Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
New Mexico VA Health Care System
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on December 9, 2014. Also cited in 43 other reports.
Report ID: PSETS0000112645, U.S. Department of Veterans Affairs
Reported Entity: NEW MEXICO HCS - 501
Issue:
The Outpatient Pharmacy Supervisor reported to facility Privacy Officer (PO) that Veteran A had not received a mailed prescription. Upon review of the shipping information, it was determined that Veteran B had received and signed for two prescriptions, even though he was only scheduled for delivery of one. Veteran B was contacted by Pharmacy and acknowledged he had received two packages and one was for Veteran A. Arrangements were made for immediate pick-up of medication incorrectly mismailed to Veteran B. UPS picked up the package on next day and delivered back to facility Pharmacy; all medication accounted for and correct medication re-mailed to correct Veteran A with verification of receipt. In fact-finding, it appears that the addresses were not double-checked (no initials on Pharmacy label as required by internal SOP). Processes and procedures re-reviewed with vault and outpatient tech staff in the Pharmacy to insure heightened awareness and necessary re-training/oversight.
Outcome:
12/10/14: The Incident Resolution Service Team has determined that Veteran A will be sent a HIPAA notification letter due to Protected Health Information (PHI) being disclosed.