Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
UNIVERSITY OF CALIFORNIA DAVIS MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on October 10, 2013. Also cited in 13 other reports.
Report ID: FX5P11.01, California Department of Public Health
Reported Entity: UNIVERSITY OF CALIFORNIA DAVIS MEDICAL CENTER
Issue:
Based on staff interview and facility document review the facility failed to prevent access to Patient Health Information (PHI) when 12 pediatric patients health information was sent to a wrong parent via the mail.Findings:During an interview with the Privacy Officer (PO), on 10/16/13, at 11:01 a.m., PO stated 12 different pediatric patient's lab results were inadvertently placed into one envelope, and mailed to one parent. PO stated the parent who received the wrong information called local news media, made a report to the Office of Civil Rights, and refused to return the documents for destruction. Po revealed the corrective action was reeducation of the staff member, and verbal counseling.During a review of the facility letter document , dated February 12, 2013, indicated the following PHI was contained in the letters:A. Patient names;B. Medical record number;C. Lab test results; andD. Treatment recommendations.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280