Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
SONOMA VALLEY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on April 25, 2012. Also cited in 10 other reports.
Report ID: LB2111, California Department of Public Health
Reported Entity: SONOMA VALLEY HOSPITAL
Issue:
Based on interview and document review, the hospital failed to prevent unauthorized access to one patient's protected health information.Findings:In interview on 4/25/12 at 9:30 a.m., Staff A stated that on 4/3/12, Patient 2 notified her that he had requested a copy of his magnetic resonance imaging study to take to Physician B, not a member of the hospital's staff. He stated that Staff C had provided him with a compact disc (CD) with his name on it. He stated that when Physician B began to review the study, he noted that the study on the disc was that of Patient 1. Staff A stated that Staff C then called Physician B. He verified that the study on the CD was not Patient 2's, and confirmed that he had destroyed the CD. Staff A stated that Patient 1 and the Department were notified of the breach on 4/5/12. Document review on 4/25/12 demonstrated that when the contents of the mislabeled CD appeared on the computer screen the protected health information visible to Physician B consisted of Patient 1's name, medical record number, type of study and date of study.Document review on 4/25/12 demonstrated that Patient 1 and the Department were notified of the breach on 4/5/12, within 5 business days of discovery.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280