GreyMatters

 

The Latest Hospital Digital Marketing Articles

GreyMatters is your hospital digital marketing guide, with articles on hospital digital marketing best practices, trends, updates and more.

 

GPT-5 and HIPAA Compliance

In a recent interview with a cybersecurity and privacy expert, the topic of HIPAA compliance with GPT-5 was discussed, in light of the release of OpenAI’s release of the updated version of GPT. OpenAI claims that GPT-5 is a “legitimate Ph.D. expert” that should be used for healthcare applications

image of GPT-5 logo

OpenAI has joined into a collaboration with Oracle and SoftBank to create Project Stargate, which aims to build out the infrastructure necessary for a healthcare-focused AI platform.

HIMSS’s Lee Kim, senior principal of cybersecurity and privacy, stressed that there is an important distinction about when HIPAA does and does not apply. A patient sharing their own health information with GPT-5 on their own would be subject to HIPAA compliance, but when a provider uses the patient’s information or gives the patient access to a GPT-5 tool, then the provider is responsible for protecting the patient’s information, and HIPAA would apply. She went on to emphasize that HIPAA only applies to regulated entities, i.e., a covered entity, business associate, or a component of an organized healthcare provider.

Kim touted the many healthcare uses of AI but acknowledged that there must be a strong emphasis on keeping patient information private and secure, and disclosed and used only when medically necessary.

Kim noted that AI’s positive attributes include:

  • Faster problem solving
  • Better approaches to address complex healthcare challenges
  • Providing patient education that is more comprehensive and effective
  • Speeding up the processes of discovering and improving pharmaceuticals
  • Providing a holistic view of the patient that may lead to insights and solutions an individual might not find on their own.

About Project Stargate, Kim said the project is in alignment with the White House AI Action Plan Pillar II, which is focused on providing a robust AI infrastructure and resources to meet an unmatched demand for computing, especially in healthcare.

But it will take more than infrastructure. Kim said that cybersecurity is equally important.