Accidental Disclosures

Accidental Disclosures are unintended exposures of private data that occur through human error or when circumstances beyond the control of the individual cause an unwanted outcome, even though proper procedures were followed.

Accidental disclosures are Privacy Incidents and must be reported immediately to the Privacy Office. Examples of accidental disclosures include, but are not limited to:

Sending sensitive personal data to the incorrect recipient.
Providing more information than is necessary to an internal or external client.
Sending sensitive personal data through unsecured channels (e.g., without proper encryption or data protection).
Over-collection of data beyond what has been communicated to the data subjects.
Verbally disclosing private data to the wrong person or to a person who falsely identifies himself.
Printing a document containing private data on a publicly-accessible printer.

Employees should assist in correcting from a disclosure ONLY if instructed to do so by the Privacy Office.