Readit News logoReadit News
l5t commented on Show HN: Using GPT-3 and Whisper to save doctors’ time    · Posted by u/ar7hur
sebastiennight · 2 years ago
I read the French legal documents and your notices regarding GDPR.

What I don't understand from those, and statements made by your team in this thread, is how some claims can be compatible.

- That the product is GDPR compliant.

- That you don't store the PII or health data.

- Yet all data is stored at Google servers.

- Also, you reserve the right to re-use said data. (Which, since this is for R&D purposes, should probably qualify you for the need to ask the CNIL for an authorization as "health data repository"? [0])

- That none of the data is sent outside the EU or to additional 3rd parties.

- Yet it uses a fine-tuned "GPT-3" (a term that to the best of my knowledge exclusively refers to Microsoft/OpenAI's US-based API service, not to on-prem GPT-like LLMs like GPT-J or GPT-NeoX).

All in all, I can feel the enthusiasm but it does feel like this thread would have been so much more reassuring with some proactive comments about the privacy/health data issues, rather than have everyone voice the obvious concern with no prepared answers.

[0] https://www.cnil.fr/fr/la-cnil-adopte-un-referentiel-sur-les...

l5t · 2 years ago
You're absolutely right, we should have been much more upfront with the privacy/security aspect of the product and add this link to the post: https://www.nabla.com/blog/privacy-security/

I hope this link will clarify our position.

Here are additional answers related to your points. - We do use Google Cloud to host our backend in EU or in the US but also the data for the Care Platform product. For the Copilot product, we don't host any data. They are hosted locally on the practitioner browser. - Our T&C reserves the right to re-use data in the event we will store the data in future versions of Nabla Copilot. In any case, the reuse of data, even health data, is allowed by GDPR for the improvement of the service provided if the data controller (practitioner) authorizes us and if they have informed the patient. - We did not say that "none of the data is sent outside the EU". Actually we say the opposite in the Copilot APD Annexe 1. We specifically mention Google and OpenAI and we comply with GDPR with a data protection agreement with both these companies.

l5t commented on Show HN: Using GPT-3 and Whisper to save doctors’ time    · Posted by u/ar7hur
jeroenhd · 2 years ago
Perhaps avoiding commenting on patient privacy concerns may be a better answer than any evasive answer may ever be.

Their website's privacy policy doesn't say anything about their product. It's also incorrect (they seem to have switched tracking providers without updating their privacy policy). I would quote the sections that are incorrect, but their terms and conditions forbid copying any content from their site. Their T&C also forbids me from linking to their page or terms.

I very much doubt that using this product as advertised is even legal under the GDPR. The company is French and health data, even pseudonymized, is strictly regulated. The "demo" doesn't feature any explicit consent at the very least.

It looks like they're making all privacy risks and concerns the doctors' problems. After all, they're the ones violating the law when they use this product.

l5t · 2 years ago
Thanks for looking into our legal documents. The ones related to the Nabla Copilot product are different from the website T&C and privacy policy, and can be found here: https://www.nabla.com/legal-documents/

Our product is GDPR compliant.

l5t commented on Show HN: Using GPT-3 and Whisper to save doctors’ time    · Posted by u/ar7hur
norgie · 2 years ago
Is Whisper really up to this? When I've used it, it's...fine. But it also randomly dreams up weird transcriptions that have nothing to do with what's actually being said, and with perfect audio too. Like the audio will be a presentation at a tech conference, and Whisper will predict "check out our site at randomlink.com", when no one said anything close to that.

I'd be pretty concerned if my doctor relied on this to be honest.

l5t · 2 years ago
Good point, this is why we finetune Whisper with our own medical dataset to improve the performance
l5t commented on Show HN: Using GPT-3 and Whisper to save doctors’ time    · Posted by u/ar7hur
JohnFen · 2 years ago
As a patient, this is an application that I would be extremely wary of, personally. I don't want the details of my conversations with my doctor to be sent to a third party in the first place, and I wouldn't trust the results of the transcription to be correct.

My doctor could vet it for accuracy, I suppose, but why? He's already putting his notes in my records anyway.

l5t · 2 years ago
It takes 40% of your doctor time to put his notes in your medical records. We have been testing with doctors to reduce this time drastically so that they can spend more quality time with you. We also interviewed a lot of patients who take notes to be able to remember what’s been discussed during a consultation. So it could also benefit the patient
l5t commented on Show HN: Using GPT-3 and Whisper to save doctors’ time    · Posted by u/ar7hur
tomasyany · 2 years ago
It looks pretty neat! Just wondering, what other languages are supported? English seems pretty natural as it is where GPT-3 thrives, but have you been able to support other languages as well?
l5t · 2 years ago
We currently support English and French and we will be supporting more soon
l5t commented on Duckling: a Clojure library that parses text into structured data   duckling.wit.ai/... · Posted by u/getdreambits
jcadam · 6 years ago
Out of curiosity, why the move from Clojure to Haskell?
l5t · 6 years ago
Scalability. More context on the move from the 2017 post https://medium.com/wit-ai/open-sourcing-our-new-duckling-47f...

u/l5t

KarmaCake day56January 17, 2014
About
Product @Nabla.com, previously cofounded Wit.ai
View Original