Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Heartland Network (VISN 15)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 10, 2013. Also cited in 149 other reports.
Report ID: PSETS0000089133, U.S. Department of Veterans Affairs
Reported Entity: VISN 15 Wichita, KS
Issue:
VA employee in Cardiology sent a CD-ROM containing results from a heart catheterization for one patient to the Denver VA Medical Center. The CD-ROM was sent Thursday utilizing UPS with the overnight option. The VA employee did receive a UPS tracking number (1Z 691 335 01 9064 817 4). The VA employee received a phone call from a UPS employee stating the contents were no longer in the package due to the package being wet. The UPS employee stated they would call back if the contents were found. The CD-ROM contained images from a recent heart catheterization, and the Information Security Officer (ISO) verified the VA employee only printed the last name of patient on the CD-ROM. The CD-ROM was not encrypted. The VA employee will inform the ISO immediately if she receives a call from the UPS employee. A copy of the USP tracking details are attached to this ticket Update: 05/13/13:The Veteran will be sent a HIPAA notification letter, as his full name and diagnostic information were stored on the CD.
Outcome:
NA