Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on August 14, 2012. Also cited in 64 other reports.
Report ID: TS9M11.01, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on interview and documents review, the facility failed, for one patient (Patient A), to ensure that Protected Health Information (PHI) was not disclosed to an entity not authorized to receive the information. Findings:On August 14, 2012, at 11:55 a.m., the Facility Privacy Officer (FPO) was interviewed. The FPO stated Patient B was transferred to another facility on July 28, 2012. Two pages of Patient A's admitting orders were sent with Patient B when transfer. The FPO stated the PHI included in the admitting orders were patient's name, sex, age, date of birth, medical record number, admit date, room number, account number, physician's name, allergies, diet, diagnoses, medications, treatments and consultations to be done. The FPO stated the receiving facility shredded Patient A's admitting orders afterwards. On August 14, 2012, a review of facility documents included:a. Two pages of Patient A's admitting orders. The PHI included patient's name, sex, age, date of birth, medical record number, admit date, room number, account number, physician's name, allergies, diet, diagnoses, medications, treatments and consultations to be doneb. A letter addressed to Patient A, dated August 2, 2012, indicated the facility notified Patient A of the privacy breach.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280