Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
VA Mid South Healthcare Network (VISN 9)
Mentioned in a privacy incident report created by the U.S. Department of Veterans Affairs on November 9, 2011. Also cited in 328 other reports.
Report ID: SPE000000068472, U.S. Department of Veterans Affairs
Reported Entity: VISN 09 Huntington, WV
Issue:
Somehow, two patients were mistakenly placed in the same exam room. When the physician entered the room, he assumed that Patient B was a family member and began discussing the health information of Patient A. Patient B became upset (he knew this was a privacy violation) and left the room. This incident happened on 10/14/11 but Privacy Officer (PO) was just notified about it today. The PO is still investigating how this happened. Update: 11/09/11:Veteran A will be sent a notification letter.11/06/11:An Appeal was filed. The DBCT reviewed and denied the appeal. They want the PO to interview the staff involved and determine the time of day and then narrow it down to the individuals involved. The individuals involved could make a HIPAA complaint and VA needs to proactively notify the person whose information was disclosed. The PO will need to involve the supervisor of the clinic and have him/her ask staff which patients were involved.The DBCT also wants to know why it took so long to notify the PO of the incident.
Outcome:
Staff reminded to be more cautious when placing patients in the exam rooms. It appears that this was due to inexperienced staff members placing patients in the exam rooms. Unable to identify the patient whose information was being discussed in front of the other patient.