Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Western New York Healthcare System at Batavia
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on April 7, 2014. Also cited in 47 other reports.
Report ID: PSETS0000102487, U.S. Department of Veterans Affairs
Reported Entity: WESTERN NEW YORK HCS - 528A4
Issue:
IT staff found a gains and losses sheet for 04/04/14 in the kiosk next to the canteen store. She secured the list and brought it to the Privacy Officer (PO). The list contains 82 Veterans' full name, last 4 digits of the SSN and the ward they were admitted to or discharged from.
Outcome:
04/07/14: Per the PO, the list was printed 04/05/14, and found 04/07/14 at approximately 7:30 AM. The PO is checking to see if there are any cameras in the area. 04/08/14: Per the PO, there are no cameras in area. Due to the fact that it was left unattended for 2 days in a public area, the Incident Resolution Team (IRT) has determined that eighty-two Veterans will be sent a HIPAA notification letter due to Protected Health Information (PHI) being exposed.