Adhering to GDPR · PIPL · CCPA across three jurisdictions for global client data security
GenoMatrix adheres to data protection regulations across three jurisdictions, ensuring global client data security and privacy
All data classified into four sensitivity tiers: Public, Internal, Confidential, and Core. Each tier implements differentiated access controls, encryption strategies, and audit requirements.
Full lifecycle management from data collection, transmission, storage, processing through disposal. Clear accountability and operational protocols at each stage ensuring compliance and traceability.
Data transfers between our three centers comply with each jurisdiction's requirements. EU-China transfers use Standard Contractual Clauses (SCCs). All cross-border transfers undergo security assessment.
Regular internal security audits and penetration testing. ISO 27001 Information Security Management System certification in progress. All API endpoints use TLS 1.3 encryption; data stored with AES-256.
GenoMatrix is committed to the highest standards of data security for all client data. We comply with GDPR, PIPL, CCPA, and other major global data protection regulations, and continuously improve our compliance framework. Some security certifications (ISO 27001) are currently in progress — we maintain transparency and provide regular updates.
For data protection inquiries, contact our DPO: dpo@genomatrix.ai