this post was submitted on 11 Nov 2024
563 points (99.3% liked)

Privacy

1221 readers
40 users here now

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 13 points 4 days ago (1 children)

Normally, I'd install the app to find out, but I can't really install any more apps on my phone. And oh man, do I never like seeing the phrase "collect data to improve [their] algorithm".

[–] [email protected] 14 points 4 days ago (1 children)

In general, medical predictions are a very good example of using AI to benefit humanity, not just shareholders. It's still scary if it's done by a private company.

[–] [email protected] 3 points 4 days ago (1 children)

It's a German company, so I have no idea if they have an equivalent to HIPAA(USA) or if a private company would even have to comply with it.

[–] [email protected] 3 points 4 days ago (1 children)

health data in all of eu regulated by gdpr. but did not find reference quick (lost link). but special protection on health data, hipaa is joke compared.

on other hand, all data you tell your doctor confidential (Arztschweigepflicht). legally even police or judge cannot ask for what you talk about.

[–] [email protected] 1 points 4 days ago (1 children)

Does this company fall under those rules? Even if the person isn't a citizen of Germany?

[–] [email protected] 5 points 4 days ago

https://commission.europa.eu/law/law-topic/data-protection/reform/rules-business-and-organisations/application-regulation/who-does-data-protection-law-apply_en

The GDPR applies to:

  1. a company or entity which processes personal data as part of the activities of one of its branches established in the EU, regardless of where the data is processed; or
  1. a company established outside the EU and is offering goods/services (paid or for free) or is monitoring the behaviour of individuals in the EU.

company definitely fit 1.

https://insight.thomsonreuters.com/mena/legal/posts/gdpr-breaking-down-the-general-data-protection-regulation

Does GDPR apply to non-EU citizens?

Yes, it applies to non-EU citizens under certain circumstances. The regulation is designed to protect the personal data of individuals within the EU, but its scope extends beyond EU borders. It applies to any organisation, anywhere in the world, that processes the personal data of individuals in the EU. This includes non-EU citizens who are in the EU at the time of data collection.

only location important for gdpr. but honest, bet they process all data the same. no idea if legally different, not lawyer.

if mean Artzschweigepflicht, that specific between you and doctor. was example for health data taken serious in germany.