Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Central Iowa Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 30, 2014. Also cited in 23 other reports.
Report ID: PSETS0000104764, U.S. Department of Veterans Affairs
Reported Entity: DES MOINES IA - 636A6
Issue:
Veteran received test results via normal mail channels; however veteran also received test results for three other Veterans. Veteran immediately contacted VA to alert appropriate party that multiple tests results other than information belonging to veteran had been received. Contact was made with the veteran and the veteran no longer has possession of the three additional test result documents. Veteran was informed to shred or destroy beyond recognition the test results documents not belonging to the veteran The veteran does not know who performed the mail out action. Veteran accomplished destruction on the day of notification (May 14, 2014). There has been no report of identity theft or other unauthorized use of the documents so it is highly unlikely any compromise or theft occurred. Senior staff responsible for the mailing of the test results notified and remedial training on proper validation of document ownership before mailings are accomplished. Recommend this item be closed. From inquiries made, it is assumed that mail out of multiple test result documents was inadvertent.
Outcome:
05/30/14: The Incident Resolution Team has determined the three Veterans whose full SSNs were disclosed will be sent letters offering credit protection services.