Doctolib Faces Scrutiny Over AI Use and Patient Data Privacy

The event involves the use of AI systems (AI-powered consultation assistant) processing sensitive health data. Although Doctolib asserts strict contractual and technical measures to prevent misuse, the article emphasizes the plausible risk of data being used improperly or accessed under legal compulsion (e.g., Cloud Act), which could lead to violations of data protection laws and harm to individuals' privacy rights. No actual harm has been reported yet, but the credible risk of future harm due to potential data misuse or loss of control qualifies this as an AI Hazard rather than an AI Incident. The article does not describe a realized incident but focuses on the plausible risks and regulatory concerns, so it is not Complementary Information or Unrelated.

The article discusses the alleged use of personal health data by Doctolib to train AI models, which if true, could constitute a violation of data protection laws and human rights related to privacy. However, since Doctolib firmly denies these allegations and no confirmed harm or data breach is reported, the event does not describe a realized harm incident. Instead, it highlights potential risks and public concern about AI's role in handling sensitive data, which could plausibly lead to harm if data leaks occur. Therefore, this situation fits the definition of an AI Hazard, as it involves plausible future harm related to AI use and data privacy, but no confirmed incident has occurred yet.

The article describes an AI system in use (the consultation assistant) that processes sensitive health data. While Doctolib denies misuse and claims strong technical and contractual safeguards, the potential for data exposure under US law and the opaque nature of AI data handling create a credible risk of harm to patient privacy and rights. No actual harm or breach is reported yet, but the plausible future harm from data misuse and privacy violations justifies classification as an AI Hazard rather than an AI Incident. The focus is on potential risks rather than realized harm, and the article calls for regulatory investigation, reinforcing the hazard classification.

The event involves AI systems (large language models used for transcription and note-taking) and concerns about data privacy and potential misuse. However, no direct or indirect harm has been reported or confirmed. The article mainly provides complementary information about the use of AI in healthcare services, the company's data handling practices, and the surrounding debate. Therefore, it does not meet the criteria for an AI Incident or AI Hazard but fits the definition of Complementary Information as it enhances understanding of AI use and governance issues in this context.