Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
EISENHOWER MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on October 6, 2014. Also cited in 279 other reports.
Report ID: PK4C11.01, California Department of Public Health
Reported Entity: EISENHOWER MEDICAL CENTER
Issue:
Based on interview and record review, the facility failed to prevent unauthorized disclosure of protected health information for one Patient (Patient 1). An Admitting Department employee entered the incorrect ordering physician (Physician 2 instead of Physician 1) when registering Patient 1 for a radiology procedure. This failed practice resulted in the radiology/ultrasound results being sent to the incorrect physician and the potential for a delay in follow up care, as well as the potential for physical, emotional, and financial harm to Patient 1.Findings:During an interview with the facility Privacy Officer (PO) on October 6, 2014, at 12 p.m., the PO stated Patient 1 was registered by the admitting department to have a procedure done (using ultrasound) in the radiology department. The PO stated the admitting clerk used the facility computer system to register the patient, and selected the wrong ordering physician's name (Physician 2) from the drop down menu. The PO stated the physician's name that was selected (Physician 2) was similar in spelling to the name of the physician who ordered the procedure (Physician 1). According to the PO, after the US procedure report was completed, it was sent to the ordering physician of record (Physician 2) instead of to the physician who actually ordered it (Physician 1). The radiology/ultrasound report that was sent to the wrong physician was reviewed on October 6, 2014. The report included the following PHI for Patient 1:1. Name;2. Date of birth;3. Sex;4. Age;5. Medical record number;6. Account number;7. Location the procedure was performed (at the Cancer Center);8. Name of procedure (biopsy ultrasound and biopsy);9. Past medical history (regarding prostate problems); and,10. Details of the procedure.Failure of the admitting clerk to verify the procedure was ordered under the correct physician resulted in unauthorized persons receiving PHI for Patient 1.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280