Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Orlando VA Medical Center
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on September 30, 2013. Also cited in 44 other reports.
Report ID: PSETS0000095262, U.S. Department of Veterans Affairs
Reported Entity: ORLANDO FL - 675
Issue:
Veteran A was given Veteran B's medication list when Veteran A visited the pharmacy for pick-up. The medication list also showed two future appointments for Veteran B. Unfortunately, Veteran A covered up Veteran B's name with a sticky note so we are unable to verify name and extent of any SSN information. It appears there is a date at the top of the list, but it is not flagged as a DOB. The Privacy Officer (PO) will contact Veteran A today to determine the name of Veteran B and if any SSN was under the sticky note. Veteran A used the list to buttress a Congressional complaint regarding his medications in general, which was how the facility learned of the error. Veteran A will be contacted to ascertain the Veteran B's name and what, if any SSN info was covered by the sticky note.
Outcome:
09/30/13: The medication list was returned to the facility PO on 10/01/13 by mail. Upon examination, the PO confirmed that no SSN was printed. However, a MM-DD-YYYY was machine printed across the top of the form, but not flagged as a DOB. Besides listing three medications, the form also listed two future appointments by date and clinic name. 10/03/13: Veteran B will be sent a notification letter.