Privacy Considerations in the Canadian Regulation of Commercially-Operated Healthcare Artificial Intelligence

被引:0
作者
Murdoch, Blake [1 ]
Jandura, Allison [1 ]
Caulfield, Timothy [1 ]
机构
[1] Univ Alberta, Hlth Law Inst, Fac Law, Edmonton, AB, Canada
来源
CANADIAN JOURNAL OF BIOETHICS-REVUE CANADIENNE DE BIOETHIQUE | 2022年 / 5卷 / 04期
关键词
health law; privacy; artificial intelligence; bioethics; legislation; Canada;
D O I
10.7202/1094696ar
中图分类号
R-052 [医学伦理学];
学科分类号
0101 ; 120402 ;
摘要
Artificial intelligence (AI) is increasingly being developed and implemented in healthcare. This presents privacy issues since many AI systems are privately owned and rely on data sharing arrangements for mass quantities of patient health information. We investigated the Canadian legal and policy framework focusing on regulation relevant to the potential for inappropriate use or disclosure of personal health information by private AI companies. This included analysis of federal and provincial legislation, common law and research ethics policy. Our evaluation of the various regulatory frameworks found that together they require private AI companies and their partners in healthcare implementation to meet high standards of privacy protection that prioritize patient autonomy, with limited exceptions. We found that healthcare AI systems are required to be consistent with the rules and foundational ethical norms enshrined in law and research ethics, even if this poses challenges to implementation. Data sharing arrangements must focus on tight integration with high levels of data security, strong oversight and retention of patient control over data.
引用
收藏
页码:44 / 52
页数:10
相关论文
共 59 条
  • [1] [Anonymous], 2015, HOPKINS V KAY
  • [2] [Anonymous], 2012, Jones v Tsige
  • [3] [Anonymous], 2017, GEORGETOWN LAW TECHN
  • [4] [Anonymous], 2017, OLIVEIRA V AVIVA CAN
  • [5] [Anonymous], 1988, v Dyment
  • [6] [Anonymous], Personal Information Protection Act
  • [7] [Anonymous], 2018, TRIC POL STAT ETH CO
  • [8] [Anonymous], 1996, Health Insurance Portability and Accountability Act of 1996 (HIPAA), Pub. L. 104-191,42 U.S.C. 300gg, 29 U.S.C 1181-1183, and 42 U.S.C. 1320d-1320d9
  • [9] [Anonymous], 2016, General Data Protection Regulation (EU)
  • [10] [Anonymous], 1992, McInerney v MacDonald