Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
HEMET VALLEY MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on May 31, 2012. Also cited in 39 other reports.
Report ID: JKPY11, California Department of Public Health
Reported Entity: HEMET VALLEY MEDICAL CENTER
Issue:
Based on interview and record review, the facility failed to ensure staff faxed Patient A's protected health information (PHI), to the correct physician's office. This failure resulted in the unauthorized disclosure of Patient A's PHI, which created the potential for unauthorized use.Findings:On May 31, 2012, at 12 p.m., an unannounced visit was made to the facility to investigate a breach of Patient A's PHI.On May 31, 2012, at 12:15 p.m., the Privacy Officer was interviewed. The Privacy Officer stated, on May 2, 2012, eight pages of Patient A's PHI were faxed to the wrong physician's office. These pages consisted of laboratory and radiology reports, and an "Emergency Room Report." These pages contained Patient A's name, medical record number, age, sex, account number, clinical results, and a history and physical from the Emergency Room.On May 31, 2012, the facility policy and procedure titled, "Health Information Management External Faxing of Protected Health Information," was reviewed. The policy indicated, "...Protected Health Information (PHI) to be faxed externally will be verified and confirmed prior to placement on the fax machine to assure that privacy of patient information is maintained..."
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280