Tennessee Valley Healthcare System

Report ID: PSETS0000107477, U.S. Department of Veterans Affairs

Reported Entity: NASHVILLE TN - 626

Issue:

On Saturday August 02, 2014, at 8:19 a.m., the Administrative Officer of the Day (AOD) was given an End of Shift Report, pertaining to unit 2N, which had been found on the bench outside of the Emergency Department (ED), Nashville Campus. The identity of the person who provided the document is unknown, i.e., whether he was an employee or Veteran. The document was printed on August 1, 2014 at 11:45 p.m. and contained the following patient identifiable information (PII) on nineteen (19) Veterans: full name, full social security number, date of birth, diagnosis, specialty service, diet, allergy, and providers name/pager number.

Outcome:

08/11/14: The PO is investigating whether or not the cameras in the area could determine: 1) how long the information was on the bench and 2) If anyone accessed the information. 08/12/14: After review of the camera footage, neither of the camera's had a view of the bench where the documents were so the documents were potentially out of VA hands for 8 hours. Nine (9) patients will be sent letters offering credit protection services. 08/14/14: To meet the 1 hour reporting time, the PO counted the number of names and entered the ticket into NSOC. Later when he reviewed the entries more closely, he saw there were multiple duplicate entries (10 or so he thought). Today, he compiled an Excel spreadsheet of all the names/last four SSN and saw there was a total of 11. Per the PO, two addtional Veterans' information was compromised. They will receive a letter offering credit protection services.