Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Phoenix VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on October 8, 2013. Also cited in 102 other reports.
Report ID: PSETS0000095630, U.S. Department of Veterans Affairs
Reported Entity: PHOENIX AZ - 644
Issue:
Today, staff reported to the Privacy Officer (PO) and their manager that they received a Sensitive Patient Access Report (SPAR) yesterday from PO. They indicate that 2 staff members who accessed their medical record did not correlate with services requested or authorized by them. The manager and PO researched the staff role and questioned specifically about access by employee/Veteran of these services. There was no access by the complainant of services in these areas or dates. Further investigation of the access into this medical record will be conducted with appropriate management and PO oversight. Additional notification and investigation to ensue.
Outcome:
10/23/13: Human Resources' (HR) fact findings show that one individual did access the staff's chart without permission; the other did not. This escalates the ticket to an Incident. The Associate Director indicates that he has contacted Health Administration Services (HAS) supervisors to address additional findings with staff. 11/01/13: The staff member will receive a HIPAA letter of notification.