Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Northwest Network (VISN 20)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on July 23, 2012. Also cited in 208 other reports.
Report ID: SPE000000078162, U.S. Department of Veterans Affairs
Reported Entity: VISN 20 Seattle, WA
Issue:
A nurse at VA Puget Sound was concerned that former co-workers had accessed her record based on comments that some of them had made to her. She requested a copy of her Sensitive Patient Access Report from the Privacy Officer (PO) and the Information Security Officer (ISO). After inspecting her copy of the report, she stated that there were individuals listed on the report who should not have accessed her medical record as they were not part of her treatment or responsible for payment related to her VA medical care. She has asked the Privacy Office and the Information Security Office to fully investigate. Update: 10/01/12:The nurse will receive a letter of notification.10/3/12: Update - The co-worker also entered into the records of 35 other individuals inappropriately. A total of thirty-six (36) individuals will receive letters offering credit protection services.10/9/12: Further review by the PO indicates another 2 records were entered, for a new total of thirty-eight (38).
Outcome:
The employee who had accessed thirty-six other employees medical records has been dis-usered and presently being investigated and sanctioned by the Service Line and by HR. The outcome has yet to be determined. This employee will be terminated from VA service.