Using AI in healthcare: Helping to Stay HIPAA compliant

April 08, 2026
Jeff Wurzburg Susana Medeiros Susan Linda Ross Abel Chacko Kathleen Rubinstein
Jeff Wurzburg Susana Medeiros Susan Linda Ross Abel Chacko Kathleen Rubinstein
Posted in Artificial intelligence Data protection Life sciences and healthcare

Healthcare providers are rapidly adopting artificial intelligence (AI) for clinical and operational uses, often involving protected health information (PHI) that is governed by HIPAA’s Privacy Rule. Regulation is tightening through HIPAA’s existing requirements, proposed HHS updates and state AI laws, which creates new expectations for transparency, vendor oversight and documentation.

To help stay compliant, providers should define accountability for AI decisions, track where AI is used, set guardrails before deployment and continuously monitor risk, especially through HIPAA risk analysis, appropriate safeguards and BAAs where required.

Read our full publication, "Navigating AI compliance with HIPAA essentials" to dive deeper into the evolving regulatory landscape and see practical, implementation-focused suggestions for providers.