[Last Revised Feb 19, 2005]


I know many people are concerned about privacy issues regarding their DNA. This is for informational purposes, and is not meant to instill any paranoia in you. The theme should be that a well-informed consumer is a wise consumer. What you should understand is that y-DNA chromosome testing involves only noncoding regions of the y chromosome. Therefore, there are no possibilities of discovering genetic diseases. The privacy concerns that would apply to testing for medical diseases, such as the possibility of discrimination in the workplace, et seq., do not apply to this type of testing. Questions come to mind such as the following:

1) What happens to my DNA sample after a company is done?

First of all, swabs are sent out in kits to consumers. The consumer then swabs the inside of his or her cheek, capturing DNA found in buccal cells. Then the swab and the DNA on the swab are sent to the lab where some or all of it is used up in testing. Some companies then will store it for you, others will not.

2) What happens to my DNA results after a company tests me and gives me a copy of the results?

The results are kept on file, in both computer and hard copy formats. DNA results should either go into a nonweb database with a number but no name, or could go onto a web database provided sufficient security precautions were taken.

3) Do my DNA results stay in a database, presumably for me to have other tested clans send in their DNA for comparison with mine?

This is an option. However, consent will have to be given if you would like your DNA used in comparison studies with other individuals.

4) Are these databases secure against hackers and other problems?

These databases are not accessible via the internet. No databases are 100 percent secure, but what helps is if the databases are either offline or on secure sites.

5) Does the company sell my DNA results or any other personally identifiable information?

The DNA and the DNA profile will never be sold or accessed by another party. Think about it for a minute. Companies are in business, and they get their business by referrals. If customers found out that companies sold their DNA data, the companies would not be in business very long. I would look for the company's privacy policy. State law may also regulate this area. Currently there is no federal (U.S.) statutory law, but there are regulations under the Department of Health and Human Services (45 CFR 46:101 et seq.) regarding privacy.

6) What other steps does the company take while testing to keep my DNA results and my identity separate?

The specimens as they arrive in the lab must be numbered. The number then would correspond to a name, and the actual tester would only have a sample with a number on it--never a name. Very few people would actually know who the customer is and what the results are.

7) Are any other tests, such as those looking for medical genetic diseases, being run on my DNA?

No tests other than DNA profiling will be done on the specimens. To analyze for genetic diseases, many tests would have to be run. That costs money to staff the lab, more supplies, more bookeeping, increased overhead. Come on, now, businesses that did this would not stay in business very long!

8) Are there any laws that pertain to genetic testing that protect the consumer?

Feb 18, 2005: U.S. Senate endorsed safeguarding individual genetic privacy by passing the Genetic Information Nondiscrimination Act of 2003 (S. 1053) by a vote of 95-0. The Senate bill was introduced by Senators Olympia Snowe (R-Maine) and Tom Daschle (D-S.D.), and it prohibits employers, employment agencies, and labor organizations from using individual genetic information in hiring, firing, and training decisions. Employers are also prohibited from soliciting or purchasing genetic information. This legislation ensures America's patients that their genetic information cannot be requested or used to deny, cancel, or raise premiums in health insurance. House version of the bill is (H.R. 1910).

Yes, while there is no U.S. federal statute on the subject (attempts in 1992 and 1996 failed), the U.S. federal government has developed regulations (45 CFR 46:101 et seq.) to deter employers, insurance companies, or any other entities from discriminating against individuals based on their genetic makeup. There currently are also state laws (in the U.S.).

9) As genealogists, we want our results available to other companies so that comparisons can be made with our test results, and likewise, that those other companies share their results of those that they have tested. Let's take an example to show what I am talking about. Duerinck A goes and gets tested through Company A in the United States; Durink B gets tested through Company B in France; Durickx C gets tested through Company C in Belgium; Doehring D gets tested in Germany. It would appear that there is no way to compare the results since many companies are involved, not to mention laws of different countries and the European Union. Has anyone thought of a way to address this?

The transmission of the results of DNA identities can be handled much like medical records, but special consent would have to be obtained before results are shared between labs. Alternatively, results can be shared with labs by the individuals themselves, since they will have the profiles in their possession. On this note, we do not know if the labs have a procedure in place to handle a request from another lab or from a customer and what it would cost. Another approach would be to construct a huge database, or one common family tree. Those laboratories doing DNA testing for the public, especially in the Genetic Genealogy area, should lead the way. In their absence, maybe governments would like to lend a hand in the form of regulations to help the consumer.

10) Can drugs, medications or blood transfusions affect the test results?

Y polymorphism and mtDNA tests are not affected by drugs, medications or blood transfusions. Even patients who have had bone marrow transplants can still be tested because cheek cells, not blood, are being analyzed.


The genetic privacy issue actually consists of at least 3 subissues: 1) genetic information as being private, 2) confidentiality of genetic information, and 3) the use of genetic information, even if authorized, can result in discrimination or stigmatization. Genetic privacy issues are not currently regulated by United States federal statute. While there are some U.S. Department of Health and Human Services regulations that regulate this area [see 45 CFR 46.101 et seq. (Code of Federal Regulations), most regulation in this area is at the state level. I will give you an example of state law, using selected parts of the Illinois law. If you would like to investigate further, then at least you have the statutory cites. There are some legal sites on the web where you can find federal laws and possibly state laws. But first, some links to proposed federal law:

U.S. Dept. of Health and Human Services regulations -- Applicability, 45 CFR 46.101; Definitions at 45 CFR 46.102; Research conducted or supported by any federal department or agency, at 45 CFR 46.103 -- FDA Information Sheets, Guidance for Institutional Review Boards and Clinical Investigators, 1998 Update -- New proposed privacy regulations

Proposed U.S. federal statutes

Alliance of Genetic Support Groups/Consumer Policy Network


State of Illinois Genetic Information Privacy Act -- Selected portions


Back to Genetics Page

Duerinck Surname DNA Project

Genetic Testing Labs

Short Tandem Repeat (STR) Analysis

Medical Genetics and Genealogy: Genetic Diseases

Genetics and Human Migration Patterns

Genetic Definitions


Cyndi's List -- Computer Privacy - Encryption Privacy and Security

The Electronic Frontier Foundation






Kevin Duerinck disclaims any and all warranties, express or implied, relating to this website and any information contained therein, including warranties as to the accuracy or completeness of the information. Kevin Duerinck shall not be liable for any damages of any kind, under any theory of liability, resulting from user's access to the website or use of any information contained therein. This information should not be considered legal advice and Kevin Duerinck does not offer this as legal advice. If for any reason you need a lawyer's advice, please see one. In no way should there be construed a lawyer-client relationship and Kevin Duerinck expressly denies any such relationship based on the information found on these pages.



Copyright © 2000-2005 Kevin F. Duerinck