Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
DOCTORS MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on October 3, 2012. Also cited in 64 other reports.
Report ID: EXCU11.01, California Department of Public Health
Reported Entity: DOCTORS MEDICAL CENTER
Issue:
Based on staff interview, clinical record, and administrative document review, the facility failed to keep Protected Health Information (PHI) confidential when Staff 1 removed medication instructions from the printer on Patient 4 and also picked up protected health information for three other patients and added all PHI documents to Patient 4's medical binder. This failure resulted in unauthorized access to Patient 1, 2, and 3's PHI and the potential for abuse of that information.Findings:On 10/03/2012, at 9:30 a.m., during an interview, the Privacy Officer (PO) stated Patient 1, 2, and 3's medical information was given to Patient 4. Patient 4's husband discovered and had access to Patient 1, 2, and 3's medical information. Their PHI breached included patient names, age, date of birth, physician names, medical record number, account number, lab results, and more.The facilities breach policy dated 4/13/13 titled "Privacy Policies and Procedures" indicated under "2.0 Purpose (hospital) Privacy Policies and Procedures have been established to outline directives relating to the Protected Health Information (PHI) of Patients. These directives include: Protecting the privacy of the PHI of patients in accordance with California and federal requirements..."
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights