AI and Biotech Leaders Urge Congress to Enact DNA Data Protection Laws

In a rare show of unity, some of the most influential names in artificial intelligence and biotechnology are pressing U.S. lawmakers to establish strict legal protections for genetic data. The push comes as advances in AI driven genomics accelerate, raising urgent questions about privacy, security, and ethical use of DNA information. While Congress has long debated digital privacy reforms, the call to action from companies like Inceptive Nucleics and Alnylam signals a growing recognition that genetic data may be the most sensitive personal information of all, one that demands its own regulatory framework.

What Happened

This week, a coalition of AI and biotech firms formally urged Congress to pass legislation that would classify genetic data as a protected class of personal information. The effort is being led by Inceptive Nucleics, a startup specializing in AI powered RNA design, and Alnylam Pharmaceuticals, a pioneer in RNA interference therapies. Their joint statement argues that existing privacy laws, such as HIPAA, are insufficient to address the unique risks posed by large scale genomic data collection and analysis.

The timing of this advocacy aligns with broader concerns about the unchecked expansion of direct to consumer genetic testing and the growing role of AI in interpreting DNA sequences. Companies like 23andMe and Ancestry have already amassed genetic profiles from millions of individuals, while AI tools are increasingly used to predict disease risk, drug responses, and even behavioral traits from genetic markers. Without clear legal guardrails, experts warn that this data could be exploited for discriminatory purposes, such as denying insurance coverage or employment based on genetic predispositions.

Why Public Health Officials Are Concerned

Genetic data is not just another form of personal information, it is inherently predictive, immutable, and shared among biological relatives. Unlike a credit card number or password, DNA cannot be changed if compromised. This permanence makes genetic data a prime target for hackers, insurers, and even governments seeking to surveil or discriminate against certain populations.

Public health experts have long warned that the lack of federal protections could deter individuals from participating in critical research, such as clinical trials for rare diseases or cancer therapies. If people fear their genetic information will be misused, they may opt out of testing altogether, slowing scientific progress and leaving vulnerable populations without access to potentially life saving treatments. The National Institutes of Health NIH has already faced criticism for its handling of genetic data in large scale studies, underscoring the need for clearer oversight.

Who May Be Affected

The push for DNA safeguards impacts a wide range of stakeholders. For consumers, it means greater control over how their genetic information is used and shared. For researchers, it could mean stricter protocols for data storage and access, but also greater public trust in genomic studies. Healthcare providers may need to adapt to new consent requirements when ordering genetic tests, while insurers and employers could face restrictions on how they use genetic data to assess risk.

Perhaps most critically, the debate affects marginalized communities, who have historically been exploited in medical research. Without strong protections, there is a risk that genetic data could be weaponized to justify discrimination against groups with higher prevalence of certain genetic markers, such as sickle cell trait or BRCA mutations.

Government Response

Congress has yet to act on previous proposals to strengthen genetic privacy laws, such as the Genetic Information Nondiscrimination Act GINA, which was passed in 2008 but has not been updated to address modern threats. Lawmakers have introduced bills like the Genetic Information Privacy Act, but none have gained significant traction. The current push from industry leaders may provide the momentum needed to break the legislative gridlock.

The White House has also signaled interest in addressing AI related risks, including those tied to genetic data. Earlier this year, the Biden administration issued an executive order on AI safety, which included provisions for protecting sensitive biological data. However, without congressional action, these measures remain voluntary and lack enforcement mechanisms.

Prevention and Safety Guidance

Until federal laws are enacted, individuals can take steps to protect their genetic privacy. Experts recommend:

• Reviewing the privacy policies of genetic testing companies before submitting samples.
• Avoiding direct to consumer tests that share data with third parties, such as pharmaceutical companies or research institutions, without explicit consent.
• Using services that allow users to delete their genetic data or opt out of research studies.
• Being cautious about sharing genetic test results on social media or with employers, insurers, or other entities that could misuse the information.

For healthcare providers, the American Medical Association recommends obtaining explicit, informed consent from patients before ordering genetic tests, particularly those that may reveal sensitive information about disease risk or family history.

What Readers Should Know

This advocacy effort is not just about corporate responsibility, it is a recognition that genetic data is a public health issue. As AI continues to unlock new capabilities in genomics, the potential for both breakthroughs and abuses grows. The question is no longer whether genetic privacy laws are needed, but how quickly Congress can act to implement them. For now, the burden of protection falls on individuals, who must navigate a patchwork of state laws and corporate policies to safeguard their most personal information.

If successful, this push could set a precedent for how other sensitive health data, such as electronic health records or wearable device metrics, are regulated in the age of AI. The stakes are high, and the window for action is narrowing.

Key Takeaways

• AI and biotech companies are urging Congress to pass laws protecting genetic data, citing gaps in current privacy regulations.
• Genetic data is uniquely sensitive because it is permanent, predictive, and shared among family members, making it vulnerable to misuse.
• Without federal safeguards, public trust in genetic research could erode, slowing progress in disease treatment and prevention.
• Individuals can protect their genetic privacy by carefully reviewing testing company policies and limiting data sharing with third parties.
• Congress has yet to update existing laws like GINA to address modern threats, but industry advocacy may accelerate legislative action.

Frequently Asked Questions

Why is genetic data more sensitive than other personal information?

Genetic data is unique because it reveals not only your own health risks but also those of your biological relatives. Unlike other personal data, it cannot be changed if compromised, and it can predict future health conditions, making it a target for discrimination by insurers, employers, or even governments.

What are the risks of sharing genetic data with testing companies?

Many direct to consumer genetic testing companies share data with third parties, such as pharmaceutical firms or research institutions, often without explicit consent. This data could be hacked, sold, or used to deny insurance coverage or employment. Some companies also retain data indefinitely, even if users request deletion.

Has Congress taken any action to protect genetic privacy?

The Genetic Information Nondiscrimination Act GINA was passed in 2008 to prevent discrimination based on genetic information, but it has not been updated to address modern threats like AI driven data analysis or large scale genomic databases. Newer bills, such as the Genetic Information Privacy Act, have been proposed but not yet passed.

How can I protect my genetic data if I’ve already taken a test?

If you’ve used a direct to consumer genetic testing service, review their privacy policy to understand how your data is stored and shared. Many companies allow users to delete their data or opt out of research studies. You can also contact the company to request that your sample be destroyed. Avoid sharing raw genetic data files or test results with third parties unless absolutely necessary.

What could happen if genetic data is not protected by law?

Without legal protections, genetic data could be used to discriminate against individuals in employment, insurance, or lending decisions. It could also be exploited for targeted advertising, surveillance, or even blackmail. On a broader scale, lack of trust in genetic research could deter people from participating in studies, slowing medical advancements for diseases like cancer or Alzheimer’s.

---

Medical Review: MedSense Editorial Board