GENOMELINK, INC.
Third Party Genomic Data Service Access and Confidentiality Policy
PURPOSE OF THIS POLICY
This Policy sets forth Genomelink’ rules regarding access to and use of user log-in credentials (“Credentials”) from third party websites in order to access such user’s third-party account (“Account”) for the sole purpose of downloading such user’s genome data (“Data”) at the user’s request.APPLICABILITY
All personnelDETAILED POLICY STATEMENT
Access
Access to a user’s Credentials is granted to Genomelink personnel only on a “need to know” basis, subject to prior approval by Chief Director. Access to a user’s Credentials and Account shall only occur on Genomelink-provided devices. Under no circumstances should personnel access a user’s Credentials or their Account from a personal device. Access may be monitored and will be withdrawn if any personnel exceeds their authority under this Policy, or for any other reason at Chief Director’s sole discretion.Restrictions
Credentials must:- be protected from unauthorized access or disclosure at all times;
- never be transcribed in hard copy;
- not be shared with anyone unless explicitly authorized by Chief Director; and
- be used only for the limited purpose of accessing such user’s Account to download a single copy of the user’s Data. Any other use is expressly prohibited.
Once a user’s Data has been downloaded, personnel must immediately log out of such user’s Account and securely delete that user’s Credentials by destroying or erasing so that personal information cannot practicably be read or reconstructed.Personnel are explicitly prohibited from viewing any additional information or webpages in a user’s Account. Additionally, personnel shall not copy or share a user’s Credentials with any person.Enforcement of this Policy
A violation of this Policy could be detrimental to Genomelink, our users and our personnel, and would violate our commitment to user privacy. FAILURE TO FOLLOW Genomelink’ policies and procedures may result in the termination of your employment. Therefore, it is imperative that all personnel comply with this Policy. Immediately report any potential violation of this Policy to the Chief Director.Questions
If Credentials are suspected to have been compromised, report the incident to Chief Director for assistance.