Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Health Care Upstate New York (VISN 2)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on November 9, 2012. Also cited in 132 other reports.
Report ID: PSETS0000082202, U.S. Department of Veterans Affairs
Reported Entity: VISN 02 Bath, NY
Issue:
It was brought to the attention of the Privacy Officer (PO) that during an appointment with a patient, a Social Worker discussed the cancellation of an upcoming group meeting. The Social Worker mentioned that he would have to contact all of the other members to let them know that the group would be cancelled. The patient offered to help, so the Social Worker made a copy of the group list and gave it to the patient to make phone calls.This list contained full name, full SSN, telephone number, Service Connection percent, date of last means test, co-pay status, and other sensitive information such as: Suicide Risk Assessment is needed for 15 members of this PTSD Group.The patient called back to the clinic to let the Social Worker know that he had finished making the phone calls and that he crossed off the social security numbers because he didnt think he should have that information.The list was disposed of by the patient, unable to retrieve/return. Update: 11/09/12:The 15 patients will receive a letter offering credit protection services.
Outcome:
Employee was re-educated by the Privacy Officer and his supervisor. Mandatory privacy training (which was current) was taken again. Appropriate disciplinary actions were taken by Human Resources and the Supervisor.