Privacy policy

Last update: 2025-08-24.

Genomic Vault by Switzerland Omics

Switzerland Omics (“we”, “our”, “us”) operates Genomic Vault, a service for secure storage and controlled sharing of genomic and related data. We are committed to protecting your privacy and ensuring compliance with applicable data protection laws, including the Swiss Federal Act on Data Protection (FADP) and the European Union General Data Protection Regulation (GDPR).

1. Controller and contact

Controller: Switzerland Omics AG [or Sàrl, legal form to be confirmed]
Contact: legal@switzerlandomics.ch

You may also contact us at our registered address in Zurich, Switzerland, once finalised.

2. Categories of data processed

We process the following categories of personal data:

  • Identification data: name, contact details, and account information.
  • Genomic data: genome files and derived outputs uploaded by you or your authorised representatives.
  • Service metadata: logs, audit trails, and records of data access or sharing events.
  • Billing data: payment records, subscription details, and transaction confirmations.

3. Purpose and legal basis

We process your data for the following purposes:

  • To provide secure storage and controlled access to your genome data (performance of a contract).
  • To maintain auditability, security, and integrity of the service (legitimate interests).
  • To comply with legal obligations, including regulatory or court orders.
  • With your explicit consent, to enable data sharing with third parties you authorise.

4. Consent

Some processing activities (e.g. sharing your data with external recipients) require your explicit, informed consent. You can withdraw this consent at any time through your account settings. Withdrawal does not affect the lawfulness of prior processing.

5. Recipients of data

We do not sell or market your data. Data may be shared only:

  • With recipients you explicitly authorise via the Genomic Vault platform.
  • With trusted service providers (e.g. cloud infrastructure, payment processors) bound by contractual data protection obligations.
  • When legally required by courts, regulators, or applicable law.

6. International transfers

Where service providers are located outside Switzerland or the EU/EEA, we ensure that appropriate safeguards (e.g. Standard Contractual Clauses or recognised adequacy decisions) are in place.

7. Retention

We retain your data as long as you maintain an active account. Upon account closure, genomic data and outputs are deleted within 90 days, except where longer retention is required by law or necessary for legitimate interests (e.g. dispute resolution).

8. Your rights

You have the following rights under the FADP and GDPR:

  • Right of access to your data.
  • Right to rectification of inaccurate data.
  • Right to erasure (“right to be forgotten”).
  • Right to restriction of processing.
  • Right to data portability.
  • Right to object to certain processing activities.
  • Right to lodge a complaint with a supervisory authority.

Requests may be sent to legal@switzerlandomics.ch.

9. Security

We implement technical and organisational measures to protect your data, including encryption at rest and in transit, strict access controls, and continuous monitoring of our infrastructure.

10. Court orders and your rights

We comply with valid Swiss court orders. Outside of such orders, you may delete or revoke access to your data at any time. We will not voluntarily share your data with third parties.

11. Updates

We may update this Privacy Policy from time to time to reflect legal, technical, or service-related changes. The most recent version is always available at https://genomicvault.switzerlandomics.ch/legal/privacy.