Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on March 13, 2012. Also cited in 328 other reports.
Report ID: SPE000000072781, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Memphis, TN
Issue:
One of the Mental Health Program Support Assistants sent an email containing sensitive personal information (SPI) pertaining to Mental Health interns, trainees and without compensation appointments (WOCs) to incoming interns who are applying for Internship at the Memphis VAMC. The SPI was sent via the recipient's private emails that have no PKI encryption, and it included their full name, SSNs, dates of birth, places of birth, and cellular and home phone numbers. Update: 03/19/12:The two (2) people whose SPI was exposed will be sent letters offering credit protection services.
Outcome:
This incident has been investigated with the program support staff at Mental Health Service who has implemented data handling and filing safeguards to ensure this incident does not happen again in the future. It was determined that through this incident, PII of complainant such as full name, home or mailing address, telephone number, SSN, etc. may have been compromised. The redacted copy of Credit Monitoring Letter has been uploaded into SPE. This incident is considered closed as of 4/16/2012