VA Mid-Atlantic Health Care Network (VISN 6)

Issue: An employee in the Release of Information (ROI) department mis-mailed a Veteran's medical records to another VA employee. The VA employee has returned the Veteran records. Update: 06/28/11:The Veteran will be sent a letter offering credit protection services, since the…

Outcome: Employee was reeducated and provide information regarding VA Directive 6609

Issue: Insurance company MED3000 mailed insurance claim form and explanation of benefits (EOB) on Veteran patient to an human resource (HR) specialist. The documents contained the name, full SSN, date of birth and diagnosis. Update: 06/27/11:The Veteran patient will receive a…

Outcome: Since this was a Privacy matter that emanated from Revenue, the Privacy Office at the MACPAC was notified of this incident as well as the Privacy Office at Humana, Inc. The information was faxed to both entities and an e-mail…

Issue: A VA employee's supervisor reports that the employee accessed 4 patients' medical records and disclosed information regarding their treatment in a complaint that he filed regarding other employees in his department. The information accessed included full name, full SSN and…

Outcome: The employee was provided education on e-mail communication and the right of access to patient information.

Issue: Mismailing of laboratory results for Veteran A were improperly disclosed to Veteran B. Update: 06/22/11:Veteran A will be sent a notification letter.…

Outcome: The Privacy Office provided re-education to the Health Administration clerks on the appropriate procedures when processing laboratory letters to maintain confidentiality of protected health information.

Issue: On Wednesday, June 15, 2011, the Durham Information Security team received an email from an employee at the Durham Medical Center to alert us to an unencrypted email containing 41 employee names and social security numbers. A Durham Information Security…

Outcome: Employee retook VHA privacy and security awareness training.

Issue: A form containing a copy of drivers' licenses for seven employees has been misplaced by clerical staff. A search for the form has not revealed any results. Update: 06/21/11:Seven (7) Employees will received letters offering credit protection services due to…

Outcome: Responsible employee to receive appropriate administrative action and additional training. Referred to service chief.…

Issue: A Pharmacy technician inadvertently gave Patient A's prescription and accompanying paperwork to Patient B. The Pharmacy technician realized the mistake and the Chief of Pharmacy contacted Patient B. Patient B confirmed he has Patient A's prescription and accompany paperwork and…

Outcome: The Chief of Pharmacy has reviewed their procedures and has provided additional training to the technician who dispensed the medication.

Issue: A Dental assistant gave a patient an appointment list that was for another Veteran. The list contained the Veterans full name and social security number. Update: 05/24/11:Veteran A will be sent a letter offering credit protection services, due to full…

Outcome: Employee received remedial training by privacy officer and was referred to service chief for appropriate administrative action.

Issue: Patient A, who was a Durham VAMC patient, mailed a package he received. Included inside were medical records for Patient B who was a Salisbury patient. The package had a return address from the VA Clinic in Winston-Salem, NC. Update:…

Outcome: The Veteran returned the medical records not belonging to him to the VA. Staff was reminded of procedures regard the mailing of documents.

Issue: An employee printed a Bar Code label and cut off the name leaving the full SSN and bar code then pasted the label on a door. Update: 05/05/11:The Veteran will be sent a letter offering credit protection services.06/14/11:There were two…

Outcome: Employee received additional training and was referred for administrative action.