Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 6, 2011. Also cited in 328 other reports.
Report ID: SPE000000062131, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Louisville, KY
Issue:
Disabled American Vets (DAV) volunteer driver had a list containing 7 patients names, last 4 of their SSN, home address, phone numbers, and appointment info for use in taking Veterans to their appointments. While dropping off patients Veteran A began asking personal questions about Veteran B after she was dropped off. After Veteran A was dropped off at his stop the DAV driver noticed the list containing patient phone numbers was missing. She suspected Veteran A took the list in order to obtain personal information about Veteran B. A complete search was conducted of the van and the list was not in the vehicle. Veteran A was sitting in the passenger seat. Update: 05/06/11:Seven (7) Patients will be sent a notification letter.
Outcome:
HIPAA notification letters sent to all patient's. DAV supervisor was advised to go over the safeguarding of information with all drivers.