Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on August 14, 2012. Also cited in 64 other reports.
Report ID: HZVP11.01, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on interview and documents review, the facility failed, for one patient (Patient A), to ensure that Protected Health Information (PHI) was not disclosed to an entity not authorized to receive the information. Findings:On August 14, 2012, at 11:15 a.m., the Facility Privacy Officer (FPO) was interviewed. The FPO stated on January 23, 2012, Patient B called the Medical Record Department to report that he got the wrong post operation instructions information booklet from the staff. The booklet contained a "Stent Card" (stents are small expandable tubes used to treat narrowed or weakened arteries in the body) with Patient A's PHI on it. Patient B returned the booklet to the facility on February 6, 2012. On August 14, 2012, a review of facility documents included:a. Patient A's "Stent Card". The PHI included Patient's name, medical record number, age, date of birth, admit date, account number, physician's name, type and size of the stent. b. A letter addressed to Patient A, dated January 25, 2012, indicated the facility notified Patient A of the privacy breach.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280