Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
KAISER FOUNDATION HOSP SO SACRAMENTO
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on April 27, 2015. Also cited in 16 other reports.
Report ID: MOXL11, California Department of Public Health
Reported Entity: KAISER FOUNDATION HOSP SO SACRAMENTO
Issue:
Based on staff interview and document review the facility failed to prevent an unauthorized disclosure of PHI for 7 of 7 patients (Patients 1, 2, 3, 4, 5, 6, 7) reviewed.Findings:1. On 2/12/15 the facility reported to the Department that on 1/4/15 a business associate's office was burglarized and computers were stolen. The data base on the computers contained the PHI for Patients 1, 2, 3, 4, and 5. The computers were protected with a password, but were not encrypted.2. On 3/24/15 the facility reported that on 3/5/15, on the 3 West Nursing unit, Patient 6's discharge papers were handed to another patient.3. On 4/13/15 the facility reported that on 3/19/15, on the 4 West Nursing unit, Patient 7's discharge papers were given to another patient.On 5/15/15 the Director of Risk Management (DRM) was interviewed. The DRM confirmed that the above breaches occurred as reported to the Department. The DRM confirmed that all affected patients were notified within mandated time frames.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280