Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
SHARP CORONADO HOSPITAL AND HLTHCR CTR
Cited by the California Department of Public Health for violations of California’s Health and Safety Code relating to medical privacy during an inspection that began on February 27, 2013. Also cited in 18 other reports.
Report ID: CWQF11.02, California Department of Public Health
Reported Entity: SHARP CORONADO HOSPITAL AND HLTHCR CTR
Issue:
Based on interview and record review, the hospital failed to maintain the confidentiality of medical record information on one sampled patient (Patient 1). The staff's failure to ensure the patient's medical record accurately reflect the name of the patient's physician, resulted to the unauthorized disclosure of the patient's protected health information to the wrong physician. Findings:An onsite visit of the hospital was conducted on 2/27/13, in response to an entity reported incident whereby a patient's medical record information was inadvertently disclosed via facsimile (fax) transmission to the wrong physician.On 2/27/13 at 3:00 P.M., the director of quality assurance was interviewed regarding the incident. She stated that on January 7, 2013, a staff intended to send via fax, Patient 1's hospital agreement for outpatient services to the patient's attending physician. However, the records were faxed to the wrong physician. It was determined that the error occurred because the patient's medical record did not accurately reflect the right name of the patient's physician. Hence, the wrong name of physician was entered into the fax machine when the records were sent out via fax. The medical record information that were inadvertently disclosed to another physician without Patient 1's authorization included his personal information such as patient's name, age, date of birth, medical record number, address, phone number, health insurance information, name of physician, patient agreement for services, and laboratory test results.The staff's failure to check and validate the patient's medical record to ensure the record accurately reflect the correct name of the patient's physician resulted to the misdirected and unauthorized transfer of protected health record information. This was also in violation of the patient's right to confidential treatment of all communications and records pertaining to his health care at the hospital.The patient affected was notified of the unauthorized disclosure of his medical record information on February 27, 2013.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights