Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on January 27, 2011. Also cited in 328 other reports.
Report ID: SPE000000057577, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Memphis, TN
Issue:
During an audit of the study entitled: "Memphis VAMC: Nutrition Day 2010 in the United States," the Memphis VAMC Research Compliance Officer noted that informed consent for 9 study subjects were not obtained, i.e. Principal Investigator did not take the consents before enrolling and accessing information on the subjects. It was noted that the Investigator obtained study subjects information from the CPRS and/or from the study subjects without obtaining HIPAA Authorization. Update: 01/27/11:Nine (9) Veterans will receive a letter offering credit protection services.
Outcome:
PO met with Principal Investigator (PI) to explain the risk and financial cost of this breach in terms of credit monitoring, etc. PI has learned her lessons from this breach and has assured PO of her willingness to prevent such an incident from happeningagain.