Author: Andrea Marti, Neue Zürcher Zeitung
Source: NZZ Zurich
Publication Date: December 20, 2025
Reading Time: approx. 4 minutes
Executive Summary
University Hospital Zurich (USZ) has been using an AI-powered camera system from Danish provider Teton to monitor vulnerable patients since summer 2025 – without consulting the cantonal data protection officer. While the hospital emphasizes cost savings and improved patient safety, the data protection officer warns of disproportionate intrusions into privacy. The lack of transparency in the implementation process has led to political intervention.
Critical Key Questions (Liberal-Journalistic)
Freedom & Self-Determination: Was the right of vulnerable patients to informed consent regarding surveillance considered?
Transparency & Process: Why did USZ not inform the responsible data protection officer, despite obvious data protection issues?
Innovation vs. Regulation: Are regulatory hurdles justified, or do they impede necessary efficiency gains?
Accountability: Who bears liability for data security and cyber risks?
Proportionality: Is permanent AI video surveillance the only or best means of protecting against fall risks?
Scenario Analysis: Future Perspectives
| Time Horizon | Expected Development |
|---|---|
| Short-term (1 year) | Government council and data protection officer review the system; possible improvements or implementation halt; political pressure for transparent processes. |
| Medium-term (5 years) | AI surveillance systems in hospitals become standard; clear legal frameworks for privacy emerge or are lacking; cyber risks materialize or remain theoretical. |
| Long-term (10–20 years) | Social normalization of health surveillance or countermovements toward data minimalism; European standards prevail or national solutions dominate. |
Core Topic & Context
University Hospital Zurich is replacing traditional patient watch services – typically medical students – with an AI camera system that captures patient movements, anonymizes them, and transmits them to nursing staff. The system promises cost savings, better case documentation, and less infringement on patient autonomy than sitting watches. However, the implementation without data protection review has triggered parliamentary and regulatory criticism.
Key Facts & Figures
- The system has been in use at USZ since summer 2025
- Provider: Teton (Danish company)
- No storage of patient data; conversion to anonymized symbolic images
- No formal data protection process initiated, despite USZ's obligation to do so
- Four cantonal councilors (SP, Greens, AL, EVP) have filed a motion
- ⚠️ Security status unclear: claim of separation from internal network not independently verified
Stakeholders & Affected Parties
| Beneficiaries | Disadvantaged | Neutral Actors |
|---|---|---|
| USZ Operations (cost savings) | Vulnerable Patients (privacy) | FDP Cantonal Councilors (observing) |
| Nursing Staff (better information) | Data Protection Officers (compliance risks) | Government Council (review pending) |
| Teton (market entry) | Patient–Hospital Trust Relationship |
Opportunities & Risks
| Opportunities | Risks |
|---|---|
| Cost savings through automation | Permanent surveillance without explicit consent |
| More precise fall prevention than old floor sensors | Cyberattacks on camera systems (classic attack vectors) |
| Less infringement on autonomy than sitting watches | Insufficient data protection review |
| Better nursing response in emergencies | Unknown long-term effects on patient trust |
| ⚠️ Network isolation possibly subject to review |
Actionable Relevance
For USZ: Conduct formal data protection review immediately; publish transparency report on process and technology.
For politics: Clarify legal standards for AI surveillance in health facilities; establish patient participation requirements.
For decision-makers in general: Understand the distinction between true anonymization and pseudonymization; take cyber risks of isolated systems seriously.
Quality Assurance & Fact-Checking
- [x] Central statements from NZZ article verified
- [x] Stakeholder positions accurately represented
- [x] ⚠️ Technical security claims flagged with caveats
- [x] No independent security audit for network isolation mentioned
- [x] Both criticism and defense documented
Supplementary Research
Swiss Data Protection Law: Federal Office of Justice – Data Protection Act – requirements for hospitals in patient data processing
Comparative Practice: European hospitals (DE, AT, NL) and their standards for AI surveillance in hospitals
Cybersecurity Report: NZZ article from 22.09.2025 on US clinic information systems and data protection concerns – shows pattern of insufficient review
Source List
Primary Source:
Marti, Andrea (2025): »University Hospital Zurich monitors patients with AI – politics intervenes, data protection officer is concerned« – NZZ, December 20, 2025
https://www.nzz.ch/zuerich/universitaetsspital-zuerich-nutzt-ki-ueberwachung-politik-reagiert-ld.1917357
Supplementary Context:
- Huber, Marius (2025): »Software transmits sensitive patient data to the USA« – NZZ, September 22, 2025
- Hudec, Jan (2025): »Hospital software from the USA causes unrest in Zurich Parliament« – NZZ, January 6, 2025
Verification Status: ✓ Facts checked and cross-referenced with source text on December 20, 2025
This text was created with the support of Claude 3.5 Sonnet.
Editorial Responsibility: clarus.news | Fact-Checking: December 20, 2025