This Privacy Notice is made in English and translated intoother languages. In the case of discrepancy, the English version shall prevail.
Statement of Policy
We treat your information with the importance it deserves.We are committed to protecting your information, handling it responsibly andsecuring it with administrative, technical, and physical measures andsafeguards. All test results and any Personal Information are maintained undera strict policy of confidentiality.
Statement of Practices
CircleDNA is a range of services offered by PreneticsLimited, a Digital Preventative Health Technology Company, combining labdiagnostics and digital technology platforms to make cutting edge scientificinformation available.
Personal data we collect
It is voluntary for you to provide any information werequest, however in the event that you do not provide such information, we maynot be able to provide you with our products or services.
1. Registration Information – when your account is set up, youwill be asked to provide your name, contact details and date of birth.
2. Payment Information – payment card details will be taken atpoint of sale to facilitate purchases. Card details are not stored by Preneticsand are managed by our third-party card processing provider.
3. Genetic or Biomarker Information– Personal Data generatedthrough the analysis of your saliva, stool or blood test.
4. Self-Reported Information – Personal Data, includingmedical conditions, sports-related information, ethnicity or family historythat you voluntarily share in surveys, forms or features while entering ourwebsite may be collected by us.
6. Gifts - If you provide us with Personal Data about others,or if others give us your information, for the purpose of ordering our serviceas a gift, we will only use that information for the specific reason for whichit was provided to us.
7. Children's privacy - We do not collect Personal Data fromminors without prior consent from a person with parental responsibility for theindividual.
Statement of Purpose
Prenetics is a genetics and diagnostic health testingcompany, with a mission to decentralize health care by focussing oncomprehensive testing capabilities covering prevention, diagnostics, andpersonalized care.
We process both Personal Data and Personal HealthInformation for the following purposes:
To provide our service to you: We process Personal Data in order to provide our service,which includes customer support, processing payments, shipping kits tocustomers, creating customer accounts and authenticating logins, analysing DNAsamples and DNA, to provide you with our reports, dependent on the servicepurchased and powering tools that benefit our customers such as allowing you toshare your Personal Data with others.
To Improve Our Products and Service: We collect information when you send, receive, or engage inmessaging with Prenetics. We do this to delegate your inquiries to the correctdepartment. We may use your Personal Data to investigate, respond to andresolve complaints and service issues.
If you interact with Prenetics via telephone, your call maybe recorded for training and monitoring purposes.
We also use analytics to determine ongoing service andresource needs and perform quality control checks to maintain best standards ofpractice. We conduct customer surveys and constantly work to improve andprovide new reports, tools, and services. We may also need to fix bugs orissues, analyse use of our website to improve the customer experience or assessour marketing campaigns.
Marketing and Advertising: With your consent we may send you direct marketingcommunications. We may also direct advertising to you via third party sitesincluding social media. We will only send marketing material to you where youhave opted in to such communications or as determined by your webbrowser/cookie settings. You can unsubscribe from receiving these marketingcommunications at any time via your account settings.
Who we share your personal data with
Except as stated below, we will only share your PersonalData with a third party when we are required by law or in good faith believethat such disclosure is necessary in such cases. Such disclosure includes butis not limited to:
We will only share your Personal Data with those categoriesof third parties listed below and under these circumstances -
Any Processors or other third-party service providers willbe required to contractually comply with the principles and objectives of anyPrenetics policies, including this Privacy Notice, and other Applicable Law andwill be required to sign a data processing agreement to confirm thatInformation will not be collected, used, shared, stored or otherwise for anyPurpose other than those instructed by Prenetics.
We may be unable to provide our products or services to youshould you wish such data sharing to not take place.
How long your personal data will be kept
Our data retention policy is to take all practicable steps toensure that the personal data collected is kept no longer than necessary tofulfil the purpose for which it is used or fulfil our contractual and legalobligations.
Prenetics implements measures and systems to ensureconfidentiality, integrity, and availability of Circle data.
Anonymisation, encryption, and data segmentation.Registration Information is stripped from Sensitive Information, includinggenetic and phenotypic data. This data is then assigned a random ID so theperson who provided the data cannot reasonably be identified. Circle usesindustry standard security measures to encrypt sensitive personal data bothwhen it is stored (data-at-rest) and when it is being transmitted(data-in-flight). Additionally, data is segmented across logical databasesystems to further prevent re-identifiability.
Limiting access to essential personnel. We limit access ofinformation to authorized personnel, based on job function and role. Circleaccess controls include a strict least-privileged authorization policy.
Detecting threats and managing vulnerabilities. Preneticsuses state of the art intrusion detection and prevention measures to stop anypotential attacks against its networks. We have integrated continuousvulnerability scanning in our build pipeline and regularly engage third partysecurity experts to conduct penetration tests.
You have the following rights: