UK law firm sues Google subsidiary for breach of data protection laws – JURIST – News

A British law firm, Mishcon de Reya, announced on Thursday that it bring a representative costume against Google’s artificial intelligence (AI) subsidiary DeepMind Technologies on violation of data protection laws arising from DeepMind’s data sharing agreement with the Royal Free London National Health Service (NHS) Foundation Trust.

In 2015, DeepMind and the NHS announced a collaboration for developing an app for clinicians treating kidney disease. The idea was to streamline alerts and access to patient data for a faster and more accurate prognosis of acute kidney injury (AKI) by doctors and nurses.

However, when the data sharing agreement was made public, it was revealed that DeepMind had access to a wide range of data including admissions, discharges and transfers, accidents, emergencies, intensive care, pathology and radiology. The NHS, which operates three hospitals in the UK and covers up to 1.6 million patients, would share access to five years of patients’ historical medical records without obtaining their knowledge or informed consent.

UK data protection regulator, the Information Commissioner’s Office (ICO), in 2017 sanctioned the NHS for not having respected the country’s obligations Data protection law. Although the app has been used by the Royal NHS Trusts since 2015, it has been discontinued over time. In August, Google announced that it would be decommissioning the app.

The Mishcon representative’s lawsuit is similar to a class action lawsuit in the United States and will have significant ramifications for the large-scale access and use of health data by technology companies in a post-pandemic and post-pandemic UK. -Brexit. Ben Lasserson, the senior partner in the case, said:

This important statement should help answer fundamental questions about the handling of sensitive personal data and special category data… It comes at a time of heightened public interest and understandable concern about who has access to personal data and data. people’s medical records and how this access is managed.

About the author