Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Sunshine Healthcare Network (VISN 8)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on June 28, 2012. Also cited in 369 other reports.
Report ID: SPE000000077319, U.S. Department of Veterans Affairs
Reported Entity: VISN 08 Gainesville, FL
Issue:
Around 1245 PM today a family member visited the Patient Representative's office with an issue concerning her son (Veteran A). During our discussion she pulled out numerous documents and spread throughout the desk. After our discussion she gathered her papers and in the process gathered documents that was on the end of the desk. These papers have privileged information such as Veterans names, addresses, phone numbers some with appointments etc. The Patient Representative tried to reach this family member by the phone number listed in the computer but was unsuccessful. She called VA Police and they have attempted to call her on the contact phone number. VA Police Officer visited her office with OIG who have also spoken with this family member. OIG is going to the Veteran's home at this time and will get back with Patient Representative if hes successful in obtaining the documents. The Privacy Officer (PO) will further investigate this breach. Update: 07/02/12:The family member returned the documents to VA Police today. After further inspection, the documents contained 35 veterans full name, full SSN, address, phone number and medical appointment information. Also, 23 veterans full name and last four of the SSN were found on some of the documents. Letters offering credit protection services will be sent to 35 Veterans and 23 HIPAA notification letters will be sent.
Outcome:
Immediate action was taken to remove sensitive documents from the desk while a visitor is present. Current workload is now contained in a binder. The employee involved completed re-training on Privacy and Information Security. The office environment was reviewed and corrective actions were taken to include requesting furniture for improved security and provide additional work space to prevent this in the future. A HIPAA notification letter was mailed to the 21 affected Veterans and a credit monitoring letter was mailed to the 35 affected Veterans.