Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Southeast Network (VISN 7)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on October 2, 2012. Also cited in 225 other reports.
Report ID: SPE000000080753, U.S. Department of Veterans Affairs
Reported Entity: VISN 07 Tuscaloosa, AL
Issue:
On September 28, 2012, the Privacy Officer was notified by the Assistant Chief, Pharmacy Service via voice message that a veteran arrived at the Outpatient Pharmacy window to fill his prescription, and discovered that he had two prescriptions. One was for him (Veteran A) and another belonging to another veteran (Veteran B). Veteran A's prescription was for Morphine S04 30 mg SR TAB, and Veteran B's prescription was for Methadone 10mg Tab. Veteran B's prescription contained his full name, full SSN, the doctors DEA/NPI number, patients allergies, patients mailing address and phone number. Update: 10/02/12:Veteran B will be sent a letter offering credit protection services due to full name and full SSN being disclosed.
Outcome:
The redacted Credit Monitoring letter has been sent to the veteran. Re-education has been provided to the staff regarding the handling and security of a patient's sensitive information. And the Medical Facility has in process a draft an SOP on delivery of prescriptions to the patient and to pharmacy. The Privacy Officer's investigation is complete.