Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Scripps Mercy Hospital
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on February 6, 2013. Also cited in 72 other reports.
Report ID: CQHX11, California Department of Public Health
Reported Entity: SCRIPPS MERCY HOSPITAL
Issue:
Based on interview and record review, the hospital failed to ensure that Patient 1's medical information was kept confidential from anyone not authorized access.Findings:An interview with the hospital's Clinical Risk Specialist (CRS) was conducted on 2/6/13 at 3:00 P.M. The CRS stated that Patient 1's medical information was inadvertently given to Patient 2 during discharge. Per the CRS, Patient 2 removed her name band and answered the nurse as though she was Patient 1. Patient 1's medical record that was mistakenly given to Patient 2 indicated Patient 1's name, medical record number, date of birth, medication, and diagnosis.Per the hospital's policy and procedure titled Health Information, Access, Use and Disclosure indicated that, "Whenever or whoever is releasing information must follow seven guiding principles for release by checking the following: 1. Correct Patient 2. Correct MRN (medical record number) 3. Correct Dates 4. Correct Documents 4. Correct Reason 6. Correct Fax or Address for the Recipient 7. Correct Recipient."
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights