Privacy Policy.

We collect information you provide directly — name, email address, phone number, organisation name, and lab type — when you request a demo, contact us, or create an account.

We automatically collect usage data including IP address, browser type, device information, pages visited, and interaction patterns to improve our platform and your experience.

When you use LIMSera's platform, your laboratory data (samples, results, reports) is stored securely. This data belongs to you — we are a data processor, not a data owner.

To provide, operate, and maintain the LIMSera platform and services.

To process your requests, respond to enquiries, and provide customer support.

To send product updates, security alerts, and service-related communications.

To improve our platform through anonymised usage analytics and performance monitoring.

To comply with legal obligations and enforce our terms of service.

We never sell your personal data to third parties. We never use your laboratory data for any purpose other than providing the service you have contracted.

All data is encrypted with AES-256 at rest and TLS 1.3 in transit. Our infrastructure is SOC 2 Type II certified and ISO 27001 aligned.

SaaS customer data is stored in regional data centres — you choose your data residency region (North America, Europe, Asia Pacific, or Middle East). Data never leaves the jurisdiction you select.

Self-hosted customers retain complete control over their data location and infrastructure.

We conduct annual penetration testing, vulnerability scanning, and security audits by independent third parties.

Access to customer data is restricted to authorised personnel on a need-to-know basis, with all access logged and auditable.

We retain your personal data for as long as your account is active or as needed to provide services.

Laboratory data is retained per your configured retention policy and applicable regulatory requirements.

Upon contract termination, all your data is securely deleted within 30 days. A certificate of destruction is provided on request.

You can request export or deletion of your data at any time by contacting contact@limsera.com.

Access — You have the right to request a copy of all personal data we hold about you.

Correction — You can request correction of inaccurate or incomplete personal data.

Deletion — You can request deletion of your personal data, subject to legal retention requirements.

Portability — You can request your data in a machine-readable format (JSON, CSV, SQL).

Objection — You can object to processing of your data for marketing purposes at any time.

These rights apply regardless of your location. We respond to all data requests within 30 days.

We use essential cookies required for platform operation, and optional analytics cookies to understand usage patterns.

You can manage cookie preferences through your browser settings or our cookie consent banner.

For detailed information about our cookie usage, see our Cookie Policy.

We use a limited number of third-party services for hosting (cloud infrastructure), analytics (anonymised usage data), email delivery, and payment processing.

All third-party providers are contractually bound to protect your data and process it only as instructed by us.

We do not share your laboratory data with any third party for any reason.

We may update this privacy policy from time to time. Material changes will be communicated via email and/or a prominent notice on our platform at least 30 days before they take effect.

Continued use of the platform after changes constitutes acceptance of the updated policy.

For privacy-related enquiries, data requests, or concerns, contact our Data Protection Officer at contact@limsera.com.

USA: +1 (800) 368-4805 · India: +91 98710 20016