Security & Privacy
Security & Privacy
Seven Bridges takes security and compliance just as seriously as you do. We understand that genomic data can be personally revealing and immensely valuable, so we make every effort to protect data subjects' privacy and our clients' intellectual property.
The Seven Bridges Platform is designed with all aspects of security in mind, including preventing unauthorized access to data (data confidentiality), protecting data from unauthorized changes or corruption whether intentional or inadvertent (data integrity), and ensuring data is available to appropriate parties (accessibility). Among other measures, we employ end-to-end encryption to ensure the confidentiality and integrity of our clients' data both in storage and in transit. We offer our clients fine-grained access controls so they can give their users exactly the access they need: no more and no less.
Seven Bridges' clients also value compliance with regulatory and voluntary standards. This is both to stay on the right side of the law in heavily-regulated fields, such as healthcare and pharmaceuticals, and for the peace of mind that comes with well-understood and externally-validated privacy and security frameworks. The Seven Bridges Platform provides all of our clients' genomic data the protections required for electronic Protected Health Information under HIPAA regulations by default.
In order to ensure full compliance with EU data protection regulations, Seven Bridges also stands ready to include in our agreements with clients standard contractual clauses recognized by the European Commission (the EU’s executive body) as ensuring adequate protection of EU data subjects’ data when transferred abroad.
We enable our clients to comply with dbGaP standards for research access to NIH data and CLIA and CAP standards for clinical labs. We also provide a Privacy Policy that spells out in detail what data we collect from our users and what we do with it.