[dannypdx]

I'll get flamed and downvoted if I name the open source project I've been grinding on for over a year to address sensitive data access by autonomous agents in a way that is similar... but I've been thinking of similar things - data sovereignty.

I think the solution is is for people to own their data, with cryptographic protections and audit trails. We should have the ability to grant JiT privileges to extremely narrowly scoped pieces, as needed, scrubbed of PII prior to egress. Patients should have to cryptographically sign temporary access, which is revoked immediately after the task... the ux should be as simple as a docusign... I could go on and on...

But, yeah, you're not alone.

[SERSI-S]

You’re absolutely right. In my opinion, data like medical records is the most sensitive data in the world. How can you possibly entrust your data to another institution or organization when you don’t know if it could just be taken without your consent? I see a lot of medical records circulating out there being bought and sold, looking like a pile of trash.

I looked at this repository and tried running it: https://github.com/Mzhvnn-tch/sehati-apps. Maybe you can see how this workflow operates.