The Office of Personnel Management is demanding unredacted health records from federal workers' insurers — not aggregated claims data, not anonymized statistics, but detailed personal and medical information on individual employees, retirees, and their families, KFF Health News reported May 8.
The administration frames this as a cost-saving exercise. Health policy and legal experts, lawmakers, and insurance executives describe it as overbroad, legally suspect, and without clear precedent in how the executive branch has handled its own workforce's private data.
The last time the federal government accumulated this kind of personal dossier capacity over its own employees, the mechanisms built to do so became instruments of political control. That is not a hypothetical. It is the documented history of the administrative state at its worst — and it is the pattern worth watching here.
The federal government employs roughly 2.2 million civilian workers. For most of the republic’s history, the relationship between the state as employer and the state as sovereign was understood to require careful separation precisely because the government holds coercive power no private employer possesses. You cannot easily sue your way out of a federal personnel action. You cannot easily relocate when your employer is the entire executive branch.
That asymmetry is why the Privacy Act of 1974 exists. Congress passed it in direct response to documented abuses: Nixon’s use of federal agencies to build files on political enemies, the IRS audits of civil rights organizations, the FBI’s COINTELPRO surveillance of federal employees suspected of ideological disloyalty. The Privacy Act imposed limits on what the government could collect about its own workers and how that information could be shared across agencies. HIPAA, enacted in 1996, layered additional protections specifically over health data.
OPM’s current demand tests both frameworks simultaneously.
According to KFF Health News, OPM is seeking unredacted health data from insurers who administer the Federal Employees Health Benefits Program — the insurance system covering federal workers, retirees, and their dependents. This is not a request for actuarial summaries. It is a request for records that could identify which employee has which diagnosis, which medication, which procedure.
Legal experts and insurance executives have described the pursuit as overbroad. The concern is not merely privacy in the abstract. It is that detailed health data — mental illness, substance use, reproductive history, chronic conditions — could be cross-referenced with personnel files in ways that inform who gets surveilled, demoted, or pushed out in a workforce the current administration has openly sought to reduce and reshape.
The most directly relevant American precedent is the loyalty-security apparatus of the late 1940s and 1950s. Under Executive Order 9835 (Truman, 1947) and its successor EO 10450 (Eisenhower, 1953), the federal government built a system for investigating the personal lives of its employees that eventually swept in mental health history, sexual behavior, and associational ties. The criteria were vague; the appeals process was weak; the consequences — dismissal, blacklisting — were severe. Thousands of federal workers lost their jobs. Congress eventually curtailed the worst excesses, but only after the damage was done.
The instrument then was loyalty files. The instrument now would be health files. The underlying logic — that the executive branch has an unlimited interest in personal information about the people who work for it — is identical.
HIPAA is not as protective as its reputation suggests. It governs how covered entities (insurers, providers) handle data, but it includes exceptions for disclosure to plan sponsors — and the federal government, as the employer behind FEHBP, can argue it occupies that role. Whether that argument holds under current law is precisely what legal experts are contesting. The point is that the statutory protection has seams, and the administration appears to be threading one of them.
Congress has the tools to demand a stop to this. The House Oversight Committee and the Senate Homeland Security and Governmental Affairs Committee both have jurisdiction over OPM. Subpoenas, hearings, and appropriations riders have all been used historically to constrain executive data collection that outran its statutory authority. The question, as it so often is in this period, is whether the institutional will exists to use them.
The records being sought belong to people who took federal jobs under an expectation of legal protection. That expectation was written into statute for a reason the historical record makes plain.