Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Midwest Health Care Network (VISN 23)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on March 10, 2011. Also cited in 183 other reports.
Report ID: SPE000000059401, U.S. Department of Veterans Affairs
Reported Entity: VISN 23 St. Cloud, MN
Issue:
Fee Basis clerk accidentally sent Veteran A's Progress Note along with Veteran B's letter. When Veteran B opened the envelope and discovered that there was another Veteran's information that was sent to him in error, he contacted the facility and then hand-carried it to the Privacy Officer. Update: 02/10/11:Veteran A will receive a letter offering credit protection services.
Outcome:
The employee was counseled about not sending any patient PHI via Outlook as the employee does NOT have PKI. The employee had been previously cautioned by her supervisor not to share information in this manner. The employee stated they thought the supervisor meant she could not send the transmission to anyone outside the VA. The employee expressed understanding of the rules and will not make this error again. The employee was made aware of alternate ways to share this type of information.PO recommends closure as no further action is required.