VA Southeast Network (VISN 7)

Issue: A Financial Service Center (FSC) Privacy Officer received a telephone call from Individual A at 1:15 pm who advised that he received travel documents in an envelope addressed from Individual B at the VA Medical Center, 109 B. Street, Charleston…

Outcome: Privacy Officer was unable to identify the perpetrator of the error since several employees were involved with processing paperwork sent back to the facility to set up Veteran's direct deposit of future travel pay payments. However, the duties now reside…

Issue: On 10/13/11, Veteran A contacted the Dorn VA Medical Center Outpatient Supervisor by phone to report an incident. The Veteran informed the Supervisor that he did not receive his medication, which was due to be delivered by UPS. The UPS…

Outcome: Staff is being re-educated on the need to safeguard patient information, and the importance of being vigilant when disbursing medication.

Issue: On 11/7/2011, Veteran A received a reminder by mail of an upcoming Dental appointment. The Veteran was surprised to see a second appointment letter, which was intended for another Veteran included in the same envelope. Veteran A contacted the Privacy…

Outcome: Staff is being re-educated on the need to safeguard patient information.

Issue: Veteran As wife called the Dorn VA Medical Center Release of Information Office (ROI) to inform them that her husband received copies of a three page medical report by mail, which was intended for Veteran B. The report was inadvertently…

Outcome: Staff is being re-educated on the need to safeguard patient information.

Issue: During a weekly Sensitive File Audit, the Information Security Officer (ISO) discovered a malicious violation as Employee A entered into Veteran Employee B 'sensitive' flagged medical record. Employee admitted the incident and stated she did not have a valid reason…

Outcome: Per Assistant Director; Appropriate administrative action is to be administered toward employee.

Issue: A contracted ambulance service driver or technician recognized a Veteran/Patient as an earlier acquaintance or childhood friend. The driver or technician posted derogatory comments on the Veterans mother's personal Facebook account regarding the Veteran and his care. The driver or…

Outcome: PO and COTR met with ambulance contractor and their personnel staff to discuss expectations of the company and personnel. Requested all personnel complete mandatory VHA Privacy Training on an annual basis. Contractor (VP) had already handled the personnel issue and…

Issue: On 10/11/11, between 5:45 PM and 6:15 PM, a log book with personally identifiable information (PII) and protected health information (PHI) was stolen from a VA physician's car. This log book contained the following information on approximately 377 patients: full…

Outcome: Credit Monitoring letters were mailed to all affected Veterans or next-of-kin on 10/20/11. The physician was counseled and has re-taken the VA Privacy and Information Security Training. The Affiliate Program Director was notified of the breach. All gasto-intestinal (GI) residents/fellows…

Issue: The Privacy Officer was notified that a Veteran from the Psychosocial Residential Rehabilitation Treatment Program (PRRTP) was in the Veterans' Cyber Cafe using a computer and discovered approximately 10-12 sheets of paper lying face down across the corner of the…

Outcome: Remedy: Human Resources Management Services has been consulted for the appropriate level of disciplinary action regarding the VA employee. Additional training has been provided to the staff regarding securing PHI/PII was completed with signatures acknowledging the staff\xe2\x80\x99s understanding pertaining to…

Issue: 10/3/2011, Veteran A arrived at the Dorn VA Outpatient Pharmacy window, because he had questions about a medication listed on his medication sheet. The Veteran presented the paperwork to the Pharmacy Technician at the window. Upon review of the paperwork,…

Outcome: Staff is being re-educated on the need to safeguard patient information.

Issue: On 9/21/11, Veteran A requested a list of his future appointments with the Columbia, SC Dorn VA Medical Center. After the Veteran returned home that evening, the Veterans daughter (Dorn VA employee) reviewed the list of appointments and was surprised…

Outcome: Staff is being re-educated on the need to safeguard patient information.