Back to Headlines
Health
Apr 08, 2026

NHS staff alarmed as Palantir engineers receive internal email accounts and data access amid £300m health tech contract

AI Summary
NHS personnel have raised concerns after Palantir engineers were granted NHS.net email accounts, giving them access to a directory of up to 1.5 million staff and internal collaboration tools. The issue surfaces alongside Palantir’s £300 million contract to deliver a Federated Data Platform for the health service, sparking debate over ethics, data security and the suitability of US‑based surveillance firms in the UK public sector.

Health‑service workers have voiced strong unease after it emerged that engineers from the controversial US tech firm Palantir were issued NHS.net email accounts. Those accounts unlock a directory containing contact details for as many as 1.5 million NHS staff members, as well as access to SharePoint file‑sharing and Microsoft Teams groups used by the service.

Palantir’s engineers are supporting the rollout of the Federated Data Platform (FDP), a £300 million contract awarded in 2023 to link patient records across disparate NHS systems. The government touts FDP as a cornerstone of its plan to "reinvent the NHS" by moving from analogue to digital, promising faster diagnoses, better appointment allocation and more personalised treatment.

While the use of NHS email accounts by external suppliers is not unprecedented, Palantir’s reputation for AI‑driven surveillance and military‑grade technology has amplified staff, patient and human‑rights concerns. Rory Gibson, a resident doctor, warned that his personal contact details should not be accessible to a company that also works on drone‑strike systems.

The Guardian has identified at least six Palantir engineers who have been given NHS.net credentials. In response, a Palantir spokesperson argued that such access is "normal practice for government suppliers" and cited official guidance that government systems are more secure than external alternatives.

Palantir claims its software has already yielded measurable benefits: 110,000 additional operations, a 15.3% reduction in discharge delays and a 6.8% rise in cancer diagnoses within 28 days of referral. The company stresses that it merely provides software, with data usage remaining under NHS control and subject to strict contractual confidentiality.

David Rowland, director of the Centre for Health and the Public Interest, acknowledged that granting NHS email addresses may not breach rules but highlighted the "deep ethical concerns" that Palantir’s profit‑driven model clashes with NHS values. He called for a comprehensive review of which private firms receive public‑sector funding.

Some NHS staff reported being placed in virtual Teams meetings with Palantir personnel who joined using NHS credentials, without any disclosure of their employer – a practice that further eroded trust.

Under the NHSmail access policy, "independent sector organisations" delivering health and social‑care services nationally may use NHSmail. An unrestricted NHS.net account can reveal staff roles, locations, workplace details and even grant access to commercial "Blue Light" discounts.

Palantir’s technology is already deployed by UK police forces and the Ministry of Defence, prompting critics to warn that its "drag‑and‑drop" interoperability could facilitate state overreach, including a potential British analogue of the US Immigration and Customs Enforcement agency.

The firm’s founders include US businessman and former Trump supporter Peter Thiel and CEO Alex Karp, both known for advocating aggressive surveillance tools. Its UK arm is led by Louis Mosley, grandson of historic British fascist leader Oswald Mosley.

An NHS spokesperson reiterated that all suppliers, including Palantir, operate strictly under NHS instruction, with data access governed by robust contractual confidentiality obligations.