Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on October 24, 2011. Also cited in 328 other reports.
Report ID: SPE000000067941, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Nashville, TN
Issue:
On 10/19/11, while an employee/Veteran A was an inpatient, a Nurse at the ACY Campus, who is assigned to a different Ward than the one the employee/Veteran A was admitted too, was observed by another Nurse accessing employee/Veteran A's CPRS record. On 10/20/11, the Nurse that observed this inappropriate access provided a statement to his Supervisor notifying her of this incident. The Nurse Manager questioned the Nurse who accessed who admitted she accessed to view Lab Results.The Privacy Officer (PO) was notified on 10/24/11 of this incident and ran a Sensitive Patient Access Report (SPAR) and confirmed access by this Nurse on 10/19/11. Update: 10/24/11:Emplooyee/Veteran A will be sent a letter offering credit protection services, since their name, SSN, date of birth, and medical information was disclosed.
Outcome:
Nursing Service is working with HR for the appropriate level of disciplinary action against the Nurse involved with this case, which will also include re-education concerning accessing of CPRS records. CM Letter to be mailed to Veteran this date.