Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Phoenix VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 19, 2015. Also cited in 102 other reports.
Report ID: PSETS0000119701, U.S. Department of Veterans Affairs
Reported Entity: PHOENIX AZ - 644
Issue:
Today, 05/19/15, an employee reported to the Privacy Officer (PO) that her employee health information was shared by her supervisor without her permission. The employee relates 4-5 instances where the supervisor sent emails regarding specific medical leave status and condition to other employees. She reports that same privacy complaint was given to a specific Human Resources (HR) manager on 03/26/15, with no action. She was referred to the PO by two other departments upon filing separate actions, today. The PO reassured the employee that privacy complaints are investigated. The Complaint Acknowledgement letter and Notice to Privacy Complainants were provided. Additional notification and investigation, to ensue.
Outcome:
07/08/15: The Incident Resolution Service Team has determined that the employee will be sent a HIPAA notification letter due to Protected Health Information (PHI) being disclosed without authorization or a need to know.