US United States Department of Veterans Affairs Jun 2011 Misuse (Q10250)
From Open Risk Data
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English |
US United States Department of Veterans Affairs Jun 2011 Misuse
|
A data breach risk event
|
Statements
F540C14C-4AAB-4D97-9D8F-4A41A0A485AE
June 2011
0 references
An investigation of a terminated employee revealed that there was a breach of patient Personal Identifying Information. A review of Employee As Outlook inbox revealed that Employee A forwarded an Excel workbook containing PII of (31) Veterans to Employee As personal AOL email account. The workbook contained full name, last (4) SSN, telephone contact information, home address and next of kin/emergency contact information. The workbook contained several tabs containing treatment plans for each individual patient in Employee As workload. Several patients in Employee As workload received letters requesting that they support the reinstatement of Employee A. The letters requested patients to write their name and last (4) of SSN in the body of the letter. Instructions in the letter requested tha (English)