Updated Feb 14, 2025

Introduction:
DataPrudence (the “Company”) is an advanced bioinformatics and data analysis provider in the life sciences sector​. We are committed to protecting the privacy and security of all data entrusted to us by our clients and users. This Data Usage Policy outlines our practices for collecting, processing, and using data to ensure compliance with relevant U.S. and EU regulations and to maintain the highest standards of data protection​. We adhere to principles of transparency, lawfulness, and user control in all data operations, in line with the EU’s General Data Protection Regulation (GDPR) and California Consumer Privacy Act (CCPA) requirements.

Data Collection and Use

We collect data only for specific, defined purposes and limit collection to what is necessary for those purposes​. Types of data we may handle include:

• Client-Provided Research Data: Data sets (e.g. genomic, clinical, or experimental data) that our clients provide for analysis. We use this data solely to perform the agreed-upon bioinformatics services and derive insights, as requested by the client. We do not use client research data for any secondary purposes (such as marketing or product development) without explicit consent. Our expert team combines this data with advanced computing and AI to accelerate research discoveries​ dataprudence.com, and all processing is done in a secure, controlled environment.
• Personal Information: Identifiable data such as contact details (name, email, organization) collected when you engage with us (e.g. by filling out a contact form, scheduling a consultation, or subscribing to updates). We also may collect limited technical information from website visitors (such as IP address, browser type, pages visited, and visit time) via cookies or analytics for security monitoring and to improve our website’s usability​. Unless stated otherwise, this usage data is statistical in nature and not used to identify individuals​. Any personal information you provide is used only for its intended purpose – for example, to respond to your inquiries, provide and improve our services, fulfill contracts, and communicate with you about our services – and we obtain consent where required. We do not sell personal information and will not use the data in ways incompatible with the purposes described without updating you and obtaining any necessary consent.

Our use of data is purpose-driven and respectful of your privacy. Data is processed lawfully and fairly, and always in line with the reasons it was collected​. We maintain transparency by providing clear information about our data practices, empowering you to make informed decisions about your data​. If we ever wish to use your data for a new purpose, we will ensure it is compatible with the original purpose or seek your permission.

Data Security and Storage

DataPrudence takes security seriously. We implement appropriate technical and organizational measures to safeguard data against unauthorized access, alteration, or loss​. All sensitive data is stored in encrypted form on secure servers or cloud platforms with robust access controls. Only authorized personnel who need to know the information to perform their duties can access client data, and they are bound by confidentiality obligations. We continuously monitor and update our security practices to address new threats and protect data integrity. We retain personal data and client-provided datasets only for as long as necessary to fulfill the purposes outlined or as required by law. When data is no longer needed, we securely delete or anonymize it in accordance with industry standards and any applicable retention policies. For example, client research data may be returned or destroyed after project completion upon request. Please note: while we strive to protect your information with strong security protocols (including encryption like SSL during data transit and secure storage)​, no method of transmission over the internet or electronic storage is 100% secure. Therefore, we cannot guarantee absolute security of data​. In the unlikely event of a data breach that affects your personal data, we will follow legal requirements to inform you and the authorities as applicable.

Data Sharing and Disclosure

We treat all client data and personal information as confidential. DataPrudence does not share your data with third parties except in the following circumstances:

• Service Providers: We may use trusted third-party service providers (such as cloud infrastructure services or computational tools) to assist in our data processing and analysis. Any third-party involved operates under our direction and is bound by strict data protection agreements. They cannot use your data for any purpose other than to provide services to DataPrudence, and they must apply adequate security measures to protect it.
• Legal Requirements: If we are compelled by law, regulation, or court order to disclose certain data, we may do so, but only to the extent required. For example, complying with a subpoena or government request might necessitate sharing information. In such cases, we will strive to inform you beforehand, unless legally prohibited.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, data may be transferred to the successor entity. If that happens, we will ensure the new owner honors the commitments made in this policy or provide notice and an opportunity to opt out of any material changes.

Importantly, we do not sell or rent personal information to third parties.​

We do not disclose client-provided research data to any external party other than as needed to perform our services (and with the client’s knowledge). Should sharing beyond these scenarios ever be beneficial (for instance, collaborating with a research partner at your request), we would only do so with your explicit consent and under appropriate confidentiality and data protection arrangements.

User Control and Your Rights

DataPrudence upholds individuals’ rights to control their personal data. We believe that transparency empowers user control​, and we facilitate meaningful choices about your information. In accordance with privacy laws like the GDPR and CCPA, you have the following rights regarding personal information we hold about you:

• Access & Portability: You can request confirmation of whether we are processing your personal data and receive a copy of that data, in a common portable format​. This helps you understand what information we have and allows you to transfer it elsewhere if needed.
• Correction: If any of your personal data is inaccurate or incomplete, you have the right to request that we correct or update it​. We strive to keep your information accurate and up-to-date.
• Deletion: You may ask us to delete your personal data, and we will erase it unless an exemption applies (for example, if we are legally required to keep certain records)​. This “right to be forgotten” ensures your data is not kept longer than necessary.
• Opt-Out of Certain Processing: You can object to or opt out of specific data processing activities. For instance, you can unsubscribe from marketing communications at any time. If we ever were to engage in selling personal information (which we do not), California residents would have the right to opt out of the sale of their personal info​. We try to honor Do-Not-Sell requests and similar opt-out signals in compliance with CCPA.
• Non-Discrimination: We will never discriminate or retaliate against anyone for exercising their privacy rights. You will receive the same quality of service and pricing even if you choose to exercise, for example, your right to access or delete your data​

To exercise any of these rights or to inquire further about your data, you can contact us through the channels provided on our website (e.g., via contact form). We may need to verify your identity for security purposes before fulfilling certain requests (especially for access or deletion). We will respond to valid requests within the timeframes required by law (generally within 60 days for GDPR, and 65 days for CCPA, with possible extensions), and will let you know if we need additional information or time.

Additionally, user control means you have choices: you may decline to provide certain personal information (though it may limit our ability to serve you, for example, if we don’t have your email we cannot respond to an inquiry). For website cookies, where applicable, we will provide options to manage your preferences in accordance with applicable cookie laws. We aim to make our data practices as transparent as possible so that you are never in the dark about how your data is being used.

Compliance and Accountability

We comply with all applicable data protection laws, including the EU’s GDPR and U.S. privacy laws such as the CCPA. The GDPR is known as one of the toughest privacy and security laws globally, imposing obligations on any organization that handles data of EU individuals. DataPrudence meets these obligations by implementing GDPR principles (like lawfulness, transparency, data minimization, and security) and enabling EU data subject rights as described above. Likewise, we adhere to the CCPA for California residents, which grants consumers rights to know, delete, and opt-out, and requires businesses to be transparent about data practices​. Where these or other laws apply, we adjust our practices to ensure full compliance. For example, if transferring personal data from the EU to the U.S., we will rely on approved legal mechanisms (such as Standard Contractual Clauses) to safeguard the data. We also follow any industry-specific regulations relevant to our work (for instance, if handling health-related data on behalf of a client, we abide by applicable confidentiality and security rules). DataPrudence maintains internal policies and training to ensure our team handles data properly and lawfully​. We conduct periodic reviews and audits of our data protection measures and update them as needed to keep up with best practices and regulatory changes​. This policy itself may be updated from time to time to reflect changes in our data practices or legal requirements. If we make significant changes, we will notify our clients/users in a transparent manner (such as via our website or email notification) and obtain consent when required. We encourage you to review this policy periodically for the latest information on our data practices.

Summary:
Your trust is paramount to us. DataPrudence uses data responsibly to deliver high-quality bioinformatics solutions, while safeguarding that data with robust security and privacy measures. We strive to be transparent in what we do with your information and give you control over it​. By using our services or website, you acknowledge that your data will be handled in accordance with this Data Usage Policy. We are dedicated to protecting your data and privacy every step of the way. If you have any questions or concerns about how DataPrudence uses your data, please contact us – we are here to help and committed to maintaining your confidence.