EISENHOWER MEDICAL CENTER

Report ID: 2FUF11.01, California Department of Public Health

Reported Entity: EISENHOWER MEDICAL CENTER

Issue:

Based on interview and record review, the facility failed to prevent unauthorized disclosure of protected health information (PHI) for one patient (Patient 1) when his medical records were faxed to the wrong physician's office. This failed practice resulted in unauthorized persons having access to PHI for Patient 1, and the potential for emotional and financial harm.Findings:During an interview with the facility Privacy Officer (PO) on November 25, 2014, at 2:10 p.m., the PO stated a staff member from the Cancer Center was using the computerized, "demand," fax system to send medical records to Patient 1's physician. According to the PO, the staff member selected a physician with the same last name as the intended physician, but a different first name, and the records were faxed to the wrong office.The medical records belonging to Patient 1 that were faxed to the wrong physician's office were reviewed on November 25, 2014. The records contained the following PHI:1. Name;2. Birthdate;3. Sex;4. Medical record number;5. Physician's name;6. Current diagnosis;7. History of present illness;8. Past medical history;9. Past surgical history;10. Social history (marital status, smoking, alcohol/drug use);11. Allergies;12. Medications;13. Medical review of all body systems;14. Physical examination;15. Lab values; and,16. Plan of care.Failure of the staff to ensure the correct physician's name was selected on the demand fax screen resulted in unauthorized persons having access to PHI for Patient 1.

Outcome:

Deficiency cited by the California Department of Public Health: Health & Safety Code 1280

Related Reports:

1 other violation reported on the same date. Note that other citations may be about the same event: U5OU11.01