HHS to probe whether Google’s ‘Project Nightingale’ followed federal privacy law

A federal regulator is investigating whether the federal privacy law known as HIPAA was followed when Google collected millions of patient records through a partnership with nonprofit hospital chain Ascension.

The probe, first reported by the Wall Street Journal Tuesday night, was opened by the Department of Health and Human Services’ Office for Civil Rights. “OCR would like to learn more information about this mass collection of individuals’ medical records with respect to the implications for patient privacy under HIPAA,” Roger Severino, the office’s director, said in a statement to STAT.

The initiative, code-named “Project Nightingale,” gave Google the ability to analyze personal health information, including names and birth dates, compiled by Ascension, with the goal of helping deliver more personalized medical treatment. The Journal reported that patients and physicians were not informed of the project, though Ascension said that some clinicians and nurses were involved.

STAT+ Exclusive Story

Already have an account? Log in

This article is exclusive to STAT+ subscribers

Unlock this article — and get additional analysis of the technologies disrupting health care — by subscribing to STAT+.

Already have an account? Log in

Already have an account? Log in

Individual plans

Group plans

Monthly

$39

Totals $468 per year

$39/month Get Started

Totals $468 per year

Starter

$30

for 3 months, then $39/month

$30 for 3 months Get Started

Then $39/month

Annual

$399

Save 15%

$399/year Get Started

Save 15%

11+ Users

Custom

Savings start at 25%!

Request A Quote Request A Quote

Savings start at 25%!

2-10 Users

$300

Annually per user

$300/year Get Started

$300 Annually per user

View All Plans

Get unlimited access to award-winning journalism and exclusive events.

Subscribe

Log In