Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
ADVENTIST MEDICAL CENTER - REEDLEY
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on June 2, 2014. Also cited in 18 other reports.
Report ID: H2RF11, California Department of Public Health
Reported Entity: ADVENTIST MEDICAL CENTER - REEDLEY
Issue:
Based on staff interview, clinical and administrative document review, the hospital failed to keep Protected Health Information (PHI) confidential when:1. Patient 1's PHI was faxed to an unauthorized recipient. (refer to CA00394645) 2. Patient 2's PHI was faxed to an unauthorized recipient. (refer to CA00394637)This failure resulted in the breach of PHI for Patient 1 and 2 and possible unauthorized use. Findings: Refer to CA003946451. On 6/25/14 at 10:50 a.m., during an interview, the Privacy Officer (PO) stated an admitting clerk misread a provider name and accidentally faxed Patient 1's standing order for lab work and lab results to an unauthorized recipient. Review of the medical record indicated the following PHI was faxed to the unauthorized recipient: Patient 1's name, date of birth, medical record number, account number, diagnosis, lab data, results of tests, medical doctor and date of service. The (Hospital) Policy number 1000.03.14: Faxing Patient Protected Health Information (PHI), dated 12/6/12 indicated, "It is the policy of the organization ... It is the senders responsibility to be aware of the content of the faxes they are sending, to exercise caution in faxing confidential information."Refer to CA003946372. On 6/25/14 at 10:55 a.m., during an interview, the Privacy Officer (PO) stated a medical records chart analyst was distracted and accidentally faxed Patient 2's emergency room record, x-ray and lab results to an unauthorized recipient. Review of the medical record indicated the following PHI was faxed to the unauthorized recipient: Patient 2's name, date of birth, medical record number, account number, health history and diagnosis, lab data, results of tests, medical doctor and date of service. The hospital Policy number 1000.03.14: Faxing Patient Protected Health Information (PHI), dated 12/6/12 indicated, "It is the policy of the organization ... It is the senders responsibility to be aware of the content of the faxes they are sending, to exercise caution in faxing confidential information."
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights