[the_sleaze_]

Almost zero chance this technology doesn't break HIPAA law somehow.

> our data is stored securely and encrypted on servers under Legalyze.ai's control.

If you found out a law firm is sending your medical records to a third party without any prior BAA or consent....

[alwa]

Then again if it's your law firm, the one who's representing you; and doing so lets them build your case at half the cost in research hours... or lets them figure out whether they can take your case where it might not have been worth their time to see before? I don't know much about how these things work, but I could see where people I know might consent to such a thing.

[ttyprintk]

Today, both sides already have some level of access to medical records; could be a judge’s decision.

And when it comes to medical records for people unrelated to the lawsuit, using de-identified cases is not a violation of HIPAA. The question is: can we use AI on those full cases and de-identify afterward? Is using AI on de-identified cases allowed (because the de-identification process can mess with chronology)?

[tiahura]

Only “covered entities” and their “business associates” fall under HIPPA. Most firms don’t meet the definition.

[chrisford]

This is correct. Also, when a law firm client goes under contract with a firm, they often sign HIPAA-compliant medical-release documentation.

Some software providers in the AI medical space are conservative here and have customers sign a BAA directly on signup.

[agieocean]

And HIPAA law actually matters so I don't think this would fly under the radar

[marcinzm]

Even if it was covered it will definitely fly under the radar for the next four years at least.