Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Health Care Upstate New York (VISN 2)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on June 17, 2011. Also cited in 132 other reports.
Report ID: SPE000000063819, U.S. Department of Veterans Affairs
Reported Entity: VISN 02 Syracuse, NY
Issue:
The Buffalo Regional Office (RO) Information Security Officer (ISO) notified the Syracuse VAMC ISOs and Privacy Officer (PO) that a claims file (C-file) sent from the Buffalo RO could not be found at the Syracuse VA. After further review, it was identified that the cover sheet for the Regional Office had 8 individual Veterans listed and 7 had been verified on the log sheet used in the Compensation and Pension department to track incoming C-files. Per the Business Office Member Services Manager, on 05/26/11, the C-files for 7 of the Veterans on the list were logged in but the C-file for the Veteran in question was not. The Business Office Member Services Manager reported that a search for the C-File has been conducted and continues, as the file has not yet been found. He has also requested that RO review to determine if the C-file may not have been in the box shipped to Syracuse as originally indicated on the cover sheet. The RO has conducted a search for the C-file in their office but has not yet located it. The Business Office Member Services Manager reported that their internal processes for the transition of C-files in and out of the medical center will be reviewed next week in collaboration with the Buffalo RO to avoid future occurrences. In addition, the PO recommended that a process be implemented whereby the C-files listed on the cover sheet from RO are reconciled at the point of receipt in the medical center and if any found missing, that the RO be contacted immediately to report that it was not received by the VA. Update: 06/20/11:The Veteran will receive a letter offering credit protection services since the c-file contains the name, date of birth, full SSN and other sensitive information.
Outcome:
Business Office has improved their tracking process of the C-FIles from point of receipt to point of return from the VBA Regional Office to strengthen controls on the location of the C-Files.