Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Veterans In Partnership (VISN 11)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on February 28, 2011. Also cited in 213 other reports.
Report ID: SPE000000058898, U.S. Department of Veterans Affairs
Reported Entity: VISN 11 Ann Arbor, MI
Issue:
2 Biomedical PCs were removed from the facility by the vendor without the hard drives being sanitized. The hard drives contain PII and PHI. The vendor is still in possession of the PCs. Update: 03/01/11:The ISO states that the risk of data breach is low, but the investigation continues.03/03/11:The PC's have been returned and are in a locked area. One PC should have no personal information and the other should have between 6 and 25 records. The PC's will be examined today.03/04/11:The one PC contained 9 names and full Social Security Numbers and 5 names with the last four digits of the SSN. There was also some medical information involved. Eight Veterans will be sent offers for credit protection services, and six will be sent letters of notification.
Outcome:
The vendor was provided additional information on Veterans Affairs Ann Arbor Health Care System (VAAAHS) property and inventory management that provides details of the appropriate steps to take before removing VA property from the facility. VAAAHS staff will remain vigilant in observing and managing how our property and equipment are handled to eliminate this situation from recurring.