Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on September 30, 2011. Also cited in 64 other reports.
Report ID: 8MPV11.01, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on interview and documents review, the facility failed, for one patient (Patient A), to ensure that financial status was not disclosed to an entity not authorized to receive the information. This failed practice had the potential to result in identity theft and/or fraud. Findings:On September 30, 2011, at 11 a.m. the Facility Privacy Officer (FPO) was interviewed. The FPO stated an employee talked to Patient A's daughter about the account balance as opposed to the patient. On May 16, 2013, at 2:39 p.m., a follow up phone call was made to the facility. A phone interview with the FPO was conducted. The FPO stated on April 22, 2011, the billing staff talked to Patient A's daughter where the patient was totally capable of handling her own financial affair. Patient A was not happy about that and complained to the Financial Counseling on June 1, 2011. On May 16, 2013, a review of facility documents included:a. A letter addressed to Patient A, dated June 3, 2011, indicated the facility notified Patient A of the privacy breach.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280