Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
ST. HELENA HOSPITAL CENTER FOR BEHAVIORAL HEALTH
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on October 5, 2012. Also cited in 13 other reports.
Report ID: XNCP11.01, California Department of Public Health
Reported Entity: ST. HELENA HOSPITAL CENTER FOR BEHAVIORAL HEALTH
Issue:
Based on interview, clinical record and administrative document review, the hospital failed to keep protected health information (PHI) confidential when staff disclosed to an unauthorized agency that Patient 16 was actually in the hospital and discussed private issues. This failure resulted in a breach of PHI and possible unauthorized use of the information.Findings:In an interview on 10/05/12 at 10:45 a.m., the HIM Supervisor for HIPPA stated that, on 11/16/11, information about Patient 16 was shared by telephone with an outside agency. She explained that the information for Patient 16 was communicated to the outside agency, which had non-medical dealings with the patient, without authorization. The Supervisor confirmed the information which was revealed.The information transmitted included the fact that Patient 16 was actually in the hospital, services which had been provided, the treatment and discharge plan including a psychological examination. The incident occurred on 11/16/11, but the HIPPA Supervisor did not become aware of this until 11/29/11 and reported it on 11/30/11.The employee failed to verify that the release of this information was authorized by the patient or guardian.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280