Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA New England Healthcare System (VISN 1)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on July 16, 2012. Also cited in 204 other reports.
Report ID: SPE000000077901, U.S. Department of Veterans Affairs
Reported Entity: VISN 01 Manchester, NH
Issue:
The Information Security Officer (ISO) ran a sensitive flag report and forwarded information to be review to the leadership. After review, one employee was asked why they accessed another employee's record. In the past this employee had a relationship with this other employee. The employee that access the other employee's record denied going into the record. Update: 07/18/12:The supervisor did a more extensive look into the records that this employee accessed. The supervisor found that there were thirteen records that this employee access without a work related reason. Thirteen employees will be sent a letter offering credit protection services.NOTE: There were a total of 15 Mis-Handling incidents this reporting period. Because of repetition, the other 14 are not included in this report, but are included in the "Mis-Handling Incidents" count at the end of this report. In all incidents, Veterans will receive a notification letter and/or credit monitoring will be offered if appropriate.
Outcome:
The Supervisor of the employee is going to Human Resources to get guidance on action to this individual. The Privacy Officer has recommended that the employee retake Privacy training.