Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Sierra Pacific Network (VISN 21)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 31, 2012. Also cited in 141 other reports.
Report ID: SPE000000076236, U.S. Department of Veterans Affairs
Reported Entity: VISN 21 San Francisco, CA
Issue:
A Supervisor of Release of Information (ROI) called to notify Privacy Officer (PO) that Veteran A reported he received Veteran B's medical records in the mail in error. Veteran A received a compact disc (CD) in the mail 5/31/12 and it was addressed to him with his name handwritten on the CD. However, when he opened the file on the CD (the folder on the CD was also correctly labeled in his name) he discovered they were another Veteran's records and called SFVA ROI immediately. PO and Supervisor, ROI are currently investigating this issue. Update: 06/01/12:Due to full SSN and medical information being exposed, Veteran B will be sent a letter offering credit protection services.
Outcome:
Credit monitoring letters have been sent out. Employee responsible for the error received immediate counseling and education from the supervisor and the department is taking the corrective action for this matter. In addition, the supervisor of employee has provided an educational reminder to all of the staff on the proper process and precautions to take when processing requests to prevent such incidents from happening again.