Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
KAISER FOUNDATION HOSPITAL-MORENO VALLEY
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on August 5, 2014. Also cited in 13 other reports.
Report ID: QZNV11.01, California Department of Public Health
Reported Entity: KAISER FOUNDATION HOSPITAL-MORENO VALLEY
Issue:
Based on interview and record review, the facility failed to ensure Patient A's private health information was protected from misuse by unauthorized entities, when the information was inadvertently released to an unintended recipient. This failure to ensure Patient A's information was kept private, put Patient A's protected health information (PHI) at risk for misuse. Findings:During an interview with the Director of Accreditation (DAC), the Compliance Project Manager (CPM), and the Manager of Perioperative Services (MPS), on August 5, 2014, at 10:50 a.m., the MPS stated six photographs taken during Patient B's surgical procedure were labeled and then given to Patient B. Two of the photographs were labeled with Patient A's information. Patient B returned the photographs to her physician who notified the facility about the incident on July 29, 2014. The MPS stated the label included Patient A's name, date of birth, medical record number and admission date. A copy of the letter sent to Patient A was reviewed on August 5, 2014. The letter indicated, "A label containing your protected health information was inadvertently provided to another patient. The labels were retrieved from the patient. The following information was available for viewing: Your Name, medical record number, date of birth and admit date." A review of the facility policy, "Mitigation of Impermissible Uses and Disclosures of Protected Health Information (Revision Effective: September 23, 2013)," was conducted. The policy indicated, "(the facility) must take action to reduce or eliminate, to the extent feasible, any known compromise caused by an impermissible use or disclosure of Protected Health Information..."
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280