Legal

Privacy Policy

Last updated: July 8, 2026

This Privacy Policy explains how Digital Seed ("we", "us", "our") collects, uses, stores and protects information when you use our website, platform and related services (the "Services"). It applies to accounts on digitalseed.live. This page is maintained by Digital Seed to answer common privacy questions and does not constitute legal advice.

1. Information we collect

  • Account data. Email address, display name, hashed password, and optional profile fields you provide.
  • Research data. Genotype files (VCF, PLINK, HapMap), phenotype tables, metadata, analysis parameters and results you upload or generate.
  • Usage data. Basic logs of pages viewed, features used, timestamps and error events, used to operate and improve the Services.
  • Device data. Browser type, operating system and IP address, used for security and abuse prevention.

2. How we use information

  • To provide, operate and secure the Services.
  • To run the analyses you request and store their results in your account.
  • To enforce quotas, prevent abuse and troubleshoot errors.
  • To send transactional messages (sign-up confirmation, password reset, billing).
  • To comply with legal obligations and enforce our Terms of Service.

We do not sell your data, and we do not train machine-learning models on your research data.

3. Data retention

Uploaded datasets, analyses and results are automatically deleted 20 days after upload on the default tier. Export any results you wish to keep. Paid tiers can extend retention; the current setting is visible in your dashboard. Account records are retained while your account is active and deleted within 30 days of account closure, except where retention is required by law.

4. Security

Data is encrypted in transit using TLS 1.3 and at rest using AES-256. Passwords are hashed with bcrypt and screened against the HaveIBeenPwned leaked-password database. Row-level security enforces per-user data isolation. Access to production infrastructure is restricted, logged and requires multi-factor authentication.

5. Subprocessors

We rely on a small set of vetted infrastructure providers for hosting, database, authentication, email delivery and error monitoring. Each subprocessor is bound by a data-processing agreement and is used only to the extent required to operate the Services.

6. Your rights

You may access, export or delete your data at any time from your account settings. Depending on your location, you may also have the right to object to or restrict processing, to data portability, and to lodge a complaint with a supervisory authority. To exercise any right, contact us at privacy@digitalseed.live.

7. Cookies

We use strictly necessary cookies for authentication and session management, and minimal first-party analytics to understand aggregate usage. We do not use third-party advertising cookies.

8. Children

The Services are not directed to children under 16, and we do not knowingly collect personal information from children.

9. Changes to this policy

We may update this policy from time to time. Material changes will be announced in the platform and, where appropriate, by email. Continued use of the Services after a change constitutes acceptance of the revised policy.

10. Contact

Questions about this policy or your data can be sent to privacy@digitalseed.live.