MPs have raised serious concerns over NHS England’s decision to give Palantir access to identifiable patient data. The move is seen as risky and could undermine public trust in how sensitive health information is handled. Critics worry that allowing a US tech company such broad access might compromise patient privacy and security.

NHS Data Access Under Scrutiny

NHS England has reportedly granted Palantir, a US-based software firm, unlimited access to certain patient data. This access was granted before the data was pseudonymized, raising alarms among officials and privacy advocates. The data involved is part of the federated data platform, which stores identifiable health information meant for improving medical services through AI and data integration.

Internal NHS documents acknowledged public concern about how much access Palantir and its staff have. Despite assurances that external consultants need government security clearance, critics argue that the process is too lax, especially given the sensitive nature of the data involved. The move was made recently, with reports indicating the company was granted extensive access to the system’s data pipelines.

Concerns from Campaigners and Politicians

Campaigners, including the Patients Association, have called for more transparency. They say patients weren’t properly consulted about the change and fear it could erode trust in the NHS. Rachel Power, the association’s chief, emphasized that patients want clear boundaries on who can access their data and want to be involved in decisions about it.

Some politicians have also voiced criticism. Labour MP Rachael Maskell, a former NHS worker, warned that the project’s expansion risks opening NHS data to private interests. She urged the government to take control before the situation worsens. Others, like Liberal Democrat members, have criticized the NHS’s approach to data security, suggesting that the system lacks proper safeguards from the start.

Palantir insists it is only a data processor, not a controller. The company states that it can only process data according to instructions from its clients, and its software includes granular access controls. They claim that using data for anything outside those instructions would be illegal and technically impossible due to safeguards put in place by the NHS.

Overall, the debate centers around balancing technological progress with privacy. While the NHS aims to modernize and improve healthcare through AI and data sharing, critics worry about the risks involved. The controversy highlights ongoing concerns about the involvement of private firms in public health data and the importance of transparency and security in handling sensitive information.

Inspired by

• https://www.theguardian.com/society/2026/may/11/palantir-access-nhs-england-patient-data

Sources

• nhs.uk
• opendemocracy.net