Breach Prevention and Response

What is a Breach?

According to the Department of Defense, a breach of personal information occurs when the information is lost, disclosed to, accessed by, or potentially exposed to unauthorized individuals, or compromised in a way where the subjects of the information are negatively affected.

Breach Reporting

The Defense Health Agency Privacy and Civil Liberties Office coordinates breach reporting within the Military Health System. Email us if you have questions about breaches or breach reporting within the MHS.

Guidance tools for breach reporting:

Breach Reporting Form
Guidelines for Reporting Breaches - Please note: This document is currently undergoing updates and a new version will be made available when possible
DOD Memorandum 6025.18 Implementation of the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule in DOD Health Care Programs

You also may be interested in...

Page 2 of 2, showing items 16 - 21

Policy

Mar 6, 2008

Memorandum: Update to Using Digital Signature when Sending Electronic Mail

.PDF | 98.94 KB

This Memorandum implements the recent Department of Defense requirement on the use of digital signature for e-mail, and is in addition to my memorandum of June 13, 2007, “Use of Digital Signature on TRICARE Management Activity Official Electronic Mail.”

Identification #: N/A
Type: Memorandum

Recommended Content Breach Prevention and Response

Policy

Jul 3, 2007

Memorandum: Encryption of Sensitive Unclassified Data at Rest on Mobile Computing Devices and Removable Storage Media

.PDF | 215.07 KB

This Memorandum provides recommendations on means to protect sensitive unclassified information on portable computing devices used within DOD and advises that the suggestions are expected to become policy in the near future.

Identification #: N/A
Type: Memorandum

Recommended Content Breach Prevention and Response

Policy

May 22, 2007

Memorandum: #OMB Memorandum 07-16, Safeguarding Against and Responding to the Breach of Personally Identifiable Information

This Memorandum outlines the framework within which Federal agencies must develop a breach notification policy while ensuring proper safeguards are in place to protect the information.

Identification #: OMB Memorandum 07-16
Type: Memorandum

Recommended Content Breach Prevention and Response

Policy

Sep 19, 2006

Memorandum: Recommendations for Identity Theft Related Data Breach Notification

This Memorandum provides recommendations for planning and responding to data breaches which could result in identity theft.

Identification #: N/A
Type: Memorandum

Recommended Content Breach Prevention and Response

Policy

Jun 23, 2006

Memorandum: #OMB Memorandum 06-16, Protection of Sensitive Agency Information

This Memorandum addresses the efforts to properly safeguard information assets while using information technology by incorporating a checklist from the National Institute of Standards and Technology (NIST) for protection of remote information.

Identification #: OMB Memorandum 06-16
Type: Memorandum

Recommended Content Breach Prevention and Response

Policy

May 22, 2006

Memorandum: #OMB Memorandum 06-15, Safeguarding Personally Identifiable Information

This Memorandum reemphasizes responsibilities under law and policy to appropriately safeguard sensitive personally identifiable information (PII) and train employees on responsibilities in this area.

Identification #: OMB Memorandum 06-15
Type: Memorandum

Recommended Content Breach Prevention and Response

Page 2 of 2, showing items 16 - 21

Last Updated: May 12, 2025

DHA Address: 7700 Arlington Boulevard | Suite 5101 | Falls Church, VA | 22042-5101

Some documents are presented in Portable Document Format (PDF). A PDF reader is required for viewing. Download a PDF Reader or learn more about PDFs.

Photos

Videos

Infographics

Follow us on Social Media

Clear Your Cache

Breach Prevention and Response

What is a Breach?

Breach Reporting

You also may be interested in...

Memorandum: Update to Using Digital Signature when Sending Electronic Mail

Memorandum: Encryption of Sensitive Unclassified Data at Rest on Mobile Computing Devices and Removable Storage Media

Memorandum: #OMB Memorandum 07-16, Safeguarding Against and Responding to the Breach of Personally Identifiable Information

Memorandum: Recommendations for Identity Theft Related Data Breach Notification

Memorandum: #OMB Memorandum 06-16, Protection of Sensitive Agency Information

Memorandum: #OMB Memorandum 06-15, Safeguarding Personally Identifiable Information