Back to GeneLoop
Privacy Policy

Privacy Policy

Last updated: 8/13/2025

GDPR Compliance & IP Privacy

GeneLoop is fully compliant with the General Data Protection Regulation (GDPR) and other applicable privacy laws.We never collect or store IP addresses and will NEVER use your intellectual property to train our models - your IP is your IP.

Introduction

We at GeneLoop ("GeneLoop", "we" or "us") are strongly committed to respecting your privacy and keeping secure any information you share with us. This privacy policy ("Privacy Policy") explains how we collect, use, disclose, and process your personal data when you use GeneLoop's synthetic biology platform, software, APIs, documentation, and related tools, including at our website ("Service"). It also tells you how you can access and update your personal information and describes the data protection rights that may be available under your country's or state's laws. Please read this Privacy Policy carefully. By accessing or using the Service, you acknowledge you have been informed of and consent to our practices with regard to your personal information and data.

Please note that this Privacy Policy does not apply where GeneLoop acts as a data processor and processes personal data on behalf of commercial customers using our commercial services, for example, if your employer has provisioned a GeneLoop account for you to use at work. Our use of that data is governed by our customer agreements covering access to and use of those offerings.

1. Personal data we collect

We collect the following categories of personal data:

A. Personal data you provide to us directly

We collect personal data if you create an account to use our Service or communicate with us. This includes:

Account Information

GeneLoop collects identifiers, such as your name and email address, when you sign up for a GeneLoop account or to receive information about our Service.

Inputs and Suggestions

The Service allows you to submit content ("Inputs"), which generate responses ("Suggestions") based on your Inputs. If you include personal data or reference external content in your Inputs, we will collect that information and it may be reproduced in the Suggestions we provide.

Communication Information

If you communicate with us, we collect your name, contact information, and the contents of any messages you send.

Feedback

While using the Service, you may provide feedback, including ideas and suggestions for improvement or rating a Suggestion in response to an Input ("Feedback"). If you provide Feedback on the Service, we may store the entire exchange as part of your Feedback.

B. Personal data we receive from your use of the Service

When you use the Service, we also receive certain technical data automatically. This includes:

Device Information

Your device or browser automatically sends us information about when and how you install, access, or use our Service. This information may include your device type, browser information, operating system information, and mobile network or ISP. This information may depend on your settings and the type of device you use to access the Service.

Log Information

We collect information about how our Service is performing, including browser type and settings, error logs, and other ways that you interact with the Service. We do not collect IP addresses.

Usage Data

We collect information about your use of the Service, such as the dates and times of access, browsing history, search, information about the links you click, pages you view, and other information about how you use the Service, and technology on the devices you use to access the Service.

Cookies & Similar Technologies

We and our service providers utilize cookies, pixels, scripts, or similar technologies to operate and manage the Service and improve your experience. These technologies help us to recognize you, customize or personalize your experience, market additional products or services to you, and analyze and optimize your use of the Service.

C. Information We Do Not Collect

GeneLoop does not knowingly collect sensitive or special category personal information, such as genetic data, biometric data for the purposes of uniquely identifying a natural person, health information, or religious information. Additionally, GeneLoop does not knowingly collect information from or direct any of our Service or content to children under the age of 18. We never collect or store IP addresses. If we learn or have reason to suspect that a user is under the age of 18, we will investigate and, if appropriate, delete the personal data and/or the account.

2. How we use personal data

We may use personal data for the following purposes:

  • • To provide and maintain the Service, including optional features that enhance functionality and user experience.
  • • To create, manage, and administer your account, including responding to inquiries.
  • • To improve and develop the Service and conduct research, including debugging and identifying or repairing issues that impair functionality.
  • • To communicate with you, including sending updates, information about the Service, and events.
  • • To prevent, detect, and investigate fraud, abuse, security incidents, and violations of our Terms of Service.
  • • To comply with legal obligations and protect the rights, safety, privacy, and property of users, GeneLoop, or third parties.
  • • To investigate and resolve disputes or security issues.
  • • To enforce our Terms of Service and other applicable agreements.

We will NEVER use your intellectual property, sequences, or project data to train our models. Your IP is your IP. We only use Inputs or Suggestions for model training if: (1) they are flagged for security review, or (2) you explicitly report them to us as Feedback with consent for training use.

We may aggregate or de-identify personal data so that it no longer identifies you, and use that information for the purposes described above, such as analyzing how the Service is used, improving or adding features, and conducting research. We will maintain de-identified information in its de-identified form and will not attempt to reidentify it, except as required by law.

Your Rights (GDPR)

If you are located in the EU, you have the following rights:

Access & Portability

Request a copy of your personal data and receive it in a portable format.

Rectification

Request correction of inaccurate or incomplete personal data.

Erasure

Request deletion of your personal data under certain circumstances.

Objection

Object to processing of your personal data for certain purposes.

Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption: Data encrypted in transit and at rest
  • Access Controls: Limited access on a need-to-know basis
  • Regular Audits: Security assessments and monitoring
  • Secure Infrastructure: Cloud providers with robust security certifications

Data Retention

We retain your personal data only as long as necessary for the purposes outlined in this policy:

  • Account Data: Until account deletion or 3 years of inactivity
  • Research Data: Until you delete projects or close your account
  • Usage Analytics: Aggregated data retained for up to 2 years
  • Legal Requirements: As required by applicable law

International Transfers

Your data may be processed in countries outside the EU. We ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries with adequate protection
  • Standard Contractual Clauses: EU-approved data transfer agreements
  • Binding Corporate Rules: Internal data protection standards

Contact Us

For questions about this privacy policy or to exercise your rights, contact us:

  • Email: privacy@geneloop.com
  • Data Protection Officer: dpo@geneloop.com
  • Address: 4420 Tivoli St.

You also have the right to lodge a complaint with your local data protection authority.

Changes to This Policy

We may update this privacy policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. EU users will receive additional notice for significant changes affecting their rights.