Google’s ‘Project Nightingale’ Gathers Personal Health Data on Millions of Americans
Maybe Keith Enright Legal Director of Privacy @GOOGLE @ALPHABET isn’t as bad as Hitler but Keith was the next one in line (under Sergi and Brin) who agreed to do the dirty work of making sure none of us would ever have our Data protected from the companies that sell our data. Who is going to get insurance now when they know everything that happens to us personally and to everyone in our family for all the next generations into the abyss. We are all Fucked !!!!!
Google launched the effort last year with Ascension, the country’s second-largest health system.
It’s all about buying and selling the electronic records they have on all of us!
STAY AWAY FROM THE “CRISTIAN” ORGANIZATION ASCENSION
a Catholic health care system based in St. Louis that operates across 21 states and the District of Columbia.
Eduardo Conrado was Ascension’s chief strategy and innovations officer, a role that ‘starts and ends with people’. September, Ascension named Eduardo Conrado to the system’s newly created position of executive vice president and chief digital officer. In July 2019, he was promoted to executive vice president and chief strategy and innovations officer.
Jacqueline Carberry Baratian joins Ascension as Chief Compliance Officer reporting to Christine Kocot McCoy, JD, Executive Vice President and General Counsel. Jackie has a thorough understanding of compliance and governmental requirements within the rapidly evolving healthcare environment. Currently a Partner at Alston & Bird, LLP, in Washington, D.C., she serves as outside counsel to healthcare industry clients on compliance plan development, implementation and audits, and performs compliance program assessments for hospitals, health systems and post-acute care providers. She is a member of the American Health Lawyers Association. Before joining the firm in 2016, Jackie served as Vice President & Chief Medicaid Compliance Officer with Aetna in Bethesda, Maryland, where she oversaw Aetna’s Medicaid Compliance Program nationwide
Google’s Cloud servers. The idea was that by using the system, Ascension health providers could use a tool called Patient Search to pull up individual patient pages. According to Forbes, which says it viewed a presentation on the topic, “The page includes complete patient information as well as notes about patient medical issues, test results and medications, including information from scanned documents.”
BRING A CLASS ACTION AGAINST GOOGLE NOW
BRING A CIVIL SUIT AGAINST KEITH ENRIGHT
BRING A CLASS ACTION SUIT AGAINST ASCENSION NOW
BRING ELIZABETH WARREN TO DISMANTLE GOOGLE NOW.
Keith Enright joined Google in March 2011 as Senior Privacy Counsel.
Keith Enright has data. Keith’s data isn’t in the database.
Project Nightingale: Google accesses trove of US patient data
Search giant is amassing health records from Ascension facilities in 21 states; patients not yet informed.
https://www.bbc.com/news/technology-50388464
Tech giants like Amazon and Apple are expanding their businesses to include electronic health records — which contain data on diagnoses, prescriptions and other medical information. That’s creating both opportunities and spurring privacy concerns.
https://www.wsj.com/articles/google-s-secret-project-nightingale-gathers-personal-health-data-on-millions-of-americans-11573496790
WHAT ABOUT HIPPA ??
THIS IS TOTALLY UNETHICAL AND ILLEGAL
Google, University of Chicago named in suit charging misuse of patient data
A lawsuit has been filed by a former patient of UChicago Medicine who claims his medical records – and those of hundreds of thousands of other patients – have been shared with Google without authorization.
UChicago Medicine, UChicago Medical Center, and Google have been named in the lawsuit. The suit claims patient information was shared with Google as part of study aimed to advance the use of artificial intelligence, but patient authorization was not obtained in advance and data were not properly deidentified.
https://www.hipaajournal.com/uchicago-accused-of-illegally-sharing-patient-data-with-google/
Google’s secret cache of medical data includes names and full details of millions – whistleblower
Google gets green light to access five years of NHS patient data
2019 Google is taking over DeepMind’s NHS contracts – should we be worried?
DeepMind was first revealed by New Scientist in 2016 and later ruled that it failed to comply with the law by the data watchdog for failures over informing patients.
A New Scientist investigation raises questions about the basis under which an NHS Trust is sharing patient data with Google’s AI firm
Did Google’s NHS patient data deal need ethical approval?
A New Scientist investigation raises questions about the basis under which an NHS Trust is sharing patient data with Google’s AI firm
THIS ISN’T ABOUT HELPING MEDICINE BUT ABOUT MAKING MONEY AND IT IS OUR NIGHTMARE
https://www.wired.com/story/ai-could-reinvent-medicineor-become-a-patients-nightmare/
GOOGLE BUYS FITBIT AS A DATA GRAB!!!
https://www.nytimes.com/2019/11/01/technology/google-fitbit.html
The ambition of Google’s parent company Alphabet is to develop new AI tools that can help predict health patterns and improve treatment. Google recently announced plans to buy Fitbit for $2.1bn, aiming to enter the wearables market and invest in digital health.
ETHICS ETHICS ETHICS ETHICS
Google and Ascension have released statements in the wake of the disclosure of Project Nightingale, insisting it conforms with HIPAA and all federal health laws. They said that patient data was protected.
Google Cloud told the Wall Street Journal that the aim was “ultimately improving outcomes, reducing costs, and saving lives”.
BULLSHIT BULLSHIT BULLSHIT
In a statement, Ascension said: “All work related to Ascension’s engagement with Google is HIPAA compliant and underpinned by a robust data security and protection effort and adherence to Ascension’s strict requirements for data handling.”
In the video, the whistleblower begs to disagree. In annotations that run over the leaked documents, they suggest that in future Google might be able to sell or share the data with third parties, or create patient profiles against which they can advertise healthcare products.
“Patients haven’t been told how Ascension is using their data and have not consented to their data being transferred to the cloud or being used by Google. At the very least patients should be told and be able to opt in or opt out,” the whistleblower writes.
How and why should security be tied to HIPAA?
The requirement to comply with one standard or the next does provide a few benefits to your organization. Certain standards leave significant room for interpretation, giving you the ability to tie security measures that should be implemented to a portion of that same standard. When compliance is involved there are now social, political, and legal components added that can be leveraged to implement security controls and process changes that may not have been possible otherwise. It also may present the opportunity to piggyback off another department that has excess budget for a project.
The Health Insurance Portability & Accountability Act (HIPAA) was enacted in 1996 as law and establishes national standards for electronic healthcare records. It includes any organization that stores or processes ePHI (Electronic Protected Health Information) healthcare providers, health plans, and clearinghouses. There are fifty “implementation specifications,” divided into administrative, physical, and technical safeguards. Most specifications listed involve having policies and procedures in place. Addressable specifications involve performing a “risk assessment” and then taking steps to mitigate the risks in a way that’s appropriate for your organization. One of the largest HIPAA penalties against a small organization was levied not because an event occurred, but because the organization failed to address the possibility. Loss of ePHI can cause significant harm to not only the patients whose data has been compromised, but also the provider and individuals at fault as they are required to report violations to the US Department of Health and Human Services (HHS), the Federal Trade Commission (FTC), and are susceptible to extremely large fines and jail time. The HHS provides a breakdown of each portion of the security rule portion of HIPAA and assistance with the implementation of the security standards.
https://infosystir.blogspot.com/2018/01/hipaa-vs-security-building-security.html