GenomeHack
Get started free

Privacy Policy

Last updated: March 9, 2026

1. Information We Collect

When you use GenomeHack, we collect the following information:

  • Account information: Your name and email address when you create an account.
  • Genetic data: Raw DNA data files you upload from services such as 23andMe or AncestryDNA.
  • Payment information: Billing details processed securely through Stripe. We never store your full credit card number.
  • Usage data: Basic analytics such as pages visited and features used.

2. How We Use Your Data

Your data is used exclusively to:

  • Parse your raw DNA file and match specific SNPs (single nucleotide polymorphisms) against our curated database.
  • Generate personalized health, nutrition, fitness, and trait reports.
  • Process payments and manage your account.
  • Send transactional emails (report delivery, receipts).

3. What We Store

We store only the matched SNP results, not your full genome. Your complete raw DNA file is used solely for parsing and is permanently deleted within 30 days of upload. The matched SNP data retained is a small subset of your genetic information -- typically a few hundred data points out of hundreds of thousands.

4. Data Security

We take the security of your genetic data seriously. All data is encrypted in transit using TLS and at rest using AES-256 encryption. Access to genetic data is restricted to automated processing systems -- no human reads your raw DNA file. Our infrastructure is hosted on secure, SOC 2 compliant cloud providers.

5. We Never Sell Your Data

Your genetic data is yours. We will never sell, license, or share your genetic information with third parties for research, marketing, or any other purpose. Period.

6. Your Rights

You have the right to:

  • Access all personal and genetic data we hold about you.
  • Download your reports and matched SNP data at any time.
  • Delete your account and all associated data permanently. Deletion requests are processed within 30 days.
  • Rectify inaccurate personal information.
  • Withdraw consent for data processing at any time.

7. GDPR Considerations

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR). Genetic data is classified as a special category of personal data, and we process it only with your explicit consent. You may exercise your rights by contacting us at privacy@genomehack.io. We will respond within 30 days.

8. Data Retention

  • Raw DNA files: Deleted within 30 days of upload.
  • Matched SNP data: Retained as long as your account is active. Deleted upon account deletion.
  • Account data: Retained until you delete your account.
  • Payment records: Retained as required by applicable tax and financial regulations.

9. Cookies

We use essential cookies for authentication and session management. We do not use third-party advertising or tracking cookies.

10. Changes to This Policy

We may update this privacy policy from time to time. We will notify you of significant changes via email or a notice on our website.

11. Contact Us

If you have questions about this privacy policy or your data, contact us at privacy@genomehack.io.

← Back to home