Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Tennessee Valley Healthcare System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on May 27, 2014. Also cited in 104 other reports.
Report ID: PSETS0000104603, U.S. Department of Veterans Affairs
Reported Entity: NASHVILLE TN - 626
Issue:
The Veteran reported the following to the Privacy Officer on 5/27/14: A Veteran, who at that time was going through a VA Recovery Treatment Program, was contacted by a person outside the VA who informed the Veteran that he had received a telephone call on May 22, 2014, from Staff at the Recovery Treatment Program. In that telephone call, the Staff informed the Outside person that they had a patient that was being dismissed due a failure of a drug test and cited the specific drug test and was requesting that he come pick up the Veteran. In addition to releasing the specific failed drug test, they also provided this person the full name of the Veteran. This Veteran reported this incident, as she did not sign an authorization for the Staff to discuss any of her personal or medical information with this individual.
Outcome:
05/27/14: The Incident Resolution Team has determined that the Veteran will be sent a HIPAA notification letter due to Protected Health Information (PHI) being disclosed.