Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
EISENHOWER MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on July 23, 2013. Also cited in 279 other reports.
Report ID: ND7111.01, California Department of Public Health
Reported Entity: EISENHOWER MEDICAL CENTER
Issue:
Based on interview and record review, the facility failed to ensure PHI for one patient (Patient 1) was protected from disclosure to a person or persons not authorized to have access to it. An employee from the lab followed the facility procedure for faxing lab results to a physician's office, as it was listed in the facility computer system directory, and the results ended up going to a different office. This failed practice resulted in the potential for physical, emotional, and financial harm to Patient 1.Findings:During an interview with the facility Legal Assistant on July 23, 2013, at 2 p.m., the assistant stated on July 30, 2012, an employee from the lab followed the procedure for faxing lab results for Patient 1 to her physician's office. She stated the employee used the drop down screen on the computer to choose the office the fax was to be sent to, but the fax number contained in the system for that physician's office was, in fact, the number for a different office. She stated the intended physician's office fax number had changed. She stated there was outdated information in the system.The information faxed to the unintended physician's office was reviewed on July 23, 2013. The information included the following PHI:1. Name;2. Sex;3. DOB;4. MRN;5. Account number;6. Date of service; and,7. Multiple lab results.The facility policy titled, Requesting Results to be Faxed in HLAB," was reviewed on July 23, 2013. The policy indicated the employee should locate the physician using a drop down screen that had the fax number to the office listed next to the physician's name, then click OK to send the fax.The employee followed the facility procedure as outlined, but the fax number listed for the physician was incorrect, and the lab reports ended up at a different physician's office.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280