Privacy & Security


Dante Labs’ commitment to your privacy

At Dante Labs, your trust means everything to us. That’s why we respect your privacy and protect it with strong encryption and strict policies that govern how all data is handled.

Security and privacy are so fundamental that we have created a sophisticate cloud-hosted databases architecture able to protect our customers’ information.

Keeping genomic data safe on the cloud

Security and privacy are essential when dealing with genomic data. We have designed and implemented a comprehensive security framework for keeping this data safe. Our technology to ensures compliance with current data protection standards (such as HIPAA regulations in the US and the European Data Protection Directive in the EU), and also offers concrete implementation improvements not required by law but best practices in the industry.

Compliance and additional security measures

We are compliant with standards relevant to performing Next Generation Sequencing (NGS) and Sanger Sequencing in the cloud. We are compliant with both HIPAA regulations, the EU Data Protection Directive program and the EU-US Privacy Shield.

Privacy Shield Deep Dive
At Dante Labs, we comply with each of the Privacy Shield Principles:

  • Notice: The Notice principle requires notice of what personal data we collect and how we use it. We provide notice to our users via a Privacy Policy, available at http://www.dantelabs.com/pages/privacy-policy. 
  • Choice: The Choice principle requires us to allow data subjects to opt out of use or transfer of their data that is inconsistent with the purpose for which it was collected. We comply with this Principle by providing users with fine-grained controls on how their data is shared with other users and by only using user information to provide and improve our service. 
  • Onward Transfer: The Onward Transfer principle requires us to abide by the Notice and Choice principles when transferring data to third parties, and to ensure that these parties themselves have adequate privacy protections. We comply with this principle by only providing data to third parties for the purpose of providing and improving our service, by noting in our Privacy Policy when data may be provided to third parties, and by vetting third parties’ privacy and security protections before entrusting them with data. 
  • Security: The Security principle requires us to implement procedures and technical protections to ensure data is kept secure. We comply with this principle through the measures described in this Web Page. 
  • Data Integrity: The Data Integrity principles requires us to ensure that the data we keep is relevant, accurate, current, and generally adequate for the purposes for which it was collected. We comply with this principle by keeping the data we collect on users to the minimum necessary to provide and improve our service. 
  • Access: The Access principle requires us to provide data subjects with reasonable access to the data we have collected. In our Privacy Policy, we describe how users can access the data they have submitted to us. 
  • Enforcement: While the Privacy Shield Framework encourages data subjects to resolve disputes directly with participating companies, it recognizes that sometimes a third party needs to step in. This principle requires us to arrange for such a third party to provide an independent dispute resolution mechanism for privacy complaints. To meet this requirement, we have turned to EU data protection authorities (DPAs). 

For further information about the UE-US Privacy Shield, please do not hesitate to click here.