Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
MERCY HOSPITAL OF FOLSOM
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on May 19, 2014. Also cited in 11 other reports.
Report ID: S3G711.01, California Department of Public Health
Reported Entity: MERCY HOSPITAL OF FOLSOM
Issue:
Based on staff interview and record review, the facility failed to prevent unauthorized access of patient medical information. A laboratory report was faxed to a wrong agency.Findings:The Department received a self-report dated 5/16/13 via fax that the facility detected a potential event of unauthorized disclosure of patient's medical information. The facility detected the breach 5/11/13 when personal health information from the facility laboratory for Patient 1 was unintentionally sent to another healthcare facility. The unintended healthcare facility receiving the information immediately shredded the information. The facility notified the Department of the breach on 5/16/13 and notified the patient on 5/16/13.The Regional Privacy Officer was interviewed on 5/20/14 at 9:10 a.m. and reviewed the organizational process stating the the Privacy Office directs the investigation and the manager of the department conducts the investigation. The Vice President of Ancillary and Support Services was interviewed on 5/21/14 at 2:00 p.m. and stated this event was a result of carelessness and was not intended or malicious. The receiving organization notified the facility and shredded the information immediately.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280