Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Great Lakes Health Care System (VISN 12)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 19, 2011. Also cited in 130 other reports.
Report ID: SPE000000062733, U.S. Department of Veterans Affairs
Reported Entity: VISN 12 Madison, WI
Issue:
A VA employee took consult sheets home and left them in a bag in her unlocked car overnight. Her car was broken into and the bag taken. It was found the next evening two blocks away with all items intact. Update: 05/19/11:The papers were carried in a laptop case. It is believed that the individual who broke into the car thought the bag contained a laptop then discarded the bag once they found out the actual contents. The employee stated noting appeared to have been moved inside the bag. The zipper to the bag was open when it was found and the contents had gotten wet. Twenty Veterans will receive a letter offering credit protection services.
Outcome:
The employee has been counseled not to remove PHI from VA premises without permission from her supervisor and the Privacy Officer and/or ISO. Additionally, all staff have been briefed as to proper procedures for handling PHI and removing PHI from the VA. Procedures have been reviewed for transfer of information from one VA location to another (employee worked at 2 different CBOCs) to ensure PHI remains within VA control at all times.