Health Care AI and Patient Privacy
JAMA Network February 19, 2024
A federal appeals court recently rejected a lawsuit that claimed that a hospital violated patients’ privacy by sharing electronic health record (EHR) data with Google for medical artificial intelligence (AI) development.1 This lawsuit provides crucial insight into legal issues hospitals may face if they share EHR data with for-profit companies, even if these data do not explicitly identify individual patients.
Google entered a research partnership with the University of Chicago, including its medical center (UC), to develop an AI model that could predict significant medical events and reduce hospital readmissions. UC shared with Google “de-identified” EHR data from adult patients encountered between January 2010 and June 2016.1 These data still contained “dates of service” and “de-identified, free-text medical notes.”2 The...