Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Southeast Network (VISN 7)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on April 28, 2011. Also cited in 225 other reports.
Report ID: SPE000000061716, U.S. Department of Veterans Affairs
Reported Entity: VISN 07 Decatur, GA
Issue:
A Community Based Outpatient Clinic (CBOC) Administrator alerted the alternate Privacy Officer (PO) that a Release of Information (ROI) request had been sent to the wrong patient (Patient A) through the mail. Patient A brought in the package of medical records he received in the mail. The package contains about 300 pages of progress notes for Patient B. Patient A stated he requested copies of his own medical records through the ROI department and was surprised to receive the records of another Veteran. Patient A is concerned the other Veteran may have received his records.The PO is in the process of interviewing the clerk who handled the request to find out if the other veteran was sent his medical records.The PO has the copies in their possession. Update: 04/28/11:Patient B will receive a letter offering credit protection services.
Outcome:
Chief of section has discussed with staff compliant process for mail out of these documents and has stressed the two-person verification process.