Ask Lemmy
A Fediverse community for open-ended, thought provoking questions
Please don't post about US Politics. If you need to do this, try !politicaldiscussion@lemmy.world
Rules: (interactive)
1) Be nice and; have fun
Doxxing, trolling, sealioning, racism, and toxicity are not welcomed in AskLemmy. Remember what your mother said: if you can't say something nice, don't say anything at all. In addition, the site-wide Lemmy.world terms of service also apply here. Please familiarize yourself with them
2) All posts must end with a '?'
This is sort of like Jeopardy. Please phrase all post titles in the form of a proper question ending with ?
3) No spam
Please do not flood the community with nonsense. Actual suspected spammers will be banned on site. No astroturfing.
4) NSFW is okay, within reason
Just remember to tag posts with either a content warning or a [NSFW] tag. Overtly sexual posts are not allowed, please direct them to either !asklemmyafterdark@lemmy.world or !asklemmynsfw@lemmynsfw.com.
NSFW comments should be restricted to posts tagged [NSFW].
5) This is not a support community.
It is not a place for 'how do I?', type questions.
If you have any questions regarding the site itself or would like to report a community, please direct them to Lemmy.world Support or email info@lemmy.world. For other questions check our partnered communities list, or use the search function.
Reminder: The terms of service apply here too.
Partnered Communities:
Logo design credit goes to: tubbadu
view the rest of the comments
Because those people never agreed to it being used by anyone else. And it’s in the public interest to protect everyone from their highly-sensitive biometric data being misused.
Unfortunately, everyone who used their service did agree to it. Directly from their Privacy Policy:
https://www.23andme.com/legal/privacy/#data-sharing
Whether this will hold up in court is a bit murky. But without a large, laborious court battle, they can and will sell the data and they are "legally" allowed to
Also interesting is the language they used in the email they sent me after I requested account/data deletion:
The first bullet point makes sense - you agreed and they already published something, so too bad. The second bullet is doing the right thing. But those third and fourth bullets sound like they don’t really have to delete anything, and they’ll keep a bunch of data even if you ask them to trash it. I asked them to trash it anyway.
Thanks for posting this.
While my first point may have been flawed, by second still stands.
I definitely agree with your second point. And I find it ridiculous that a company can ever claim to "own" your genetic information. It's why I've never dared sign up for any kind of genetic ancestry sites. I can't give that personal of information away for free, let alone pay for it to be taken
People were presented with that in the contract but I think it's fair to argue they didn't comprehend that their genetic data could be used punitively to deny them preferntial health insurance, a job or a loan... once this data is in the hands of slimey people it'll be used like everything else that's illegal to use for those purposes but "public knowledge" so the fucks use it anyways.
This data is dangerous to public well being forever in extremely scary ways as it could be leveraged on future generations that did not consent to this contract as well with statistics.
I think you're correct about people being more careful with what they sign but I think you're underestimating how much in the public interest this is.
Having ownership of something also implicitly gives you the right to sell that thing. Unless 23andMe explicitly stated in the contract that they were under obligated to never share that information. I highly doubt the had anything like that in the contract because, well, here we are.
Also, 23andMe afaik is not a medical association, so they likely aren't bound by things like HIPPA (idk if specific genetic encodings would be included in that anyways) to protect information.
That’s speculation, not fact, and I also don’t agree that owning a thing necessarily means you can sell it in an unrestricted/unregulated manner (guns, tobacco, as well as other sensitive medical info can’t just be sold willy-nilly)— especially when the “it” is sensitive biometric data whose originators never agreed to share it. That’s the problem when you and the greedy corporations you’re defending assume implicit consent rather than to ask for it: it’s damaging to the public and invades these people’s medical privacy in the name of profit.
And whether 23andMe should be subject to HIPAA laws is debatable at best.
They DID agree to share it.
Should that have been an option? Probably not, but now you are talking about legislation with wider implications, not some half baked public trust to protect a small group of people.
There are other databases of genetic code out there you know. The FBI can potentially accuse you of a crime based on your cousin uploading info to a genealogy website.
https://www.palmbeachpost.com/story/news/crime/2023/02/06/police-are-using-genealogy-sites-to-solve-crime-heres-what-to-know/69826173007/
I saw in another comment.
That doesn’t negate the public interest in protecting such data, as I have said.
Besides, that clause may not hold up in court.
All the more reason for broader legislation than a half baked idea about buying just this one database.
They did agree to share it but their children didn't and a database this large is likely to have significant predictive effects on generations to come.