Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Heartland Network (VISN 15)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on June 11, 2012. Also cited in 149 other reports.
Report ID: SPE000000076543, U.S. Department of Veterans Affairs
Reported Entity: VISN 15 St Louis, MO
Issue:
A VA clincal Employee A obtained a copy of her Access Log. She questioned the need-to-know of her co-worker, Employee B, listed as having accessed her record. Update: 06/13/12:Employee B's name appears on the Access Log on 08/03/11, however there is no apparent reason for her accessing Employee A's record. The Privacy Officer (PO) will interview Employee B as to her reason for accessing Employee A's record and complete inquiry this week.06/06/12:Employee B does not admit to being in her co-worker's record. She claims she must have left her PC open due to being very busy and "someone else must have used it." However, any actions taken under her log-in are her responsibility. She claims no animosity and her co-worker seemed mildly surprised at her name appearing on the Access Log. The Access Log only reflects entry into CPRS. Employee A will receive a letter offering credit protection services.
Outcome:
Employee received written repremand.