Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid-Atlantic Health Care Network (VISN 6)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on November 7, 2011. Also cited in 187 other reports.
Report ID: SPE000000068396, U.S. Department of Veterans Affairs
Reported Entity: VISN 06 Beckley, WV
Issue:
During his medical appointment, a Veteran picked up and asked to take a "Housing and Urban Development and the Department of Veterans Affairs Supported Housing (HUD-VASH) Handbook" with him. The provider allowed it since she thought the Handbook was for Veterans to take. The Veteran took it with him and later saw a patient list attached. He presented to Emergency Department Administrative Officer to voice concern that this list was attached to all Handbooks. The provider went to the Veteran's home, explained that this was the only such Handbook and was able to recover the list. Update: 11/07/11:The list contained 38 full names and SSNs. Letters offering credit protection services will be sent to 38 Veterans.NOTE: There were a total of 23 Mis-Handling incidents this reporting period. Because of repetition, the other 22 are not included in this report, but are included in the "Mis-Handling Incidents" count at the end of this report. In all incidents, Veterans will receive a notification letter and/or credit monitoring will be offered if appropriate.
Outcome:
Additional training was provided to staff in this specific workgroup (HUD-VASH). Since this workgroup is part of the Mental Health Service Line (MHSL), I also went to one of their staff meetings and conducted privacy training to the 30+ employees who comprise the MHSL. The employee who was responsible for this privacy breach felt very, very bad about it, and I have always thought that she actually did her best to maintain the privacy of our Veterans. So, I have invited her to be a Privacy Liaison on my Privacy Committee and she has accepted my invitation. Now, she will be personally promoting privacy issues and will be involved, to some degree, with trainings, environment of care rounds, etc. I think that since she was personally responsible for a privacy breach she personally understands the ramifications. I also, of course, have sent out the notification/credit monitoring letters to the Veterans involved. A few have called me after they received their letters.