UK NHS is relying on Palantir as an infrastructure provider for public health data with predicatble results. Reliance on surveillance tech cos for gov services infrastructure is becoming normalized globally. When we think about digital transformation of public services, this kind of issue has to be front of mind - how else can the data be used or resold, inside or outside of gov? What technical and legal protections are in place and how strong are the institutions oversee and enforce them?