US United States Department of Veterans Affairs Jul 2012 Misuse (Q10874)
From Open Risk Manual
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English | US United States Department of Veterans Affairs Jul 2012 Misuse |
A data breach risk event |
Statements
9531E6E4-1221-4515-B638-1EB24055BA8D
July 2012
0 references
Employee A, who is a Veteran, was admitted into the our hospital. The Information Security Officer (ISO) was asked to keep an eye on Employee As medical record. The ISO found that three other employees accessed the record without authorization or need to know. Employees B and C admitted gaining access without a need to know, Employee D denied gaining access. (English)