Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Southeast Network (VISN 7)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on August 1, 2012. Also cited in 225 other reports.
Report ID: SPE000000078611, U.S. Department of Veterans Affairs
Reported Entity: VISN 07 Columbia, SC
Issue:
A Veteran employee made a written request to the Information Security Officer (ISO) for a report of co-workers who may have accessed his medical record without authorization. The Veteran employee made a further written request to further investigate several co-workers who may have accessed medical record without authorization and may have inappropriately disclosed medical information to other co-workers Update: 08/06/12:The Service Chief, ISO, Compliance Officer (CO), Privacy Officer (PO) , and Chief Information Officer (CIO) are conducting a thorough investigation.08/13/12:The subjects of the investigation have been interviewed and a determination is in progress. A key participant in this investigative process has been away on official travel. A comprehensive report will be made available as soon as possible.08/20/12:Employee A looked at Veteran Employee's medical record with out need to know. Therefore Veteran Employee will receive a letter offering credit protection services.
Outcome:
Employees computer accounts were deactivated. HR Chief and Compliance Officer were notified of this incident.