Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on April 24, 2012. Also cited in 328 other reports.
Report ID: SPE000000074542, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Memphis, TN
Issue:
A VA employee reported two Memphis VAMC staff have accessed her medical records on two different occasions. Complainant stated the suspected VA staff are neither providers nor patient care staff, and should not have accessed her medical records - unless they had need to know. Update: 04/25/12:The employee will be sent a letter of notification.
Outcome:
PO has spoken with the two VA employees who accessed complainant's record. PO drew their attention to Privacy Act requirements and other VA Privacy policies and guidelines regarding access and use of VA sensitive information. PO also discussed VA Rules of Behavior with employees. PO noted both employees have taken their VHA Privacy and HIPAA training. PO is submitting a summary report to employees supervisors so that they will in turn meet with the Human Resources to determine the appropriate corrective action to prevent such an incident from happening again. PO has attached a redacted copy of Notification letter in PSETS- case is considered closed as of 5/3/2012.