Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Midwest Health Care Network (VISN 23)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on March 18, 2013. Also cited in 183 other reports.
Report ID: PSETS0000086883, U.S. Department of Veterans Affairs
Reported Entity: VISN 23 Sioux Falls, SD
Issue:
Appointment reminder letter was mailed without an envelope. Veteran's name, address, last 4 of SSN, and name of clinic was viewable. Update: 3/19/13:According to the Privacy Officer, the machine that stuffs letters failed to insert this folded letter in an envelope. It was not caught by the mail room employee who picks up the stacks of envelopes, then the machine puts postage on them, and then they are mailed. he U.S. Postal service employees would have been able to see last four of his last four of SSN and the name of the appointment. The clinic is a Mental Health Telehealth Clinic., therefore Veteran will receive a notification letter.
Outcome:
The cause of the incident was a rare machine error, but mail room clerk has been educated to watch for letters that may have not been stuffed in envelopes.