US United States Department of Veterans Affairs Feb 2011 Misuse (Q15921)
From Open Risk Manual
A data breach risk event
| Language | Label | Description | Also known as |
|---|---|---|---|
| English | US United States Department of Veterans Affairs Feb 2011 Misuse |
A data breach risk event |
Statements
2ACF5383-2E24-404F-99D8-7DA3B6C13B23
February 2011
0 references
On 02/11/11, the Alternate Privacy Officer (PO) received an anonymous phone call reporting a suspected unauthorized access to medical record for 2 deceased VA employees. The caller suspected someone was accessing the deceased VA employees records without the appropriate authorization or the need to performhis/her job duty. Hence, the Alternate PO requested patient sensitivity access logs for the deceased individuals. 02/14/11:The caller did not identify the individual who they suspected was accessing the deceased employees records. The Privacy Officer received the access logs and isattempting to identify if anyone accessed the records inappropriately. 02/22/11: The Privay Officer identified 24 staff members who accessed the records. She will be meeting with each one and asking for documen (English)
