Last updated May 24, 2019
How Information is Collected and Used
Your healthcare provider will facilitate the collection of a blood sample and will provide the sample and your information to BillionToOne for the purpose of providing laboratory testing services (the Service). BillionToOne will process your blood sample; DNA will be extracted from the submitted sample and sequenced. BillionToOne will store your genetic sequencing and related data as required by applicable laws and regulations. All sequence data may be used for regulatory compliance or healthcare operations, and de-identified for internal quality control, validation studies, and internal research and development purposes.
BillionToOne will retain your sample (blood and/or extracted DNA) only for the maximum duration permitted under applicable law or regulation, after which point it will be destroyed. Until such time that your sample is destroyed, BillionToOne may de-identify your sample and use or store it for regulatory compliance purposes; internal quality control; laboratory validation studies; or internal research and development.
BillionToOne will not sell your information, sample, genetic data or results.
We may use your information to contact you for quality assurance purposes. You can opt out of such contact by notifying the healthcare provider who ordered your test or by contacting us directly at email@example.com.
How Information is Shared
This section describes the circumstances under which we may share your information with third parties.
To provide the Services.
- We may disclose your information to others involved in your care, including your healthcare providers, genetic counselors (the Services include complimentary access to independent genetic counselors), confirmatory laboratories, the health system or clinic where your provider practices, and other providers that you or your healthcare provider designated to receive your information. We may contact your healthcare provider to obtain additional information about the Service we provided.
- We may disclose your information to bill and collect payment for the Services from you, your health insurance, or other responsible third parties. We may also engage third parties to assist us with these billing and collection efforts.
- We may work with third party service providers to provide application development, analytics, variant analysis, payment processing, hosting, maintenance, support ticketing, transmission of test results, and other services for us. We limit the personal and health information we share with these service providers to that which is minimally necessary for them to perform their services for us, and we require them to agree to maintain the confidentiality and security of such information.
For research, development, and analytics.
- With your consent, we may share your de-identified genetic information with public databases in order to advance medical research. By contributing this information to such databases, we can help scientists better understand the impact of genetic variants on the risk of diseases and health conditions.
- We may use your de-identified sample, genetic information, and results in our research. We may engage in research with third parties like universities, hospitals, health systems, government institutions, or private companies to develop new tests, validate technologies, or improve existing technologies or processes. You can opt out of such third party research by notifying the healthcare provider who ordered your test or by contacting us directly at firstname.lastname@example.org. However, if you have consented in the past and later opt out, BillionToOne cannot retract your de-identified sample, information, and/or results from research already performed.
For BillionToOne’s purposes.
- We may author publications using de-identified information, either on our own or in collaboration with academic or commercial third parties.
- We may share aggregated, de-identified information (for example, aggregated trends about the general use of our Services) publicly and with our partners. This information will not include medical or genetic information.
- Information about our users may be disclosed and otherwise transferred to an acquirer, or successor or assignee as part of any merger, acquisition, debt financing, sale of assets, or similar transaction, as well as in the event of an insolvency, bankruptcy, or receivership in which information is transferred to one or more third parties as one of our business assets.
For security or legal purposes.
We may also disclose your information under the following circumstances:
- If we believe in good faith that doing so is appropriate or necessary in order to address fraud, security, or technical issues, or protect against harm to us or others to the extent required or permitted by law.
- To comply with applicable federal and state laws, rules, and regulations, as well as law enforcement requests and legal process, such as a court order or subpoena. When possible, we will attempt to notify the individual who is the subject of the court order or subpoena so they may have an opportunity to oppose the disclosure.
How We Protect Your InformationBillionToOne takes reasonable and appropriate measures to protect your information from accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. BillionToOne implements certain physical, administrative, and technical safeguards that are designed to protect the integrity and security of your information. BillionToOne personnel may access and use information only if they are authorized to do so and only for the purpose for which they are authorized.
We cannot however guarantee that information may not be accessed, disclosed, altered, or destroyed by a breach of any of our physical, technical, or administrative safeguards. You agree that BillionToOne is not liable for the unauthorized release of your information, unless such release was the result of gross negligence or willful misconduct on the part of BillionToOne.
BillionToOne complies with the applicable requirements of the Health Insurance Portability and Accountability Act of 1996, as amended (“HIPAA”) to maintain the privacy and security of your information. If a breach occurs that may have compromised the privacy or security of your information, we intend to comply with all federal and state reporting requirements.
Questions and Comments
BillionToOne commits to resolve questions and comments about your privacy and our collection and use of your information. Individuals with inquiries or comments should contact BillionToOne at email@example.com.