DNAi Privacy Policy
Last Updated: October 20241. Introduction
DNAi ("we," "us," or "our") respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data when you use our app and the choices you have associated with that data.
By accessing or using our App, you agree to the terms of this Privacy Policy. If you disagree, discontinue use immediately.
2. Information We Collect
2.1 Directly Provided Information
Account & Identity: Email address, username, digital signatures.
Genomic & Health Data: Whole Genome Sequencing (WGS), Single Nucleotide Polymorphism (SNP) data, electronic health records (EHR), and physical movement data (e.g., GPS location for activity verification).
Digital Payment Information: Credit/debit card details (processed by third-party providers).
2.2 Automatically Collected Information
Technical Data: IP address, device identifiers, browser type, operating system, network logs.
Usage Data: Service interactions (e.g., API calls, data transactions).
2.3 Third-Party Sources
Partners: Anonymized datasets from medical or research institutions.
Social Media: Social media networking sites of any kind or nature.
2.4 Sensitive Information
We may collect:
Health/Genomic Data: For research and personalized reports (with explicit consent, such as HealthKit data).
Biometric Data: For fraud prevention (e.g., verifying physical activity, verifying facial data).
3. Purposes of Data Use
Your information is used to:
Deliver Services: t Provide and maintain the app, allow you to participate in interactive features of our app when you choose to do so, provide customer care and support.
Research & Development: Analyze anonymized data via zero-knowledge machine learning (zkML).
Fraud Prevention: Detect cheating, stolen accounts, or suspicious activity using location and behavioral data.
Marketing: Send updates, promotions, and research insights (opt-out available).
Compliance: Meet legal obligations under GDPR, HIPAA, AML/CTF Act 2006 (Cth), and other regulations.
4. Data Sharing & Disclosure
We share information only when necessary:
Research Partners: Anonymized datasets for medical research.
Service Providers: Payment processors, cloud storage, auditors.
Legal Requirements: Respond to court orders, government requests, or protect user safety.
All third parties sign data protection agreements compliant with GDPR, HIPAA, and other standards.
5. Data Storage & Security
Technical Safeguards: AES-256 encryption for health data; zero-knowledge proofs (zkML) for anonymous analysis.
Organizational Measures: Restricted employee access, regular security audits, and bug bounty programs.
Retention: Data is retained only as long as necessary and securely deleted afterward.
6. International Data Transfers
Data may be stored or processed globally. Transfers comply with GDPR Article 46 mechanisms (e.g., Standard Contractual Clauses).
7. User Rights
You have the right to:
Access/Correct Data: Review or update information via your account dashboard.
Delete Data: Request removal of non-blockchain records.
Withdraw Consent: Revoke data access via ERC-5484 protocol.
Object to Processing: Opt-out of marketing or specific data uses.
To exercise rights, contact: support@dnai.network.
8. Children’s Privacy
Our Services are not intended for users under 18. We delete inadvertently collected child data.
9. Compliance Statements
GDPR: EU/UK users may contact our Data Protection Officer (DPO) at support@dnai.network.
HIPAA: Health data is encrypted and access-controlled.
CCPA: California residents may request data collection details.
10. Policy Updates
Changes will be notified via email or platform announcements. Significant updates include a 30-day review period.
11. Contact Us
For questions or complaints:
General Inquiries: support@dnai.network
Legal Team: support@dnai.network
Data Protection Officer: support@dnai.network