Privacy and Security Policy
Effective Date: April 2025
Last Updated: November 11, 2025
GenetDx respects the privacy of all patients, healthcare providers, and website users. This policy explains how we collect, use, store, and protect information in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and Clinical Laboratory Improvement Amendments (CLIA) requirements.
1. Information We Collect
We may collect:
- Personal identifiers such as name, contact information, and date of birth.
- Health and medical information required for genetic testing and analysis.
- Test requisition forms, medical histories, and related clinical details submitted by your healthcare provider.
- Basic website-usage data (cookies, browser type, pages visited) for site improvement only.
2. How We Use Your Information
Your information is used solely to:
- Perform clinical and genetic laboratory testing.
- Communicate results with your authorized healthcare provider.
- Maintain quality assurance and regulatory compliance under CLIA and HIPAA.
- Improve our services and ensure laboratory accuracy.
We do not sell or share your personal or genetic information for marketing or advertising.
3. How We Protect Your Information
GenetDx employs administrative, technical, and physical safeguards, including:
- Encryption of data in transit and at rest.
- HIPAA-compliant secure servers and data centers.
- Role-based access control for authorized personnel.
- Routine security audits and integrity checks.
- Mandatory confidentiality training for all staff who handle patient data.
4. Patient Rights Under HIPAA
You have the right to:
- Access and obtain copies of your laboratory report.
- Request corrections to inaccurate information.
- Receive a record of disclosures of your health information.
- File a complaint if you believe your privacy rights have been violated.
Requests should be directed to:
Privacy Officer — GenetDx
747 SW 2nd Avenue, Suite 227, Gainesville, FL 32601, USA
Email: privacy@genetdx.com
5. Data Sharing and Retention
We share test information only with:
- Authorized ordering providers and healthcare professionals.
- Accrediting or regulatory agencies (CLIA, CAP, CMS, or other authorities) as required by law.
Records are retained according to CLIA and state requirements, typically for at least two years after testing unless a longer retention period is mandated.
6. Cookies and Analytics
Our website uses cookies and analytics tools for performance monitoring. No genetic or health data are collected through cookies. You may disable cookies in your browser.
7. Changes to This Policy
We may update this policy periodically. The effective date will always be displayed at the top of this page.
8. Contact
GenetDx Privacy Officer
747 SW 2nd Avenue, Suite 227, Gainesville, FL 32601, USA
Email: privacy@genetdx.com