How Medical Imaging AI Could Expose Your Private Health Data — and What to Do About It
Artificial intelligence is transforming radiology. Algorithms now help detect tumors, fractures, and other abnormalities faster than a human eye might catch them, sometimes with higher accuracy. But the same technology that powers these advances also creates new risks for patient privacy. A recent study presented at the Radiological Society of North America (RSNA) 2026 meeting revealed that deepfake X‑rays can fool both radiologists and the AI systems meant to catch problems. This is not a hypothetical threat. Real medical images are being used to train AI models, and the safeguards around that data are often weaker than patients assume.
What happened: The deepfake X‑ray study
In March 2026, RSNA published research showing that manipulated X‑rays could be crafted to add or remove medical conditions such as lung nodules or fractures. The team used generative adversarial networks (GANs) to alter real chest radiographs. When radiologists and commercial AI tools were shown both real and fake images, they incorrectly diagnosed the deepfakes at concerning rates. The study did not suggest that widespread attacks are happening now, but it demonstrated that the technical barrier is low. If a bad actor gained access to a hospital’s imaging system, they could produce plausible‑looking forgeries with the potential to lead to misdiagnosis or to fraudulently alter medical records.
Why it matters: More than just fakes
The deepfake threat draws attention, but the larger issue is the routine handling of medical imaging data. AI models require vast quantities of labeled images to train. These datasets are often assembled from hospital archives, sometimes without explicit consent from patients. Anonymization is common, but it is not foolproof. Researchers have shown that de‑identified medical images can sometimes be re‑identified by matching them with other public data. Once your images are used to train a commercial AI tool, you lose control over where they end up. A study from the same RSNA meeting highlighted that many institutions do not have clear policies governing AI training data, leaving patients in the dark.
What readers can do
You cannot fully insulate yourself from these risks, but you can take concrete steps:
- Ask your provider about data use. Before you undergo an imaging exam, ask whether the images might be used for AI training. Some hospitals have opt‑out forms. If they do not, consider asking them to note in your record that you do not consent to your data being used for purposes beyond your direct care.
- Check the privacy policy of any health‑tech app you use. Some consumer‑oriented imaging tools or tele‑radiology services share data with third parties. Read the fine print.
- Support stronger regulation. The Health Insurance Portability and Accountability Act (HIPAA) does not specifically address AI training. Several proposed bills at the state and federal level would require explicit consent and transparency. Contacting your representatives can help push these forward.
- Encourage your healthcare provider to adopt secure methods. Some institutions are testing blockchain‑based consent logs and differential privacy to protect data. While not widespread, these techniques reduce the risk of misuse. Ask your hospital what security measures they use for AI datasets.
Sources
- Radiological Society of North America. “Deepfake X‑Rays Fool Radiologists and AI.” March 2026. Available at: https://news.google.com/rss/articles/CBMidEFVX3lxTE5OTVY4NFljbkJ6TWNEanRLU2s4VnZZcEwtR2oxUjN6cnpxSFJCZC1HTkdndjh4dldxQl9HWlFwNG5TN1lTdTJfRjR2QzRRNlEzdE14Y0RoNUdUaVlVUTZjaXp3aXRWZWowY2E2bzlhaWExVVls?oc=5
- Radiological Society of North America. “Radiologists Share Tips to Prevent AI Bias.” May 2025. (Discusses data provenance and consent issues.)
- Radiological Society of North America. “Medical Imaging AI Opens a Pandora’s Box of Privacy‑Related Risks.” May 2026. (Summary article covering these issues.)
The promise of AI in medical imaging is real, but so are the privacy threats. Staying informed and asking direct questions is the best defense for now.