Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Phoenix VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on April 10, 2015. Also cited in 102 other reports.
Report ID: PSETS0000117925, U.S. Department of Veterans Affairs
Reported Entity: PHOENIX AZ - 644
Issue:
Today, 04/10/15, Veteran A called the Privacy Officer (PO) to file a complaint of inappropriate chart access by her ex-husband, an employee. She said that they are involved in court custody and financial disputes. He has been providing the court her medical information, verbally. Veteran A has a mental health diagnosis. The ex-husband knows her SSN and shares this with his friends to find her information. The Veteran's chart is not sensitized, however the PO requested sensitive chart label be applied. A second privacy complaint regarding this employee and his girlfriend, same complaint of inappropriate chart access and disclosure of sensitive Veteran or staff information. Prior investigation determined that girlfriend works in a different Veteran services agency. The PO reassured the Veteran that we will sensitize her chart and investigate.
Outcome:
05/14/15: The Incident Resolution Service Team has determined that the complainant will be sent a HIPAA notification, based on the unauthorized access of her medical chart.