Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Dayton VA Medical Center
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 28, 2014. Also cited in 29 other reports.
Report ID: PSETS0000104624, U.S. Department of Veterans Affairs
Reported Entity: DAYTON OH - 552
Issue:
On 05/27/14, the Privacy Officer (PO) was contacted by the Chief, Community & Public Affairs regarding a privacy incident. The chief informed the PO that a local news affiliate had recently contacted the Dayton VA Medical Center to report a privacy incident. The local news affiliate expressed that a Veteran had reported the incident, but had not disclosed any of the sensitive information. The PO was asked to contact the person who received the sensitive information and request that these documents be returned. The PO contacted the Veteran at 4:43 PM, and left a voice mail stating the PO's name and requesting a call in return. At 5:03 PM, the PO received a call back from the Veteran. The Veteran stated that he had received medical information on another Veteran, but had not released any of the specifics/details. The PO requested to meet with the Veteran at the Dayton VA Medical Center on 05/28/14 to obtain the documents in question so the PO could properly investigate.
Outcome:
05/28/14: The PO met with the Veteran who received the mis-mailing of both Protected Health Information, and Sensitive Information this morning. He reported that he received this information in the mail on 05/21/14 along with his lab results. The PO asked the Veteran the why this wasn't reported directly to the PO or medical center administration, in addition to holding the information for one week. He stated that he attempted to contact the Dayton VA Medical Center on 05/22/14, but only received an automated message. He then contacted Channel 7 WHIO to report the incident, but never received a response. He stated that he then went to Fox 45 Dayton WRGT-TV, because he wanted the public to be aware of this type of carelessness. He did not provide any response to why this information was held for nearly a week prior to reporting the privacy incident. The Veteran stated that his wife posted information on her Facebook Page. It appears that she did in fact report this information to her Congressman, as well as CBS, but neither have made contact, according to her Facebook Post. 06/02/14: The Incident Resolution Team determined that the Veteran whose information was compromised will receive a letter offering credit protection services.