Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Northwest Network (VISN 20)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on September 15, 2011. Also cited in 208 other reports.
Report ID: SPE000000066813, U.S. Department of Veterans Affairs
Reported Entity: VISN 20 White City, OR
Issue:
The Sensitive Patient Access log showed Employee A's (who is also a Veteran) supervisor had accessed CPRS. When justification for access was requested, supervisor said it was to get the Employee A's address and phone number as they were a new hire. Update: 09/16/11:Employee A will be sent a notification letter.
Outcome:
Supervisor was counseled this was inappropriate access and advised to contact HR in the future. Documentation provided for OCR complaint, apology letters mailed to Veteran, and documentation kept for future disciplinary action if needed.