NHS Staff Are Refusing to Use Palantir — And the Reasons Go Beyond Privacy

The UK’s National Health Service is the largest single-payer healthcare system on Earth. And right now, its frontline staff are quietly, firmly refusing to play along with one particular technology platform: Palantir’s Federated Data Platform (FDP). When a company born from the US intelligence community shows up to handle the medical records of tens of millions of people, the people who actually touch that data every day tend to notice.

How Palantir Got Its Foot in the Door

The relationship started where so many questionable tech contracts do: a crisis. During the COVID-19 pandemic in 2020, NHS leadership brought in Palantir’s data analytics capabilities to build emergency response systems. The situation was urgent. Normal procurement procedures were, let’s say, abbreviated.

The problem came after the emergency ended. In 2023, NHS England awarded Palantir a contract worth roughly £330 million to build and operate the FDP — a platform designed to federate patient data across NHS trusts for operational analytics. Think waiting list management, surgical scheduling, resource allocation. Reasonable goals on paper.

But to many staff on the ground, the story read differently: a surveillance company that slipped in through the emergency exit was now walking through the front door and settling in permanently.

Three Reasons Staff Are Pushing Back

The objections cluster around three core issues, and none of them are trivial.

The company itself. Palantir was seeded by In-Q-Tel, the CIA’s venture capital arm. Its client list reads like a national security roll call: the Pentagon, ICE, intelligence agencies across the Five Eyes. Its work with ICE — where its technology was used to track undocumented immigrants, drawing direct links to family separation policies — remains a deep stain. Handing this company the health records of the British public strikes many clinicians as a category error.

Data sovereignty. Palantir argues the FDP doesn’t move data — it stays within each trust, analyzed in place through a federated model. Critics counter that this misses the point. If Palantir controls the access layer, the analytics logic, and the infrastructure stack, it holds de facto power over the data regardless of where the bytes physically sit. And the vendor lock-in question looms large: once clinical decision-making runs on Palantir’s rails, the switching costs become astronomical.

Consent and transparency. Most NHS patients have no idea their records are being processed through a Palantir system. The UK’s National Data Opt-Out scheme exists, but how it applies to the FDP remains murky. For a public health system built on the principle of universal trust, that ambiguity is corrosive.

What Resistance Looks Like on the Ground

This isn’t a single dramatic walkout. It’s distributed and persistent. At some trusts, technical staff are dragging their feet on FDP integration training. Others are slow-walking system onboarding. Medical ethics unions and civil society groups are campaigning openly.

Foxglove, a digital rights organization, has been particularly aggressive — filing legal challenges demanding transparency around the NHS-Palantir contract terms. Medical professional bodies have stated the principle plainly: patient data was collected for care, not to feed an American defense contractor’s revenue model.

This is bigger than a technology dispute. It’s a fight over a foundational question: who gets to control the core data asset of a public service, and on what terms?

Palantir’s Defense — and Its Structural Weakness

Palantir’s talking points are polished. The FDP doesn’t move data. Every access is audit-logged. The analytics improve patient outcomes. And to be fair, some trusts have reported genuine improvements in waiting list management after adoption. The operational value isn’t zero.

But the defense has a structural blind spot. Palantir’s entire business model depends on becoming irreplaceable. Once its analytics platform becomes the decision-making infrastructure, finding an alternative becomes prohibitively expensive. This is the playbook it runs everywhere — defense, intelligence, now healthcare. A system being technically secure and a system being structurally healthy are two very different things.

This Isn’t Just a British Problem

The NHS-Palantir standoff is a local flare-up of a global pattern. In the US, Palantir already operates core data infrastructure for the Department of Defense and HHS. Across Europe, similar contracts are in various stages of negotiation and controversy. The tension between data utilization and data protection is universal — but healthcare data, with its intimate detail and its basis in public trust, makes the stakes uniquely personal.

What the NHS staff revolt clarifies is this: decisions about technology adoption in public services cannot belong solely to executives and politicians. The people who handle the data daily, and the patients whose lives that data describes, need a seat at the table.

Public healthcare data exists to protect people’s health. The tools that analyze it should be effective — no argument there. But the history and incentives of the company building those tools cannot be waved away. It all comes down to one question: the company handling your medical records — did anyone ask you?