You own your genome.
Always.
Three custody tiers. HIPAA-compliant infrastructure. De-identified research opt-in entirely on your terms. Here is exactly how your data moves from saliva to secure portal — and who controls it at every step.
Every step. Every handoff. Transparent.
Four principles. No exceptions.
You own your genome
Your genetic data belongs to you — not AuraGen, not our pipeline partner, not any third party. You can download your raw variant file at any time, and you can request permanent deletion at any time. No questions asked.
We never sell your data
AuraGen does not sell, license, or share identifiable genomic data with advertisers, insurers, pharmaceutical companies, or any third party. Ever. This is a hard line, not a policy subject to future revision.
Research opt-in is optional
If you choose to contribute to the de-identified research pool, your data improves PRS models for everyone. If you choose not to — or change your mind later — your reports are completely unaffected. Withdrawal is immediate.
HIPAA-compliant infrastructure
All consumer genomic data is stored on HIPAA-compliant infrastructure. B2B and institutional clients operate under a Business Associate Agreement (BAA). White-label partners can deploy GDPR-compliant EU servers via Intelliseq.
Three models. One rule: you own your data.
Consumer (Direct)
For individuals ordering directly through AuraGen. Your variant file lives on AuraGen-managed HIPAA-compliant infrastructure. You own it entirely — contractually and practically.
- ✓You own your data at all times — legally and contractually
- ✓Download your raw VCF or FASTQ file anytime from your portal
- ✓Permanent deletion on request — completed within 30 days
- ✓AuraGen never sells or shares identifiable data with third parties
- ✓Optional: de-identified research opt-in to improve PRS models
B2B / Institutional
For clinics, employers, and health systems ordering through AuraGen's B2B portal. Institutions own and control their patient data entirely — AuraGen never has access to patient-level data in this tier.
- ✓Institution owns and controls their patient data server
- ✓AuraGen has zero access to B2B patient-level data
- ✓HIPAA Business Associate Agreement (BAA) included
- ✓Data never leaves institutional infrastructure
- ✓Per-patient pricing with volume discounts available
White-Label Partners
For wellness brands and genomics companies white-labelling AuraGen reports. Full data sovereignty with direct Intelliseq iFlow™ pipeline access on your own infrastructure.
- ✓Option to deploy your own HIPAA-compliant data server
- ✓Intelliseq iFlow™ pipeline licensed directly to your environment
- ✓Custom branding on reports, portal, and patient communications
- ✓De-identified research opt-in configured per partner preference
- ✓GDPR-compliant EU infrastructure available via Intelliseq Poland
The research opt-in — entirely on your terms
When you opt in to AuraGen's research pool, your genetic data is de-identified before inclusion — your name, contact details, and all personally identifiable information are removed using standard pseudonymization protocols prior to any research use.
De-identified data contributes to PRS model improvement, new variant annotation, and population health research through Intelliseq's pipeline. You can withdraw consent at any time from your account portal.
You are never required to opt in. Opting out has no impact on the quality, completeness, or availability of your AuraGen reports. Your decision can be changed at any time, in either direction, from your account settings.
Intelliseq iFlow™ — HIPAA & GDPR compliant
Bioinformatics processing is performed by Intelliseq sp. z o.o. (Poland) via their iFlow™ platform — a clinically-validated NGS analysis engine deployed with DNAnexus Precision Health Cloud, reference labs, and DTC companies globally. Intelliseq operates under GDPR (EU) and supports HIPAA-compliant configurations for US deployments. Intelliseq secured €4.5M in funding (March 2025) to expand US operations.
Privacy questions.
Yes. You can request permanent deletion of your genomic data at any time from your account portal or by emailing privacy@auragenwellness.com. Deletion is completed within 30 days. Once deleted, reports generated from that data are no longer accessible.
No. AuraGen does not share identifiable genomic data with insurance companies, employers, or any third party. The Genetic Information Nondiscrimination Act (GINA) also prohibits health insurers and employers from using genetic information in coverage and employment decisions.
Your data ownership rights are contractual and survive any change of ownership. Any acquiring entity would be bound by the same data privacy commitments. You would be notified of any material change to data handling practices and given 90 days to download or delete your data before any changes take effect.
Consumer data is stored on HIPAA-compliant US-based cloud infrastructure. B2B and institutional clients can maintain data within their own infrastructure. White-label partners can optionally use Intelliseq's GDPR-compliant EU servers in Poland.
Yes. WES kit customers can download their raw VCF variant file. WGS kit customers can download both VCF and raw FASTQ files. Your data is portable and yours — you can use it with any compatible genomic analysis tool or share it with a physician.
Questions about your data?
Our team is happy to walk through data handling in detail — especially for B2B and institutional partners with specific compliance requirements.
All AuraGen reports are for Research Use Only (RUO) and are not FDA-cleared, CE-IVD certified, or approved for clinical diagnostic use. Data custody practices described here reflect AuraGen's current policies as of May 2026. For questions about data handling contact privacy@auragenwellness.com. © 2026 AuraGen Wellness · auragenwellness.com