Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Philadelphia VA Medical Center
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on October 14, 2014. Also cited in 13 other reports.
Report ID: PSETS0000110383, U.S. Department of Veterans Affairs
Reported Entity: PHILADELPHIA PA - 642
Issue:
It was reported to us by the member of the research staff that " Unfortunately one member of our research team had an incident where someone broke into her car last night and stole her backpack. In her backpack were the names of approximately 250 patients who we are attempting to recruit into the study. This team member works partially from home, which is why she had the call log with her outside of the VA. No other identifiers were on the list except for first and last name. " Further investigation on-going.
Outcome:
10/15/14: Requested confirmation from the ISO that the only information involved was first and last name. 10/16/14: Update - Besides the First and Last name, the other information includes: 1) a "screening number" for each patient, unique to a password-protected screening database.(This number is not the subject ID; these patients are not enrolled in the study at this time.) 2) Initials of the Research Coordinators. 3) Date patients were mailed a recruitment letter 4) Date(s) of previous attempts to contact the patients by phone. Researcher did not have the authorization to take the information at home. 10/28/14: The DBCT determined this to be of low risk of compromise.