Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
EISENHOWER MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on January 19, 2012. Also cited in 279 other reports.
Report ID: Q5NR11, California Department of Public Health
Reported Entity: EISENHOWER MEDICAL CENTER
Issue:
Based on interview and record review, the facility failed to ensure facility staff sent lab results for Patient A to the correct physician's office, via a demand facsimile (FAX). This failure resulted in the unauthorized disclosure of Patient A's protected health information (PHI), which created the potential for unauthorized use.Findings:On January 19, 2012, an unannounced visit was made to the facility, to investigate a breach of PHI.On January 19, 2012, at 12 p.m., the Director of Compliance was interviewed. The Director stated a facility employee was attempting to send a demand FAX with Patient A's lab results, to a physician's office. The drop down menu was used. The staff member chose the wrong physician. The FAX included Patient A's name, medical record, date of birth, account number, and the lab results.On January 19, 2012, the facility document titled, "Order Entry," was reviewed. The document indicated, "...Verify that you have the correct ordering physician, correct patient..." The Director stated there was no specific policy and procedure for demand FAX's.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280