Last updated: December 21, 2024

Protecting your privacy is fundamental to GenoBank.io's mission. This Privacy Policy describes how we leverage Web3 technology and blockchain infrastructure to give you unprecedented control over your genomic data. GenoBank.io Inc. ("GenoBank.io", "us", "we", or "our"), a Delaware corporation, operates the GenoBank.io platform and related services (collectively, the "Service"). Your use of our Service is governed by this Privacy Policy.

By accessing or using our Service, you acknowledge that you have read, understood, and agree to this Privacy Policy. If you do not accept these terms, please do not use our Service.

Web3 Privacy Architecture

GenoBank.io implements a revolutionary Web3-based privacy architecture that fundamentally changes how genomic data is controlled and accessed:

  1. Self-Sovereign Identity: You control your data through cryptographic wallet addresses. No central authority, including GenoBank.io, can access your data without your explicit cryptographic consent.
  2. Decentralized Control: Your genomic data is never stored in a single location. Instead, it's distributed across IPFS (InterPlanetary File System) with access controlled by blockchain smart contracts.
  3. Zero-Knowledge Architecture: We implement zero-knowledge proofs where possible, allowing verification of data attributes without revealing the underlying data.
  4. Permissioned Access: All data access is recorded immutably on the blockchain, creating a transparent audit trail of who accessed your data and when.

Blockchain Data Storage

Our blockchain integration provides unprecedented security and transparency:

  1. Story Protocol Integration: We use Story Protocol (Chain ID: 1500) for intellectual property management and data licensing.
  2. Avalanche Network: Primary blockchain operations occur on Avalanche C-Chain (Chain ID: 43114) for fast, secure transactions.
  3. Immutable Audit Trails: Every data access, permission change, and transaction is permanently recorded on-chain.
  4. Smart Contract Governance: Data access rules are enforced by smart contracts, not centralized servers.

Wallet-Based Authentication

GenoBank.io uses Web3 wallet authentication exclusively:

  1. No Passwords: Authentication is handled through cryptographic signatures from your Web3 wallet (MetaMask, BioWallet, or Magic).
  2. Message Signing: You authenticate by signing the message "I want to proceed" with your private key.
  3. Non-Custodial: We never store or have access to your private keys.
  4. Multi-Wallet Support: Support for MetaMask, GenoBank BioWallet, and Magic (Google OAuth bridge to Web3).

BioNFT™ Data Rights

Our patented BioNFT™ technology (US Patents 11,984,203 B1 and 11,915,808 B1) revolutionizes genomic data ownership:

  1. True Ownership: Your genomic data is tokenized as a BioNFT™, giving you verifiable ownership on the blockchain.
  2. Monetization Rights: You can license your BioNFT™ to researchers while maintaining ownership.
  3. Revocable Permissions: Instantly revoke access to your data through smart contract interactions.
  4. Inheritance Planning: BioNFTs™ can be transferred or inherited like any digital asset.

IPFS Decentralized Storage

Your genomic files are stored on IPFS with the following protections:

  1. Content Addressing: Files are identified by their cryptographic hash, ensuring data integrity.
  2. Distributed Storage: No single point of failure or control.
  3. Encryption at Rest: All genomic data is encrypted before storage on IPFS.
  4. GenoBank Gateway: Access through our IPFS gateway (ipfs.genobank.app) requires blockchain authentication.

Data Collection and Utilization

GenoBank.io collects the following types of information:

  1. Wallet Addresses: Your Ethereum-compatible wallet address serves as your identifier.
  2. Genomic Data: VCF files, DNA sequences, and related biosample information you choose to upload.
  3. Biosample Metadata: Collection dates, laboratory information, and processing status.
  4. Blockchain Transactions: All on-chain activities are publicly visible by design.
  5. Newsletter Subscriptions: Email addresses for investor and community updates (optional).

We use your data for:

  1. Service Provision: Operating the GenoBank platform and related services.
  2. Research Facilitation: Connecting you with researchers (only with your explicit consent).
  3. Platform Improvement: Aggregated, anonymized usage statistics.
  4. Legal Compliance: As required by applicable laws and regulations.

No Cookies Policy

GenoBank.io does not use cookies for tracking. We use localStorage for:

  1. Storing your wallet address and authentication signature
  2. Maintaining session state
  3. User preferences (language, display settings)

All localStorage data can be cleared by you at any time through your browser settings.

Do Not Track Disclosure

GenoBank.io respects Do Not Track signals. When DNT is enabled:

  1. We disable all analytics tracking
  2. No third-party services receive your browsing data
  3. Only essential service functionality remains active

Service Providers and Third Parties

We work with the following service providers:

  1. Story Protocol: Blockchain infrastructure for IP management
  2. Avalanche Network: Smart contract execution
  3. IPFS Network: Decentralized file storage
  4. OpenCRAVAT: Genomic variant annotation (self-hosted)
  5. Magic: OAuth to Web3 authentication bridge
  6. Anthropic Claude: AI-powered genomic analysis (no data retention)

All service providers are bound by strict data processing agreements and cannot use your data for their own purposes.

Communications

We may contact you via:

  1. On-chain Messages: Critical updates sent to your wallet address
  2. Email: Only if you've subscribed to our newsletter
  3. Platform Notifications: Important service updates when you're logged in

You can opt out of all non-essential communications at any time.

Legal Compliance

We may disclose information when required by law, but our architecture provides strong protections:

  1. Wallet addresses are pseudonymous by default
  2. Genomic data is encrypted and distributed
  3. We cannot access data without your cryptographic consent
  4. We will notify you of any legal requests unless prohibited by law

Security Measures

Our multi-layered security approach includes:

  1. Cryptographic Security: All data encrypted with AES-256
  2. Blockchain Immutability: Tamper-proof audit trails
  3. Distributed Architecture: No single point of failure
  4. Smart Contract Audits: Regular security audits of our contracts
  5. Bug Bounty Program: Rewards for responsible disclosure

International Data Transfers

Due to our decentralized architecture:

  1. Data may be stored on IPFS nodes globally
  2. Blockchain data is replicated worldwide
  3. All data remains encrypted regardless of location
  4. You maintain control through your wallet regardless of geography

Policy Changes

When we update this policy:

  1. Changes will be posted with a new "Last Updated" date
  2. Material changes will be announced on-chain to all users
  3. Continued use constitutes acceptance of changes
  4. Previous versions remain available on IPFS

European Data Region (GDPR)

For users in the European Economic Area:

  1. Legal Basis: Consent and legitimate interests
  2. Data Rights: Access, rectification, erasure, portability, and objection
  3. Data Protection Officer: Contact dpo@genobank.io
  4. Supervisory Authority: You may lodge complaints with your local authority

US Data Region (CCPA/CPRA)

For California residents:

  1. Right to Know: Request information about data collection
  2. Right to Delete: Request deletion of personal information
  3. Right to Opt-Out: Opt out of data sales (we don't sell data)
  4. Non-Discrimination: No different treatment for exercising rights

Aviso de Privacidad para México

Para usuarios en México:

  1. Derechos ARCO disponibles
  2. Contacto: privacidad@genobank.io
  3. Datos biométricos considerados sensibles
  4. Consentimiento explícito requerido

Data Retention and Deletion

Our retention policies:

  1. Active Data: Retained while you maintain an active account
  2. Blockchain Data: Immutable by design, but access can be revoked
  3. IPFS Data: Can be unpinned upon request
  4. Right to Deletion: Request data deletion at privacy@genobank.io

Terms of Use

By using GenoBank.io, you agree to:

  1. Provide accurate information
  2. Maintain security of your wallet
  3. Use services legally and ethically
  4. Respect others' privacy and data rights

External Links

Our Service may contain links to third-party sites. We are not responsible for their privacy practices. We encourage you to review their policies.

Children's Privacy

GenoBank.io is not intended for children under 18. We do not knowingly collect data from minors. If you believe we have collected such data, please contact us immediately.

Updates to This Policy

We may update this Privacy Policy to reflect changes in technology, law, or our practices. Check the "Last Updated" date for the most current version.

Contact Information

For privacy-related questions or concerns:

  • Email: privacy@genobank.io
  • DPO: dpo@genobank.io
  • Mail: GenoBank.io Inc., 55 E Third Ave, San Mateo, CA 94401, USA
  • On-chain: Send a message to genobank.eth

Patent Notice: GenoBank.io's technology is protected by US Patents 11,984,203 B1 and 11,915,808 B1, covering our innovative BioNFT™ and genomic data management systems.

News & Updates

Get access to the latest insights, tips and trends in genetic research study