Privacy Policy

Your DNA. Your Rules.

We built Helix Sequencing so your genetic data never has to exist on anyone else’s servers longer than it takes to generate your report.

Last updated: March 28, 2026

The short version: We delete your DNA file immediately after analysis completes. We do not store, sell, or share your genetic data. You receive a cryptographic certificate proving deletion. Period.

What We Collect

Only what is necessary to deliver your report:

  • Email address — to send your report and deletion certificate
  • DNA genotype file — temporarily, for analysis only
  • Medical history (if provided) — used only during AI analysis, then deleted
  • Beta access code — to manage access during beta period

Zero Data Retention

This is not marketing language. This is how the system is architecturally built:

Instant
DNA file deleted
< 2 hrs
All temp files purged
On send
Report removed
SHA-256
Deletion certified
  • Your uploaded DNA file is deleted immediately after analysis completes
  • All intermediate files are deleted within 2 hours
  • Your report is emailed to you, then deleted from our servers
  • You receive a Data Deletion Certificate with SHA-256 cryptographic attestation
  • Audit log records only: certificate ID, job ID, timestamp, hash. No genetic data logged.

Optional: Help Improve Accuracy

During upload, you can opt in to help improve our accuracy. If enabled:

  • Your anonymized VCF and PRS scores are retained securely for model calibration
  • Your email is never linked to retained genetic data
  • No deletion certificate is issued (because data is retained with your consent)
  • You can request deletion of retained data at any time via email

This is entirely optional. Default behavior is full deletion with certificate.

What We Do NOT Do

×We do not sell your genetic data to pharmaceutical companies, insurers, or any third party
×We do not build genetic databases from user uploads
×We do not retain your DNA file after analysis
×We do not use your data for research without explicit consent
×We do not use tracking cookies beyond anonymized page views
×We do not require account creation

Third-Party Services

  • Hosted AI model providers — AI models for health narratives. Variant summaries, not raw DNA files, may be processed by the active provider disclosed during the beta.
  • Resend — Email delivery only. See their privacy policy.

Data Processing

All analysis runs on a single dedicated server. Your DNA file is uploaded via HTTPS (TLS 1.3), processed in memory, and deleted. Data leaves the server only for:

  • Variant summaries sent to hosted AI model APIs for narrative generation
  • Your completed report emailed to you via Resend

Your Rights

Because we practice zero data retention, most data rights are satisfied automatically:

  • Right to deletion — Already done. Data deleted within 2 hours.
  • Right to access — Report emailed to you. We don’t retain a copy.
  • Right to portability — Report includes raw PRS scores in JSON.
  • Right to object — No ongoing processing after delivery.

Public Deletion Log

Every deletion is logged publicly with a cryptographic hash. No genetic data or emails are included — only certificate IDs, timestamps, and SHA-256 attestation hashes. This proves we actually delete what we say we delete.

Loading deletion log...

Contact

For privacy questions: [email protected]