Ask HN: LLM apps for doctors/lawyers in Germany given section 203
Hi HN, thanks for having a look! We are building productivity apps for doctors and lawyers in Germany and are a bit confused by the requirements of Section 203 (professional secrets). I have high hopes that someone here can help us answer our questions.
Section 203 (professional secrets) [1][2] states that companies must only use providers that offer the same level of secrecy or are contractually bound to section 203. How does this work when using LLM APIs from the big cloud providers (Azure, AWS, GCP), do they state somewhere that they are bound to section 203? I am guessing using OpenAI or Anthropic directly is a no-go?
Thank you very much for your time
[1]: https://www.telekom.com/resource/blob/1020528/f9504762be7deaeb66dab63d94024c1a/dl-obligation-to-protect-confidential-information-pursuant-to-section-203-stgb-aeb--data.pdf
[2] https://www.lewik.org/term/15709/violation-of-private-secrets-section-203-german-criminal-code/ Just found this from Azure which specifically talks about Section 203 from Germany:
https://assetsprod.microsoft.com/mpn/data-secrecy-amendment-... > Microsoft is aware of legal obligations with regard to allowing access to Customer’s clients’ information and that non-compliance with such obligations can entail criminal sanctions for the parties involved (cf. in particular §§ 203, 204 StGB) (imprisonment or fines). > Microsoft shall be obliged to maintain confidentiality in accordanc... Would be great to find something like this from AWS or GCP.