Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Phoenix VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on June 5, 2014. Also cited in 102 other reports.
Report ID: PSETS0000105032, U.S. Department of Veterans Affairs
Reported Entity: PHOENIX AZ - 644
Issue:
Today, 06/05/14, the Freedom of Information Act (FOIA) Officer reported a privacy incident to Privacy Officer (PO), identified when logging deceased Veteran disclosures performed in another area. (Deceased protected health information (PHI) disclosures are FOIA cases). There were seven (7) cases of invalid or missing HIPAA authorizations where medical records were disclosed. Of those, two (2) cases contained 7332 specific information (drug/ETOH diagnosis or treatment, HIV/AIDS or sickle cell anemia). Medical records of seven cases were disclosed to three (3) covered entities, two (2) family members, and two (2) unknown entities. Additional notification and investigation to ensue.
Outcome:
06/06/14: The Incident Resolution Team determined that the next of kin (NOK) of the seven deceased Veterans will receive a NOK letter.