Privacy Policy

Introduction

Infinite Epigenetics ("Company," "we," or "us") is committed to protecting your privacy.  This Privacy Policy explains how we collect, use, store, and share your personal information when you use the Infinite mobile application, any companion websites, and any other related consumer services that link to or reference this Policy (collectively, the "Services"). This is a single, global policy that applies to all users worldwide, and it incorporates the high standards of the EU General Data Protection Regulation (GDPR) even if you reside outside the European Economic Area.  By using the Services, you acknowledge that you have read and understood this Policy.  If you do not agree, please refrain from using the Services.

Data We Collect

We collect several types of information from you:

• Personal Identification Information: Such as your name, email address, contact information, and account login credentials, which you provide when signing up or creating your profile.
• Epigenetic or Genetic Data: Epigenetic or genetic information that you choose to submit to us (such as DNA test results or other biological data). This data is considered sensitive personal data, and we handle it with a high level of security and confidentiality.
• Health and Lifestyle Information: Information about your lifestyle, habits, wellness goals, or health metrics that you enter into the app (for example, dietary preferences, exercise routines, or sleep patterns) or provide through third party integrations.
• App Usage Data: Technical information automatically collected when you use the app, such as device type, operating system, IP address, and usage logs. This may include cookies or similar tracking technologies, which help us remember your preferences and analyze how you use our app.
• Payment Information: If you subscribe to our membership, we (or our payment processor) collect payment details (like credit card information and billing address) for processing membership fees. Note that payment data is handled by third-party payment processors; we do not store full credit card numbers on our own servers.
• Inferences & Derived Data: Insights, analyses, risk scores, recommendations, or other conclusions that we generate from any of the foregoing data.

We collect data directly from you and automatically through your use of our services.

How We Use Your Information

We use your personal information for the following purposes:

Provide & personalize the Services  – operate the app, analyze your data, and generate tailored lifestyle recommendations.
‍Service improvements & debugging – analyze aggregated, de‑identified data to enhance algorithms, fix bugs, and develop new features.
‍Account & transactional communications – send confirmations, membership updates, technical notices, or security alerts.
‍Marketing communications – if you opt in, send newsletters or offers; you may unsubscribe at any time.
‍Security & fraud prevention – detect and prevent abuse, protect the integrity of our systems, and comply with applicable laws.

Data Sharing

We handle your information responsibly and never sell your Genetic / Epigenetic Information. We share data only when necessary to run and improve the Services, and always under written contracts that require each vendor to protect confidentiality, apply strong security controls, and use the information solely for the purpose we specify.
‍AI analytics providers. We transmit selected genetic markers and relevant health metrics—pseudonymized whenever possible—to vetted artificial‑intelligence platforms that help us transform raw inputs into personalized insights for you.
‍Cloud‑hosting and storage providers. All application data, backups, and logs are stored on encrypted, access‑controlled cloud infrastructure operated by trusted vendors.
‍Payment processors. To complete subscription transactions we share your name, billing address, transaction metadata, and tokenized or partial payment‑card information with a certified payment gateway. We do not store full card numbers.
‍Customer‑support platforms. When you open a support ticket or contact us by email, we share your contact details, ticket content, and any relevant diagnostic data with our support management vendor so we can address your request.
‍Security and IT service providers. We share limited log data and system metrics with specialists who monitor, test, and secure our networks against intrusion and abuse.
‍Communications and marketing vendors. If you opt in to receive newsletters or push notifications, we provide your email address or device token and your notification preferences to our messaging providers.
‍Legal and safety authorities. We may disclose information that is required by law‑enforcement requests, court orders, or to protect the rights, property, or safety of Infinite Epigenetics, our users, or the public.
‍Business‑transaction partners. In the event of a merger, acquisition, or asset sale, we may transfer all relevant data to the acquiring or successor entity, subject to this Policy and advance notice to you.

Data Security

We employ a variety of administrative, technical, and physical safeguards to protect your personal data from unauthorized access, disclosure, alteration, or destruction. These measures include encryption of sensitive data (such as genetic information and payment details), secure HTTPS connections for data transfer, firewalls and intrusion detection systems, and regular security audits. We restrict access to personal data to our employees and contractors who need the information to operate, develop, or improve our services, and these individuals are bound by confidentiality obligations.
Despite our efforts, no security measure is 100% perfect, and we cannot guarantee absolute security of data transmitted over the Internet or stored on our systems. However, we continuously update and improve our security practices to mitigate new threats. In the unlikely event of a data breach that affects your personal data, we will notify you and the relevant authorities as required by law.

Genetic Data Storage and Protection

Because genetic and epigenetic data is highly sensitive, we take special care to store and protect it. Any genetic data you provide is encrypted both in transit and at rest on our servers. We store your genetic information on secure servers (which may be cloud-based in the United States or other countries with adequate protection standards) with strict access controls. Only authorized personnel or processors with a need-to-know are permitted to access decrypted genetic data, and they are bound by confidentiality obligations. We will never sell your genetic information to third parties. We will retain your genetic data only as long as necessary for the purposes of providing our service (and as required by law or our data retention policies), and you have the ability to request its deletion at any time (see “Your Rights” below).In the event we use third-party laboratories or services to process genetic material or data (if applicable), those parties will be contractually required to meet equivalent data protection standards. We understand the sensitivity of this information and work to ensure your privacy is preserved.

Children’s Privacy

The Services are not intended for anyone under 18 years of age.  We do not knowingly collect Personal Data from minors.  If you are a parent or guardian and believe your child has provided us data, please contact us so we can delete it.

Your Privacy Rights

Regardless of where you live, you have the following rights (subject to legal limitations):
‍Access – obtain a copy of the Personal Data we hold about you.
‍Rectification – correct inaccurate or incomplete data.
‍Erasure – request deletion of your data (“right to be forgotten”).
‍Restriction – ask us to suspend processing under certain conditions.
‍Portability – receive your data in a structured, machine‑readable format or have us transfer it to another controller.
‍Object to Processing – object to marketing or processing based on legitimate interests.
‍Withdraw Consent – withdraw any consent you previously gave us; this will not affect processing that has already occurred.
To exercise these rights, please email concierge@infiniteepigenetics.com from the address linked to your account.  We may need to verify your identity before proceeding and aim to respond within one calendar month.

Changes to this Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. If we make material changes, we will notify you by email (if we have your email on file) or by prominently posting a notice within the app or on our website prior to the change becoming effective. We encourage you to review this Privacy Policy periodically for any updates. The “Last Updated” date at the top of the policy will indicate when the latest changes were made.By continuing to use the Infinite app after any changes to this Privacy Policy take effect, you acknowledge the revised policy. If you do not agree with the updated terms, you should stop using the service and may request deletion of your data.

Contact Us

For privacy-related questions or requests, contact us at:

Infinite Epigenetics Privacy Team
Email: privacy@infiniteepigenetics.com
Mailing Address: 881 Corporate Dr. Lexington, KY 40503
‍
© Infinite Epigenetics All Rights Reserved.