Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
ORANGE COUNTY GLOBAL MEDICAL CENTER
Cited by the California Department of Public Health for violations of California’s Health and Safety Code relating to medical privacy during an inspection that began on April 19, 2012. Also cited in 17 other reports.
Report ID: DICO11.04, California Department of Public Health
Reported Entity: ORANGE COUNTY GLOBAL MEDICAL CENTER
Issue:
Based on interview and hospital document review, the hospital failed to prevent the disclosure of three patients' (Patients M, N and O) protected health information (PHI) to unauthorized individuals. In addition, the hospital failed to report the disclosure of the patients' PHI to the patients and to the Department within five business days of the hospital's knowledge of the breach. Findings: On 8/9/11, the hospital's CBO (Central Billing Office) was notified by a contracted collection agency the medical records belonging to Patients M, N, and O were received by them in error. Review of the hospital's investigation showed the request for the three patients' medical records was made by the CBO administration receptionist. The medical records were referred to a contracted attorney's office. However, another contracted entity received the medical records in error. The hospital notified Patients M, N, and O of the breach of their PHI on 8/22/11. The Department was notified of the breaches on 8/23/11. On 1/16/13 at 1400 hours, during a telephone interview the Privacy Officer confirmed the breaches of PHI and the dates of notification occurred as documented.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280