US United States Department of Veterans Affairs Nov 2011 Physical Action (Q16178)
From Open Risk Manual
A data breach risk event
Language | Label | Description | Also known as |
---|---|---|---|
English | US United States Department of Veterans Affairs Nov 2011 Physical Action |
A data breach risk event |
Statements
378B9B7B-8871-4607-8BB0-C6523BF2D1C1
November 2011
0 references
A resident from an affiliate hospital had a logbook stolen out of his vehicle at the affiliate hospital. This logbook contained information on all patients he has seen in the Omaha VAMC Operating Room (OR) for the past 20 months, so he could track his procedures and types of anesthetics he used. The resident stated that he would either just write in the patients age, case, procedure type, and anesthetic used (with no identifiers) or in some instances he took a patients label with their full name, SSN, and DOB and stuck it in the log. He does not know what patients were in his log. (English)