Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on May 20, 2014. Also cited in 64 other reports.
Report ID: KCB111, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on interview and record review, the facility failed to prevent unauthorized disclosure of protected health information (PHI) for one patient (Patient 1) when his medication list was given to another patient (Patient 2) upon discharge. This failed practice resulted in the potential for emotional and physical harm to Patient 1.Findings:During an interview with the Manager of HIPAA (Health Information Portability and Accountability Act) Services (MHS) on May 20, 2014, at 10:45 a.m., the MHS stated Patients 1 and 2 were patients on the same floor at the same time. The MHS stated when Patient 2 was discharged home on April 16, 2014, he was given a packet of discharge paperwork that included a medication list for Patient 1.The medication list for Patient 1 that was given to Patient 2 was reviewed on May 20, 2014. The list contained Patient 1's name and four different medications (all psychiatric medications) that Patient 1 was to continue taking after discharge.Failing to verify the correct paperwork was given to Patient 2 on discharge resulted in unauthorized disclosure of Patient 1's PHI, and the potential for emotional and physical harm to him.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280