What's Happening?
Italy has enacted a comprehensive AI law, Law No. 132/2025, which is the first of its kind among EU Member States. This legislation introduces national principles, transparency rules, and sector-specific requirements that directly affect medical practices
and the healthcare sector. US healthcare companies and medical researchers operating in Italy must comply with these new regulations, which include patient rights and transparency requirements, non-discrimination and algorithmic fairness, and human oversight in medical decision-making. The law mandates that patients be informed when AI systems are used in their care, and it prohibits AI-based discrimination in healthcare access. Additionally, it requires bias testing and validation for healthcare AI systems. The law also prohibits fully automated medical decisions, ensuring that physicians retain ultimate decision-making authority.
Why It's Important?
The enactment of Italy's AI law is significant for US healthcare companies and researchers as it sets a precedent for AI regulation in Europe. The law's requirements for transparency, non-discrimination, and human oversight present both challenges and opportunities for US companies. Compliance with these regulations is crucial for companies to maintain their market presence in Italy and potentially gain a competitive advantage. The law also opens new pathways for medical research by allowing the use of personal health data to train AI systems and the secondary use of de-identified health data without consent. This could transform access to rich Italian health datasets for AI research, offering opportunities for comparative effectiveness studies and algorithm validation.
What's Next?
US healthcare organizations must take immediate action to comply with Italy's AI law. This includes reviewing AI systems used in Italy, conducting gap analyses focused on patient notification and non-discrimination, and implementing patient notification protocols. Medical researchers should identify Italian partners and prepare for the notification processes required by the Italian Data Protection Authority. As Italy's AI law is the first implementation among EU Member States, it provides a preview of Europe's AI regulatory future. US organizations that master these requirements will be better positioned for broader European compliance and competitive advantage.
Beyond the Headlines
Italy's AI law also introduces new criminal offenses, creating risks for US executives and employees. The law criminalizes the distribution of deepfakes and the unlawful extraction of copyrighted online content using AI systems. US companies must conduct thorough due diligence on training data sources and document their legal basis for data use to mitigate these risks. The law's focus on algorithmic fairness and bias testing reflects a broader trend towards ensuring ethical AI practices, which could influence future AI regulations globally.
