In plain words:
- We will never share or sell your data
- The service is designed to be anonymous (does not request your name). The most anonymous way to use this service is to upload your raw file
- Canary: We have never received a subpoena, court order or any other legal request so far. Our policy: when in doubt delete.
- We have no conflict of interest: we pay with our own money for the platform, we use our own time to develop, we do not sell anything, we are not affiliated with any organization
- This does not mean codegen is hack proof and are unlikely to withstand a complex/government sponsored attack. We assume that at one point we will get hacked and code accordingly.
- The infrastructure is AWS (US) and the devs are based in western europe.
- You can always erase your data (see 'Erase Your Data' paragraph below)
Codegen.eu believes that privacy is important to the success and use of the
Internet and a fundamental human right
. This statement sets forth Codegen.eu policy and describes the practices
that we will follow with respect to the privacy of the information of users of
this site. Should you have any questions about this policy or our practices,
please send an email to firstname.lastname@example.org
What personal information we collect
Codegen.eu collects your personal information online when you voluntarily provide
it to us. We collect the following information: your raw genome data and your
email address. The email address is collected only when you use the option to
connect to 23andMe in order to provide us with your raw genome data.
How We Use Personal Information That We Collect Online
We will use your raw genome data within Codegen.eu: (1) to provide you with
personalized information regarding your genome; and (2) to improve the service we
provide by applying machine learning algorithms to the anonymized data.
We may use your email address within Codegen.eu: (1) to inform you of recent advances or updates;
and (2) to contact you about the products and services that we offer. Currently we do not send any newsletters.
Disclosure of Personal Information to Third Parties
We use Google Analytics and embed a Facebook widget or pixel on our front page for optimizing our experience and optimizing our services.
This does NOT disclose your PII (genetic data or email) to Google or Facebook.
We will not disclose or sell any personal information to any other third party unless
we are legally required to do so, for example, in response to a subpoena, court
order or other legal process.
Canary: We have never received a subpoena, court order or any other legal request so far.
The 'Share with your doctor' feature
Be careful when using the 'Share with your doctor' feature: The person you choose to share your data with will get full access to you report for a limited time (access token).
Erase Your Data
You have the option to erase your personal information including the raw genome
data and the generated report/data, at any time.
You can always erase your genetic data. Login via SSO or re-upload your file to authenticate and click this link:
Erase and logout. Warning: This operation is irreversible.
Codegen.eu uses a single cookie containing a session id and no identifiable data.
Cookies were designed to help a website operator determine that a particular user
had visited the site previously and thus save and remember any preferences that
may have been set. Our cookies expire in 6 hours.
How We Protect Information Online
We exercise great care to protect your personal information. All traffic is
encrypted via https and your upload is retained in a well protected location (AWS West Coast datacenters or Dublin datacenters depending on your location).
While we strive to protect your personal information, we cannot ensure or warrant
the security of any information you transmit to us or receive from us. This is
especially true for information you transmit to us via email since we have no way
of protecting that information until it reaches us since email does not have the
security features that are built into our website.
If you choose not to erase your data, it will be anonymized and encrypted,
and may be used to improve the quality of our service through aggregated statistics.
From time to time, we may change this privacy statement. For example, as we update
and improve our services, new features may require modifications to the privacy
statement. Accordingly, please check back periodically.
Date: August 15th, 2016
-----BEGIN PGP PUBLIC KEY BLOCK-----
-----END PGP PUBLIC KEY BLOCK-----