Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Healthcare System (VISN 10)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on July 6, 2012. Also cited in 119 other reports.
Report ID: SPE000000077559, U.S. Department of Veterans Affairs
Reported Entity: VISN 10 Cincinnati, OH
Issue:
A VA employee had a family member with her during her tour of duty in a controlled area. The employee also allowed one of the family members to use a VA computer unsupervised. Update: 07/09/12:The employee let her sister use the internet and there could have been paper rosters laying on the desk. The family member could have seen 60 Dom patients' names and 16 PTSD resident names. The 76 patients will receive a HIPAA letter of notification.08/29/12:Further investigation shows that the only privacy information that could have possibly been seen were the 11 men PTSD Veterans. Those 11 Veterans will receive a letter of notification.
Outcome:
Sent letters of notification to the 11 affected Veterans. The total count of Veterans at the DOM was 51 and 6 assigned to Women's PTSD area. The only privacy information that could have possible been released or captured were the 11 men PTSD Veterans. The employee is currently having disciplinary action taken and staff was trained on the current policies.