Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
SANTA CLARA VALLEY MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on April 27, 2012. Also cited in 90 other reports.
Report ID: RKYK11.01, California Department of Public Health
Reported Entity: SANTA CLARA VALLEY MEDICAL CENTER
Issue:
Based on documentation and interview, hospital staff failed to implement a patients right to privacy by providing patient information to an outside service agency.Findings:In an interview with the hospital assistant privacy officer (Staff A) on 4/27/12, Staff A stated a physician employee (Physician 1) had sent information regarding patient clinic appointments to an outside service agency associated with labor relations on 1/13/12. The outside agency notified the hospital on 2/6/12 that information provided by Physician 1 contained patient protected health information. Staff A stated an immediate investigation was conducted by the hospital the same day. The investigation report was reviewed on 4/27/12 and indicated that Physician 1 had e-mailed patient information on 1/13/12 to an outside service agency that did not have a need to know. The e-mail information included patient's name, age, appointment date/time, and reason for visit.The act of sending patient scheduling information to an agency not associated with the hospital, violates the patient's right to privacy regarding their medical care program.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights