Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Great Lakes Health Care System (VISN 12)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on September 2, 2011. Also cited in 130 other reports.
Report ID: SPE000000066439, U.S. Department of Veterans Affairs
Reported Entity: VISN 12 Chicago, IL
Issue:
A packet of copies of 12 medical insurance/Medicare cards (front and back) was found in the Wellness Center by VA employee upon opening this morning. The cards contained the Veterans' name and full SSN. Update: 09/06/11:The Privacy Officeer (PO) doesn't know how long the packet was unattended. She can't determine who the packet belongs to or where it came from because the clerks use an insurance card scanner when asking for that information. The packet was not enclosed in anything. It was just a stack of papers. It was actually the Wellness Center (gym) so there were people who could have accessed it in the evening hours (mostly employees, but Veterans who are in the inpatient programs and able to use it could use it). The PO will check whether any cameras were in the area and, if so, whether anyone accessed the packet.The 12 Veterns will receive a letter offering credit protection services.
Outcome:
Re-emphasize the importance of safeguarding PII to staff.