US United States Department of Veterans Affairs Jan 2012 Misuse (Q10573)
From Open Risk Data
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English |
US United States Department of Veterans Affairs Jan 2012 Misuse
|
A data breach risk event
|
Statements
E154EA95-0207-4A81-9B2B-7BDA5F2F6935
January 2012
0 references
A female patient reported being inappropriately contacted via her cellular phone and received text messaging multiple times by a male VA employee. The patient allegedly reports that the VA employee accessed her medical record to obtain her personal phone number. The VA employees supervisor and Administrative Officer of that facility met with the patient to discuss the issue and the patient was offered the opportunity to file a formal complaint. There is currently an ongoing VA Police investigation of the allegation against this employee. The Information Security Officer (ISO) is conducting a sensitive access report (SAR) audit. Incident Update01/19/12:The VISN ISO was not able to perform a SAR as this medical record was not marked sensitive at the time the incident occurred. Since then, t (English)