Microsoft has unveiled Copilot Health, a new feature that serves as a secure environment within its Copilot system, aimed at facilitating health-related inquiries. This innovative tool will allow users to ask questions about lab results, explore medical records, seek provider information, analyze data from wearable devices, and engage in various health-related discussions. The launch will be rolled out in phases, meaning not all users will have immediate access; however, interested individuals can sign up for a waitlist.
The company emphasizes that Copilot Health is not designed to replace medical professionals or provide diagnoses. Instead, it aims to assist users in understanding their health data more effectively. Users can incorporate medical records from over 50,000 healthcare organizations across the U.S. through HealthEx, as well as track lab test results via Function. Additionally, the platform is compatible with more than 50 types of wearable devices, including popular brands like Apple, Oura, and Fitbit. The Copilot Health homepage will display information such as users’ current step counts and reminders for upcoming medical appointments, based on the data they choose to share.
In terms of provider search functionality, Copilot Health is linked to real-time directories of U.S. healthcare professionals, enabling users to find providers according to specialty, geographic location, languages spoken, and accepted insurance plans. Microsoft has invested in bolstering the reliability of information presented within Copilot Health, sourcing answers from credible health organizations across 50 countries, complete with citations and “expert-written answer cards” provided by Harvard Health.
Microsoft assures users that conversations within Copilot Health are kept separate from general Copilot interactions, under stringent access, privacy, and safety protocols. Importantly, the company states that data generated from these health-related chats will not be utilized for training AI models. Users retain full control over their health data, including the ability to delete it or choose to disconnect data sources whenever they desire.
In a similar vein, OpenAI introduced ChatGPT Health earlier this year, which also offers a dedicated, secure space for medical discussions. However, Microsoft currently does not offer a HIPAA-compliant version of Copilot Health. This raises a concern, especially given that competitors like ChatGPT for Healthcare and Amazon’s Health AI have tailored their services to comply with HIPAA regulations, with Anthropic’s Claude for Healthcare also positioned as “HIPAA-ready.”
During a press briefing that preceded the announcement, Dr. Dominic King, VP of health at Microsoft AI, pointed out that HIPAA compliance is not a prerequisite for consumer-directed software that uses personal data. He highlighted the importance of adhering to the highest standards in data security, indicating future plans for updates related to “HIPAA controls,” though specifics were not shared.
Furthermore, Dr. King confirmed that Copilot Health has attained ISO 42001 certification, which serves as a benchmark for responsible AI usage, ensuring transparency and reliability. Both Microsoft 365 Copilot and Copilot Chat also carry this certification.
Despite these certifications and potential future efforts toward HIPAA compliance, experts urge caution when sharing sensitive health data with AI systems. Historical evidence shows that AI can sometimes provide inaccurate or harmful medical advice, especially concerning mental health. The dynamic nature of AI privacy policies adds an additional layer of risk, prompting users to carefully consider their engagement with health-focused AI technologies.
