Genetic Data

Personal data relating to the inherited or acquired genetic characteristics of an individual that provide unique information about physiology or health, particularly data resulting from analysis of biological samples. Genetic data includes DNA sequences, genetic test results, family medical history reflecting genetic conditions, and other information about genetic makeup. GDPR Article 9 classifies genetic data as a special category of personal data requiring heightened protection. Genetic data is particularly sensitive because it reveals information not just about the individual but potentially about family members, can't be changed if compromised, may reveal predisposition to health conditions, and could enable discrimination. Processing genetic data generally requires explicit consent or another Article 9 exception. Organizations handling genetic data should conduct data protection impact assessments, implement strong security measures, provide clear information to individuals, obtain appropriate consent, and carefully limit access and use.