Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Scripps Mercy Hospital
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on May 10, 2012. Also cited in 72 other reports.
Report ID: NG6011.01, California Department of Public Health
Reported Entity: SCRIPPS MERCY HOSPITAL
Issue:
Based on interview and record review, the hospital failed to ensure that Patient 1's medical information was kept confidential from anyone not authorized access.Findings:An interview with the hospital's Patient Relations (PR) was conducted on 5/10/12 at 2:00 P.M. The PR stated that Patient 1's emergency room report and chest x-ray result were suppose to be faxed to the patient's physician's office. However, according to the PR, a health information clerk (HIC) inadvertently faxed Patient 1's medical records to the wrong fax number. The PR stated that the fax number dialed by the HIC was incorrect by one digit. The PR stated that the HIC should have checked to ensure that the fax number inputted on the fax machine was correct before pressing the send button. Per the hospital's policy and procedure titled Facsimile of Information, "Verify the accuracy of the fax number with the intended recipient before sending the fax. Validate the fax number is accurately punched in before hitting the send button." The medical records that were inadvertently sent to the wrong fax number indicated Patient 1's name, date of birth, medical record number, social security number, address, phone number, spouse's name, employer, insurance information, diagnosis, medical history, medications, and chest x-ray result.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights