This Privacy Policy describes how we collect, use, store, and protect information when patients interact with our service via phone calls and text messages.

1. Information We Collect

When a patient calls a dental clinic that uses Clinic Front AI, we may collect the following:

• Caller phone number — provided automatically by the phone carrier
• Patient name — provided verbally during the call
• Date of birth — if provided for patient identification
• Appointment details — date, time, and type of service requested
• Call recordings and transcripts — the phone conversation may be recorded for quality assurance and service operation
• Mobile phone number for SMS — if the patient requests an appointment confirmation via text

2. How We Use Your Information

We use collected information solely for the following purposes:

• To identify patients and look up their records in the clinic's practice management system
• To schedule, reschedule, or cancel dental appointments on the patient's behalf
• To send transactional SMS confirmations for appointment actions initiated by the patient
• To provide the dental clinic with call logs and transcripts for quality assurance
• To improve the accuracy and quality of our AI receptionist service

3. SMS & Phone Number Data

We collect phone numbers for the sole purpose of sending SMS appointment notifications. This includes appointment confirmations, rescheduling notices, and cancellation notices.

• We do not share phone numbers with third parties for marketing purposes.
• We do not send marketing messages without separate, explicit consent.
• Message frequency: 1–3 messages per appointment. Message and data rates may apply.
• To stop receiving messages: reply STOP to any message.

For full SMS consent details, see our SMS Consent page.

4. Information Sharing

We do not sell, rent, or share patient information with third parties for marketing purposes. Information is shared only with:

• The dental clinic the patient called — the clinic is the patient's healthcare provider and has an existing patient relationship.
• Service providers — we use third-party infrastructure (telephony, transcription, AI processing) to operate our service. These providers process data on our behalf under confidentiality and security obligations.

We do not use patient information for advertising, profiling, or any purpose unrelated to the appointment services requested by the patient.

5. HIPAA Compliance

Clinic Front AI is designed to maintain HIPAA compliance for all patient data. We implement administrative, technical, and physical safeguards required by the HIPAA Security Rule. Call recordings, transcripts, and patient records are handled in accordance with HIPAA's Privacy Rule. Our service operates as a Business Associate for the dental clinics we serve.

6. Data Security

We implement reasonable technical and organizational measures to protect patient information, including:

• End-to-end encryption for data in transit (TLS 1.3)
• AES-256 encryption for data at rest
• Access controls limiting who can view patient data
• Per-clinic data isolation — one clinic cannot access another clinic's patient data
• Secure cloud infrastructure with industry-standard protections
• HIPAA-compliant call handling and data storage

7. Data Retention

Call recordings, transcripts, and appointment data are retained for as long as necessary to provide our service to the dental clinic and comply with applicable healthcare regulations. Dental clinics may request deletion of their data at any time. Patient data is retained in accordance with the dental clinic's own data retention policies.

8. Your Rights & Data Deletion

You have the right to:

• Request information about what data we hold about you
• Request correction of inaccurate information
• Request deletion of your information (subject to healthcare regulatory requirements)
• Opt out of receiving SMS messages by replying STOP to any message

To exercise these rights or request data deletion, contact us at Sebastian@MCAIConsulting.com or call 787-664-5040. We will respond to requests within 30 days.

9. Children's Privacy

Our service is not directed at children under 13. When a parent or guardian calls to schedule an appointment for a minor, we collect only the information necessary to complete the appointment request.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of our service after changes constitutes acceptance of the revised policy.

11. Contact Us

If you have questions about this Privacy Policy, our data practices, or would like to request data deletion, please contact:

MCAI Consulting
495 Brickell Avenue, Miami, Florida
Phone: 787-664-5040
Email: Sebastian@MCAIConsulting.com