this post was submitted on 31 Jan 2024
237 points (97.6% liked)
Technology
59605 readers
3501 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
I don't know if the article talks about this or not (paywalled), but my guess would be due to public distrust. In case you weren't aware, 23andme was recently hacked, exposing 6.9 million users data [1] and a class action lawsuit followed [2].
My personal biggest issue has always been with their TOS regarding how they forever own and will retain the rights to the provided DNA sample and resulting data derived from your DNA. This data was not treated or regulated as sensive medical data under something like HIPAA, so who knows how well they safeguard it [3].
Their website claims they won't sell the data to 3rd parties or insurance companies without users consent, but we all have heard that before from Silicon Valley companies. This data could be sold or used in the future in ways I cannot fully conceive right now, and/or in ways I don't agree with. With the rise in popularity of things like GPT, who knows if they will use the data for training AI models. These problems aren't unique to 23andme, rather any of the tech DNA/ancestry companies.
[1] https://techcrunch.com/2023/12/04/23andme-confirms-hackers-stole-ancestry-data-on-6-9-million-users/
[2] https://topclassactions.com/lawsuit-settlements/privacy/data-breach/23andme-hit-with-another-class-action-lawsuit-over-data-breach/
[3] https://healthitsecurity.com/features/what-the-23andme-data-breach-reveals-about-credential-stuffing
I was gifted the tests multiple times. I didn’t take the test because of my own data privacy concerns.
The thing I am concerned about is not necessarily 23andMe selling the data, but rather being sold off and having another company come in and being allowed to do what they want with it. I’ve seen that happen before with other data collecting companies, and I’m not sure to what extent the policies put in place by the collection company applies to the new company that buys them and their IP.
I imagine in this case that it would result in a massive class action suit, but for me the risks of having the data made available to, for example, insurance companies who could then deny coverage was just too high of a risk when the main payoff for me would be to find out my family comes from Ireland but that I’m also 5% Jewish.