Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
SAN ANTONIO REGIONAL HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on September 12, 2012. Also cited in 35 other reports.
Report ID: IRG211, California Department of Public Health
Reported Entity: SAN ANTONIO REGIONAL HOSPITAL
Issue:
Based on staff interview and record review, the facility failed to maintain the privacy and confidentiality for one patient (Patient A), when a staff inadvertently gave Patient A's medical information to another patient. This failure resulted in another patient receiving Patient A's medical information.Findings: An interview was conducted on September 13, 2012 at 10:45 AM, with the facility's Privacy Officer (PO). The PO stated that on August 24, 2012, a staff (Staff 1) was discharging another patient and accidentally gave that patient, Patient A's medical information that was on a compact disc (CD). The PO stated that the facility became aware of the breach incident when another staff (Staff 2) was looking for Patient A's medical CD and could not find it. The PO stated that Staff 1 realized that the patient she was discharging (Patient B) got both Patient A and Patient B's CD's upon discharge.A review of the personal health information (PHI) disclosed in error included; Patient nameRadiologic imagesThe PO further stated that Patient B brought the CD back to the facility. The PO stated that Patient A was notified of the breach incident.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights