The suit alleges that the university deceived its patients by telling them that their medical records would be protected, but ultimately violated the Health Insurance Portability and Accountability Act (HIPAA), a federal law that ensures privacy and security for personal medical data. It also claims that UChicago violated state laws in Illinois that makes it illegal for companies to participate in dishonest client practices. The complaint details Google’s alleged two-part plan: obtain the Electronic Health Record (EHR) of almost every patient at the UChicago Medical Center, then use the information to create its own lucrative commercial EHR system.

Read more: Google, UChicago Sued In “Greatest Heist” Of Patient Health Data “In History” | Zero Hedge