Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Veterans In Partnership (VISN 11)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on June 13, 2012. Also cited in 213 other reports.
Report ID: SPE000000076649, U.S. Department of Veterans Affairs
Reported Entity: VISN 11 Detroit, MI
Issue:
A Veteran received a single-sided appointment card with full name address and last 4 on the front of the card and appointment date/time and required lab test prior to appointment displayed on the back. Update: 06/13/12:Veteran B will be sent a notification letter.06/26/12:An appeal was filed for reconsideration to provide credit protection services instead of notification. The DBCT reviewed and denied the appeal since the data elements that were exposed (name, address, partial SSN and PHI) do not support providing credit protection services. VA generally only provides credit protection services when full SSN or name and date of birth are compromised. The appeal is denied. Notification is still required.
Outcome:
Staff at the Community Based Outpatient Clinic (CBOC) have been informed to discontinue use of and destroy and remaining of these unauthorized post cards immediately and under no circumstances to include any personally identifiable information /protected health information (PII/PIHI) on any correspondence not in an envelope or within the confines of a post card that is sealed on all sides.