⚠ Tier 1 (Highest Sensitivity) Category - Stricter Evaluation Standards Apply
Terms.LawPrivacy Watchdog › DNA Testing
🧬

DNA Testing Privacy Reviews

DNA testing services collect the most sensitive personal data imaginable - your genetic code. This immutable data reveals health risks, ancestry, family connections, and information about relatives who never consented. I analyzed the privacy policies of major DNA testing services with stricter Tier 1 evaluation standards.

4
Services Reviewed
48
Avg Privacy Score
28
Red Flags Found

⚠ Why DNA Testing is Tier 1 (Highest Sensitivity)

DNA testing services are evaluated under our strictest standards because genetic data presents unique, irreversible privacy risks:

  • Immutable Data: Unlike passwords or addresses, you cannot change your DNA. A breach exposes you permanently.
  • Family Implications: Your DNA reveals information about biological relatives who never consented to testing.
  • GINA Limitations: The Genetic Information Nondiscrimination Act (GINA) does not protect against discrimination in life insurance, disability insurance, or long-term care insurance.
  • Research Irreversibility: Once your data is used in research or published, consent withdrawal cannot undo completed studies.
  • Law Enforcement Access: DNA databases have been used in criminal investigations through familial matching.

Privacy Score Comparison

How DNA testing services compare on genetic data protection, research consent, and user control. All services in this category receive failing grades due to the inherent sensitivity of genetic data.

Service Score Grade Key Privacy Concern
Living DNA
Best in Category
 58 C+ ISO 27001 certified, "no data sales" Full Review →
Ancestry
52 C Zero DNA law enforcement disclosures Full Review →
23andMe
45 C- Opt-in research, zero law enforcement disclosures Full Review →
MyHeritage
Lowest in Category
 35 D+ 2018 data breach exposed 92M accounts Full Review →

🐕 Key Privacy Findings Across All DNA Testing Services

Pharmaceutical Research Partnerships

Multiple services partner with pharmaceutical companies for research. 23andMe explicitly states research may be "in collaboration with...pharmaceutical companies." Once you consent, withdrawal cannot undo completed studies.

GINA Protection Gaps

The Genetic Information Nondiscrimination Act (GINA) only covers health insurance and employment. Life insurance, disability insurance, and long-term care insurance can legally use genetic information to deny coverage or set rates.

Research Consent Irreversibility

All services state that consent withdrawal does not affect research "already begun, completed, or published." Your genetic data may remain in research datasets and publications permanently.

Law Enforcement Access Policies

While services require court orders or warrants for DNA data, genetic databases have been used in criminal investigations. Family matching can identify suspects through relatives who consented to testing.

Looking for ToS Analysis?

We also analyze DNA testing service terms of service for consumer fairness issues like billing, cancellation, and liability.

View ToS Watchdog DNA Testing →

Detailed Reviews

Click through for full attorney analysis of each service's genetic data privacy practices.

Living DNA

58/100 (C+)
  • ISO 27001 certified security
  • States "no data sales" in policy
  • Research data retained indefinitely
Read Full Review

Ancestry

52/100 (C)
  • Zero DNA law enforcement disclosures reported
  • DNA samples stored indefinitely by default
  • Sample destruction requires separate request
Read Full Review

23andMe

45/100 (C-)
  • Opt-in research consent model
  • Zero law enforcement disclosures reported
  • Research cannot be undone after consent
Read Full Review

MyHeritage

35/100 (D+)
  • 2018 breach exposed 92 million accounts
  • DNA samples stored up to 10 years
  • Biometric facial recognition collection
Read Full Review

Genetic Data Privacy Concerns?

If you want to delete your DNA data, opt out of research, destroy your biological sample, or understand your CCPA/GDPR rights for genetic information, I can help.

Data Deletion Templates Request Review

Schedule a Consultation

Need help with genetic data privacy rights or concerns?