Northwest Network (VISN 20)

Report ID: SPE000000073664, U.S. Department of Veterans Affairs

Reported Entity: VISN 20 Boise, ID

Issue:

A VA Provider involved in a tort and peer review case reported to another VA employee she had let her husband (who is not a VA employee) review records and help her with her response letter for the tort and/or peer review case. It is unknown at this time if personally identifiable information (PII) was disclosed to her husband. The Privacy Officer (PO) is investigating and questioning the provider to find out more information. Update: 04/04/12:The Privacy Officer (PO) notified Acting Director and Regional Counsel of possible incident for their awareness. PO sent questions to provider about possible incident and wants answers back by close of business 4-11-12.PO received a response back from the employee. Employee stated they let herhusband read in her office at the VA the documents regarding the tort case - including VAMC Directives regarding Tort Claims, Peer Review, etc. She also stated she let him read two memos - one from the Director notifying her of the peer review which contained the last initial and last 4 of SSN. Also let him read the memo from the Risk Manager about the tort claim filed which contained the patients full name and description of the claim. She said at the time she did not realize the patient's information was on the memo's. 04/05/12:Patient A will be sent a notification letter.

Outcome:

Director signed PO report and for action - the report needed to be referred to HR and Supervisor to determine if administrative action is warranted.