Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Sunshine Healthcare Network (VISN 8)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 1, 2012. Also cited in 369 other reports.
Report ID: SPE000000074921, U.S. Department of Veterans Affairs
Reported Entity: VISN 08 Orlando, FL
Issue:
The Healthy Heart class coordinator left a class roster with 14 names and full SSNs behind in the classroom where she was teaching. The roster was discovered on a corner table two and one half days later when the classroom partition had to be opened to enlarge the teaching space. Also recovered were six lab results of patients' cholesterol values. It was determined that these patients did not attend the class. Aside from patients' name, and cholesterol values, there was no additional personally identifiable information (PII) on the lab results. While the papers sat undisturbed from initial incident to recovery, five classes were held in the classroom including one employee class and four with patients. The classroom is locked after hours and patients are in the company of an educator. The instructor was a substitute and appears to have lost track of the papers when unforeseen changes forced a relocation from their normal classroom assignment. Update: 05/02/12:The fourteen (14) individuals on the roster will be sent letters offering credit protection services due to full name and full SSNs being exposed.
Outcome:
Future Rosters will have SSNs blacked out, or cut the roster to remove the SSNs. Employee will re-sign the Rules of Behavior.