Genetic Data Policy
Last updated: 1970-01-01
RobLabs OÜ · Estonia · contact@ancestrus.com
Your DNA is extremely sensitive information. This policy explains in plain terms how we handle your genetic data.
1. Your data is yours
You are the absolute owner of your Raw Data. Ancestrus only processes it to generate your reports — we never take ownership.
2. We never sell your DNA
We never sell, rent or license your genetic data to third parties — including pharma, insurers, employers or law-enforcement databases.
3. What we store
(a) Original raw file in a private encrypted bucket. (b) Statistical fingerprint (only for family matches when you consent). (c) Ancestry composition results and generated narratives.
4. Who can access
Only you (authenticated) and platform automated processes. RobLabs OÜ staff do not access individual Raw Data files except for direct support you request, or strict legal compliance.
5. Family matches
Match computation is OPT-IN. Even when enabled, two users only see each other if BOTH have consented. You can disable any time and delete all existing matches with one click.
6. AI for narratives
We generate narratives using AI models (Google Gemini, OpenAI GPT). We send those models ONLY aggregated regional percentages — never raw SNPs, never your real name, never re-identifiable data.
7. Permanent deletion
Under 'Settings > Genetic Data' there is a 'Delete my DNA data permanently' button. It erases: original Raw Data file, fingerprint, all existing matches. Deletion is immediate and irreversible.
8. You don't upload other people's DNA
You confirm you have written consent from any person whose Raw Data you upload (e.g. spouse, child). We are not liable for unauthorized uploads.
9. Research
We do NOT use your Raw Data for scientific research without your separate explicit consent (we currently do not offer such an opt-in).
10. Breach notification
If a security incident affects your data, we notify you by email within 72 hours, as required by GDPR.