OPM Request for Federal Employee Medical Data: Privacy Concerns and Implications

by Grace Chen

The Office of Personnel Management (OPM) is moving to consolidate a massive amount of sensitive medical information, signaling a shift in how the U.S. Government handles the health records of its workforce. In a recent notice requesting public comment, the agency proposed requiring health insurance carriers to hand over detailed, claims-level data for millions of people enrolled in the federal employee health insurance system.

This move toward centralized federal health data collection represents a significant departure from the historical relationship between the government and the private insurers that provide care to federal workers. While the agency frames the request as a necessary step for administrative oversight, the scale and specificity of the data requested have raised concerns among privacy experts regarding the identifiability of the records.

The program in question, the Federal Employees Health Benefits (FEHB) program, is the largest employer-sponsored health plan in the United States. It currently covers more than 8 million current and retired federal employees, postal workers and their families. Unlike the Veterans Affairs (VA) system, where the government provides the doctors and the insurance, FEHB operates as a hybrid: the government sponsors the plan, but the actual care is delivered by private doctors and managed by roughly 65 different private insurance carriers, including giants like Aetna and Blue Cross Blue Shield.

A Shift from Federated to Centralized Data

For decades, the FEHB model has been “federated,” meaning the private insurance carriers held the detailed patient data while OPM managed the high-level contracts and premiums. The government generally relied on aggregated reports to understand trends. The new proposal shifts this model toward centralization, creating a single, federal data asset updated on a monthly basis.

The specific data OPM is seeking to aggregate includes:

  • Detailed medical claims data and monthly claims-level reporting.
  • Pharmacy claims, including specific drug utilization patterns.
  • Encounter and provider data.
  • Quarterly manufacturer rebate information.

From a clinical and administrative perspective, this request isn’t entirely without merit. In my experience as a physician and medical writer, this is essentially “Plan Oversight 101.” Large self-funded employers routinely analyze claims data to identify cost drivers, manage chronic disease populations, and negotiate better rates with providers. OPM explicitly states in its public notice that this data will help them ensure that benefits programs remain “competitive, quality, and affordable.”

The proposed transition to centralized data collection would move millions of individual health records from private carriers to a single federal database.

The Privacy Gap: Identifiable vs. De-identified Data

The tension arises not from the act of analysis, but from the nature of the data being collected. In most large-scale population health studies, researchers use “de-identified” data—records stripped of names, Social Security numbers, and exact birth dates—to protect patient privacy.

The Privacy Gap: Identifiable vs. De-identified Data

However, OPM’s notice does not instruct carriers to strip identifying information. Instead, it notes that insurers are legally permitted to disclose “protected health information” (PHI) to the agency. This suggests that the government is seeking identifiable records, which would include names, diagnoses, prescriptions, and specific treatment details for millions of citizens.

Comparison of Health Data Models
Feature Previous Federated Model Proposed Centralized Model
Data Custodian Private Insurance Carriers Office of Personnel Management (OPM)
Data Granularity Aggregated Trends Individual Claims-Level Data
Reporting Frequency Periodic/Contractual Monthly Updates
Privacy State Distributed across 65+ carriers Single Federal Data Asset

The risk of such a database is the inherent vulnerability of centralized information. When a government agency holds a searchable database of every federal employee’s medical history, the distance between “analyzing cost trends” and “identifying individuals receiving sensitive care”—such as gender-affirming care or reproductive health services—is merely a matter of how the data is queried. Critics argue that the current notice fails to describe the specific technical and legal safeguards that would prevent such misuse.

The Postal Service Connection

The timing of this request coincides with a major structural overhaul of federal health benefits. Under the Postal Service Reform Act of 2022, OPM was required to carve out a separate program specifically for postal workers, retirees, and their families: the Postal Service Health Benefits (PSHB) program.

This change, slated for full implementation by January 2025, was designed to address a specific financial leak. Many postal retirees had remained in the FEHB program without enrolling in Medicare Part B, despite being eligible. This forced FEHB carriers to act as the primary insurer for a high-cost elderly population, driving up premiums for everyone in the risk pool. By requiring Medicare Part B enrollment and positioning PSHB as secondary coverage, the government aims to lower overall costs.

It’s highly probable that OPM intends to use the newly requested claims-level data to measure the success of this transition and ensure that the PSHB carve-out is achieving its intended financial goals.

Disclaimer: This article is for informational purposes only and does not constitute legal or medical advice.

The next critical checkpoint for this proposal is the conclusion of the public comment period, after which OPM will determine whether to finalize the rule and mandate the data transfer. Federal employees and their families may monitor updates and submit comments via the official regulations.gov portal.

Do you believe the benefit of lower premiums outweighs the risk of centralized health data? Share your thoughts in the comments below.

You may also like

Leave a Comment