DNA strand representing concerns over genetic privacy and 23andMe data security

Disclaimer: This article is for informational purposes only and is not intended for diagnostic use. LifeDNA does not provide diagnostic reports on any traits discussed. Genetics is just one piece of the puzzle; please consult a healthcare professional for comprehensive guidance on any health condition.

Recent headlines have left many people wondering: What happens to my genetic data now? Who has access to it? Is it still safe?

If you’ve previously tested your DNA, it’s completely valid to feel concerned about the future of your most personal information.

In this article we will explore the steps you can take with your 23andMe data and something about maximizing its potential etc..

23andMe users who wish to delete and protect their DNA information can take several actionable steps to remove their data from the company’s systems and mitigate risks. 

Here’s a clear guide based on the current situation:

How to Delete Your DNA Information from 23andMe

  1. Log Into Your Account
    Visit the 23andMe website and sign in with your email and password. This is the first step to access your account settings.
  2. Navigate to Settings
    Once logged in, click on your profile name or photo in the top right corner, then select “Settings” from the dropdown menu.
  3. Access 23andMe Data
    Scroll down to the “23andMe Data” section and click “View” to see your data management options.
  4. Download Your Data (Optional)
    Before deleting, you can download your genetic data for personal records. Under “23andMe Data,” select the option to download your raw genotyping data, ancestry composition, or other reports. You’ll receive an email with a link to download a ZIP file (usually in .txt format). Store this securely if you choose to keep it, as it’s sensitive information.
  5. Delete Your Data
    In the same “23andMe Data” section, scroll to “Delete Data” and click “Permanently Delete Data.” You may need to enter your date of birth for verification. After initiating this, 23andMe will send you a confirmation email.
  6. Confirm Deletion
    Open the email from 23andMe (check your spam folder if it doesn’t appear promptly) and click the link or button (e.g., “Permanently Delete All Records”) to finalize the deletion. This step is critical—your data won’t be removed until you confirm.
  7. Request Sample Destruction
    If you previously opted to have 23andMe store your saliva sample, you can request its destruction. Go to “Settings,” then “Preferences,” and update your preference to discard the sample. This ensures no physical DNA remains with the company.
  8. Revoke Research Consent
    If you consented to your data being used for research, withdraw this permission to prevent future use. In “Settings,” go to “Research and Product Consents,” and opt out. This stops your data from being included in new studies, though past research use can’t be undone.

What Happens After Deletion?

  • Timeline: Deletion begins immediately upon confirmation and may take up to 30 days to fully process.
  • Data Retention: 23andMe retains some information (e.g., genetic data, birth date, and sex) for legal compliance under federal (CLIA) and California regulations, even after deletion. This retained data is typically de-identified and not linked to your account.
  • Research Data: If you previously opted into research, data already used in completed studies cannot be retrieved, but it won’t be used moving forward.
  • Sample: If requested, your saliva sample will be discarded.

Protecting Your DNA Information

  • Act Quickly: With the company in Chapter 11 proceedings, deleting your data now reduces the chance of it being transferred to a buyer with different privacy standards. 
  • Secure Downloaded Data: If you download your raw DNA file, store it offline (e.g., on an encrypted USB drive) rather than in cloud services, which could be hacked. Avoid uploading it to other genetic sites unless you trust their privacy policies.
  • Monitor for Breaches: The 2023 breach exposed nearly 7 million users’ data. Sign up for identity theft protection or credit monitoring services to catch misuse, as genetic data can’t be changed like a password.
  • Leverage Legal Rights: In California, the Genetic Information Privacy Act (GIPA) and California Consumer Privacy Act (CCPA) give you the right to delete your data and have samples destroyed. Other states may lack similar protections, but all users can still request deletion via 23andMe’s process.
  • Be Cautious with Future Services: If considering other DNA upload siteslike LifeDNA, review their privacy policies. Look for encryption, no history of breaches, and clear data ownership terms.

Are you or do you want to become a LifeDNA Customer?

LifeDNA offers personalized wellness insights with a strong emphasis on data security. LifeDNA focuses on actionable well-being optimizationsin nutrition, fitness, and skincare, derived from raw DNA data uploaded from providers like 23andMe, AncestryDNA, and others. This compatibility allows users to repurpose existing genetic data without submitting new samples, a practical option for those wary of further exposure.

LifeDNA and Data Privacy

LifeDNA distinguishes itself with a proactive stance on privacy. The company boasts partners with CLIA-certified, CAP-accredited, and HIPAA-compliant laboratories, aligning its practices with rigorous standards despite not being bound by HIPAA. Its encrypted servers and SSL-protected transactions reflect a commitment to safeguarding user information.. Additionally, LifeDNA’s investment in research and educational resources empowers users to understand their genetics, fostering trust through transparency.

For those seeking to explore their DNA even further, LifeDNA offers a model that balances utility with security.

Additional Resources

References