Return to Home

Legal

Privacy Policy

Last Updated: March 2026

Our Privacy Philosophy

At Enigma Genetics, privacy is not a feature — it is the foundation. We believe your biological data is the most personal information that exists, and we have built our entire infrastructure around the principle that you should control it absolutely.

This policy explains what we collect, what we do not collect, and how we protect your information using post-quantum cryptography and zero-knowledge architectures.

What We Collect

Account Information

Email address for account recovery and critical notifications. We do not require your legal name.

Encrypted Biological Data

If you upload health records or genetic data, we store only the encrypted form. We cannot read or access your biological information — only you hold the decryption keys.

Consent Records

Cryptographic hashes of your consent decisions, stored on an immutable ledger. These prove what you authorized without revealing the content.

Access Logs

Records of who accessed your data, when, and for what purpose. These logs are available to you at all times.

What We Never Collect

  • Unencrypted genetic sequences or health records

  • Your private encryption keys

  • Biometric templates or authentication data

  • Location tracking or device fingerprints

How We Protect Your Data

Client-Side Encryption

All encryption happens on your device. We only ever receive ciphertext.

Post-Quantum Cryptography

ML-KEM-1024 and ML-DSA-87 protect against future quantum computing threats.

Zero-Knowledge Architecture

Our systems are designed so we cannot access your data even if compelled.

Data Sharing

We will never sell your data. We will never share your data without your explicit, informed consent. When you do choose to share — with a doctor, researcher, or insurer — you control exactly what is shared, for how long, and can revoke access at any time.

Every sharing request shows you: who is asking, what they want, why they want it, and what happens to the data afterward. You approve or decline each request individually.

Your Rights

  • Access: View all data associated with your account at any time

  • Deletion: Request permanent deletion of your account and all associated data

  • Portability: Export your data in standard, interoperable formats

  • Revocation: Withdraw consent for any data sharing at any time

Contact

For privacy-related inquiries: privacy@enigmagenetics.com