VA Mid South Healthcare Network (VISN 9)

Report ID: SPE000000066760, U.S. Department of Veterans Affairs

Reported Entity: VISN 09 Nashville, TN

Issue:

A Veteran initially called into the Director's Office to report both a HIPAA violation and to report how this Veteran was treated by a specific Nurse. The Privacy Officer (PO) called the Veteran for additional information. The Veteran stated that this Nurse, in front of other Veterans and family members in the waiting area of a clinic, stated in a tone loud enough to be heard by others, the type of medication the Veteran was being prescribed. The Veteran stated the Nurse looked up his record in CPRS and the Veteran feels the Nurse should not have been in the Veterans record. The Veteran stated that this happened on more than one occasion, the first dating back 2 years ago, with the most recent occurrence happening last month (August 2011). Update: 09/14/11:The Veteran will be sent a notification letter.09/20/11:An appeal was filed. The DBCT reviewed and denied the appeal. The appellant stated that the information that was overheard by the others in the waiting room did not include any information that would allow for the possibility of identity theft. The DBCT agreed with that however the fact that the nurse mentioned his type of medication was a disclosure of protected health information. The nurse should have spoken to the Veteran in an exam room or place other than the waiting area, or should have spoken in a softer voice. Notification is still required.

Outcome:

The Nurse in question was provided training and education concerning Auditory Privacy and acknowledged she would be more aware of auditory privacy in the future. HIPAA Notification Letter being mailed on 10/11/11.