Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Sunshine Healthcare Network (VISN 8)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on November 30, 2012. Also cited in 369 other reports.
Report ID: PSETS0000082999, U.S. Department of Veterans Affairs
Reported Entity: VISN 08 Miami, FL
Issue:
An OIG Investigation found the inappropriate disclosures of patient information to third parties (friends of an employee) and the emailing of sensitive information, including personally identifiable information (PII) and protected health information (PHI), to the employee's personal email account. There were at least 55 patients affected. The employee was a home based provider. Further details are pending. Update: 11/30/12: Eighty-one names were emailed to a private email account in an attachment. Each contained the first name, last name, address, telephone number, and assessment date. Of the 81 discovered, 70 contained the last four digits of the SSN, 9 contained last three digits of the SSN, 1 contained last two digits of the SSN, and 1 contained last one digit of the SSN. There was one email that did contain medical information and date of birth. Therefore, 81 patients will receive notification letter and on patient will receive a letter offering credit protection services.12/03/12:The one Veteran whose SSN was exposed is now deceased therefore a next of kin (NOK) notification letter will be sent.
Outcome:
The provider's access to patient records has been terminated. Notification letters to patients and NOK have been sent.