Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid-Atlantic Health Care Network (VISN 6)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on July 24, 2012. Also cited in 187 other reports.
Report ID: SPE000000078198, U.S. Department of Veterans Affairs
Reported Entity: VISN 06 Durham, NC
Issue:
Following a group study/research session on 07/19/12, one of the study participants, Veteran A inadvertently picked up the attendance sheet with his handouts when leaving the group meeting. The attendance sheet is kept on a table where the research staff meets with the group and patients sign in when they arrive. The sheet contains the participants study ID, first and last names and a space for them to sign when they arrive and indicate future absences. In this case the attendance sheets for three other groups held on 07/17/12 and 07/19/12 were also attached to the list for a total of 49 names. The Veteran returned all sign in sheets on 07/23/12 after he realized he had mistakenly took them. Update: 07/24/12:Forty-nine (49) Participants will be sent a notification letter due to Protected Health Information (PHI) being exposed.
Outcome:
The Research group will continue to use a sign in sheet for each group, however the patients study ID number will be removed. One sheet will be used for each group. After the patients sign in for the session staff will secure the sheet. Following the session, attendance will be recorded in our password protected tracking database and the hard copy will be stored with the research files in a locked cabinet in the project coordinators office.