Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
South Central VA Health Care Network (VISN 16)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on February 4, 2013. Also cited in 317 other reports.
Report ID: PSETS0000085424, U.S. Department of Veterans Affairs
Reported Entity: VISN 16 Houston, TX
Issue:
A private citizen contacted VA police to report she found a bag on the side of the road. The bag contained personal information that belonged to the owner of the bag (VA physician) and documents that contained Veterans' personally identifiable information (PII) and protected health information (PHI). The list of diabetic patients contained 13 Veterans' full names, age, and full SSN. There was also two appointment lists that contained 14 Veterans' full name, last four digits of the SSN, home phone number. In addition, there was a copy of a PATS report that contained one Veteran's full name and full SSN, one letter from a pharmacy that contained a Veteran's full name and date of birth, one letter from insurance company that contained one Veteran's full name, diagnoses and date of birth. Update: 02/04/13:The 13 patients on the diabetic patients list will be offered credit protection services. The 14 Veterans on the appointment lists will be sent HIPAA letters of notification. The one Veteran on the PATS report will be offered credit protection services. The Veteran on the pharmacy letter will be offered credit protection services. The Veteran on the letter from the insurance company will be offered credit protection services.In total, 16 Veterans will be offered credit protection services and 14 Veterans will be sent HIPAA notification letters.
Outcome:
Referred to provider's supervisor for appropriate disciplinary action.