Privacy & Security
Dante Labs’ commitment to your privacy
At Dante Labs, your trust means everything to us. That’s why we respect your privacy and protect it with strong encryption and strict policies that govern how all data is handled.
Security and privacy are so fundamental that we have created a sophisticate cloud-hosted databases architecture able to protect our customers’ information.
Keeping genomic data safe on the cloud
Security and privacy are essential when dealing with genomic data. We have designed and implemented a comprehensive security framework for keeping this data safe. Our technology to ensures compliance with current data protection standards (such as HIPAA regulations in the US and the European Data Protection Directive in the EU), and also offers concrete implementation improvements not required by law but best practices in the industry.
Compliance and additional security measures
We are compliant with standards relevant to performing Next Generation Sequencing (NGS) and Sanger Sequencing in the cloud. We are compliant with both HIPAA regulations, the EU Data Protection Directive program and the EU-US Privacy Shield.
Privacy Shield Deep Dive
At Dante Labs, we comply with each of the Privacy Shield Principles:
- Choice: The Choice principle requires us to allow data subjects to opt out of use or transfer of their data that is inconsistent with the purpose for which it was collected. We comply with this Principle by providing users with fine-grained controls on how their data is shared with other users and by only using user information to provide and improve our service.
- Security: The Security principle requires us to implement procedures and technical protections to ensure data is kept secure. We comply with this principle through the measures described in this Web Page.
- Data Integrity: The Data Integrity principles requires us to ensure that the data we keep is relevant, accurate, current, and generally adequate for the purposes for which it was collected. We comply with this principle by keeping the data we collect on users to the minimum necessary to provide and improve our service.
- Enforcement: While the Privacy Shield Framework encourages data subjects to resolve disputes directly with participating companies, it recognizes that sometimes a third party needs to step in. This principle requires us to arrange for such a third party to provide an independent dispute resolution mechanism for privacy complaints. To meet this requirement, we have turned to EU data protection authorities (DPAs).
For further information about the UE-US Privacy Shield, please do not hesitate to click here.