You are on page 1of 1

We are aware of the allegations James DeNofrio made regarding privacy violations.

Each
allegation was reviewed and processed according to VHA privacy policy. As noted in the letter
written to Senator Robert Casey on April 12, 2016 by Acting Deputy Under Secretary for Health for
Operations Management Janet Murphy, Every alleged privacy violation that Mr. DeNofrio has
raised (with VA) has been fully investigated with no finding of privacy violation.
It is also our understanding the Department of Health and Human Services Office of Civil Rights is
doing a compliance review of all medical centers regarding impermissible access privacy
violations only and not an investigation of a complaint filed by DeNofrio.
We must protect whistleblowers and create workplace environments that enable full participation
of employees. The Altoona VAMC has zero tolerance for intimidation or retaliation not just
against whistleblowers, but against any employee who raises a hand to identify a problem, make a
suggestion, or report what may be a violation in law, policy, or our core values.

Regarding the VAMCs policy for dealing with anyone who illegally accesses
someone elses medical records:
Violations of privacy policies or procedures will be brought to the attention
of management for appropriate disciplinary action and/or sanctions, and
reported in accordance with national and local policy. Privacy violations will
be reported through Privacy and Security Event Tracking System (PSETS) to
the VA Network and Security Operation Center (NSOC) by the Privacy Officer
(PO) within one hour of discovery during normal business hours or as soon
as possible outside of normal business hours.

You might also like