All customer analyses are identified by a personal bar-code. This code is a recurring ID for a customer´s sample, when genotyping in the lab, when processing in the department for bioinformatics and are also saved as such in the data portal.
For the sake of the Authorities demands for traceability, we keep the customer´s contact data and ID-control data in our administrator PMP-system. These information is given to us under consent. The data can be seen only by personnel with authorization.
The customer can access their personal data and are able to share them with healthcare personnel – e.g., Doctor or Pharmacy.
However, the European law do not allow gene data to be shared with Health Insurance (HI) on a detailed level. (HI) can only be given the information if a test has been requested and paid for.
A consent form can be withdrawn at all times within 48 hours. A consent form can also be changed e.g., if a customer change doctor or move to another location and want to give a new set of healthcare personnel access to the result. This can be done by sending a mail to firstname.lastname@example.org or email@example.com and our administration will take care of the confirmation.
All data are kept at a secure location with double access control, video surveillance, temperature control, fire security, processing surveillance in an internet secure environment. An internal audit of the location is taking place and is documented according to our Quality Management System.
Data are kept under the rules of “privacy by design”.