Dental Website Strategies that Work Under GDPR

So far in our series, “Demystifying GDPR for Dental Practitioners” we’ve discussed many aspects of the GDP and its relation to the work of dental practices. Today we tackle the dental practice website. Nowadays any respected and well-promoted dental practice has a website providing basic information, contact forms and presenting the stuff. Under GDPR additional requirements need to be implemented into said website, mainly concerning the very controversial Cookies, that collect personal data of users that you need consent for.

Breach notification

Under the GDPR compliance, if your website experiences a data breach of any kind, your users need to be made aware of the breach. Therefore you need to monitor the security of your website.

Data collection, processing and storage

  • It is a requirement to have a good privacy policy in place. Furthermore, it has to be specific to your business, not just copy and paste from another website. 
  • You need to provide an easy method for people to request the information you hold on them (also known as Subject Access Request – SAR)
  • The users have the right to correct the information, in case there is a mistake in it
  • ‘Cookies’ are covered under the ‘ePrivacy regulation’, separate from GDPR


  • Secure servers such as SSL, HTTPS are not specifically covered by the GDPR, however, if you choose to use these host providers, you (and your visitors) can’t be certain that your data/ content is secure. 
  • The majority of referral forms on websites currently send the information via email to the practice. Therefore the data travels ‘insecurely’ over the internet from the form to your email account. To ensure the security of data a ‘secure form’ system whereupon the data is not transmitted, but merely ‘stored on the secure server’, and can only be downloaded using a specific password, is ‘best practice’.

Cookie Policy

Most websites track the people who visit them to learn more about their behaviour and preferences allowing targeting them with specific ads usually through Google AdWords. In order to fulfil the GDPR requirements, your Cookie Policy needs to be updated accordingly. It is advised that the users are given the right to consent for these and nothing should be pre-ticked beforehand.

Social Media 

 Social media sites collect all kinds of data on users and if you’re redirecting them to your channels via your website, you need to add in your Privacy Policy that once they leave your site you’re not responsible for their data. If you and your dental practice experience some issues with this, do not hesitate to contact our well-trained and experience professionals to help you!

Online Ads and New Patient Enquiry Rules

If someone responds, for example, to a landing page, filling in personal details to receive a service such as a free consultation, the person has given his/her consent for you to contact them for that specific purpose. However, an online lead from an email marketing campaign, Facebook or Twitter ad, or something similar requires you to explicitly obtain permission in some manner to contact them. An easy way is an opt-in button for permitting contact for marketing and promotional purposes.

The GDPR requires you to maintain a record of where you received the data, and a means of retrieving it should the patient or prospective client ever request the information.

Disclaimer: The content of this article is intended to provide a general guide to the subject matter, it is not legal advice and should not be treated as one. Specialist advice should be sought about your specific circumstances.

1,302 thoughts on “Dental Website Strategies that Work Under GDPR

  1. what retirement is like says:

    I’ve been surfing on-line more than 3 hours lately, yet I never found any interesting article like yours. It’s beautiful value enough for me. In my view, if all site owners and bloggers made just right content as you probably did, the internet shall be much more helpful than ever before. “Perfection of moral virtue does not wholly take away the passions, but regulates them.” by Saint Thomas Aquinas.

  2. moving assistance says:

    Hello just wanted to give you a quick heads up. The words in your post seem to be running off the screen in Internet explorer. I’m not sure if this is a format issue or something to do with internet browser compatibility but I figured I’d post to let you know. The style and design look great though! Hope you get the issue solved soon. Thanks

  3. cheap moving says:

    Thanx for the effort, keep up the good work Great work, I am going to start a small Blog Engine course work using your site I hope you enjoy blogging with the popular BlogEngine.net.Thethoughts you express are really awesome. Hope you will right some more posts.

  4. moving assistance says:

    Having read this I thought it was very informative. I appreciate you taking the time and effort to put this article together. I once again find myself spending way to much time both reading and commenting. But so what, it was still worth it!

  5. serrurier à vevey says:

    hello!,I really like your writing very much! percentage we communicate more about your post on AOL? I need a specialist on this area to unravel my problem. Maybe that is you! Having a look forward to peer you.

  6. vurtil opmer says:

    Terrific work! That is the type of information that are supposed to be shared around the net. Disgrace on the seek engines for not positioning this post upper! Come on over and talk over with my site . Thank you =)

  7. Colin Canino says:

    It’s really a nice and helpful piece of information. I am happy that you shared this helpful information with us. Please stay us up to date like this. Thanks for sharing.

  8. Bret Blackstone says:

    Heya i am for the first time here. I came across this board and I find It really useful & it helped me out a lot. I hope to give something back and help others like you aided me.