Data Deletion Policy – My DNA Health

User Data Deletion Policy

Data Deletion Process

myDNAhealth commits to secure and complete deletion of client data upon request. This process complies with UK GDPR, EU GDPR, the Data Protection Act 2018, and all applicable statutory regulations.

Requesting Data Deletion

Clients may request data deletion by emailing [email protected]. Clients may also submit a deletion request via the form at https://myDNAhealth.co.uk/data-deletion-request Requests must include the client’s full name and email address used for registration. We verify identity before processing deletion to protect data security.

Verification and Approval

We acknowledge receipt of deletion requests within 3 business days. We may request additional information to confirm identity. Clients have the right to withdraw consent at any time prior to final deletion.

Deletion Timeline

Core personal data is deleted within 30 days of verification. We may extend this period by up to 2 months for complex requests, with notice to the client. All deletion actions are logged in an internal audit record without retaining personal data.

Scope of Deletion

We permanently erase personal profiles, test results, and associated reports. Backups are overwritten or purged during next scheduled cycle, not exceeding 90 days. Aggregate or anonymised data retained for statistical purposes contains no personal identifiers. Legal obligations (e.g., tax records) may require limited retention as permitted by law.

Notification of Completion

Clients receive written confirmation via email upon completion. Confirmation includes the date of deletion and a summary of actions taken.

Third‑Party Integrations

We notify third parties to whom data was shared for processing. Third parties include service providers, labs, and analytics partners. We require all third‑party providers to confirm deletion within their systems.

Facebook User Data Deletion Protocol

We support Facebook’s User Data Deletion callback. Our callback URL is https://myDNAhealth.co.uk/api/facebook-data-deletion. We respond to Facebook deletion callbacks within 24 hours. Our response confirms deletion with the required JSON payload:

“url”: the callback URL
“confirmation_code”: unique deletion confirmation token

This ensures compliance with Facebook’s Data Deletion Policies.

Client Rights and Appeals

Clients have the right to access, correct, or delete personal data at any time. Clients may lodge complaints with the UK Information Commissioner’s Office. For further questions, contact [email protected] or call +44 20 1234 5678.