MARIN GENERAL HOSPITAL

Report ID: VJ9J11, California Department of Public Health

Reported Entity: MARIN GENERAL HOSPITAL

Issue:

Based on interview and record review, the facility failed to prevent unauthorized access to protected health information of one patient (Patient 1) when Patient 1's laboratory results were sent to the wrong physician. This failure allowed unlawful or unauthorized access to protected health information.Findings:During an interview on 7/9/15 at 11:20 a.m., Compliance and Privacy Officer A (Compliance Officer A) stated Patient 1's laboratory results were faxed to the wrong physician on 5/11/15. During an interview on 7/9/15 at 11:20 a.m., Compliance Officer A stated two physicians with the same last name and similar first names were listed on a "master list" of physicians who order lab tests at the hospital. Compliance Officer A stated the error occurred when the lab scientist entered orders and failed to confirm the ordering physician's first name and selected the wrong physician from a drop-down list. This error resulted in the lab report being sent to the wrong physician. Compliance Officer A stated the information included Patient 1's name, medical record number, date of service, patient encounter number, and lab results for blood cultures and microbiology (identification of possible bacteria in the blood), hematology (counts of various types of cells found in blood), and general chemistry (measurements of substances that reflect how well organ systems are functioning).The facility administrative policy and procedure titled "Confidentiality Guidelines," revised 5/2013, reveals "The confidentiality and security of medical, business, and personnel information is the responsibility of all hospital personnel."

Outcome:

Deficiency cited by the California Department of Public Health: Health & Safety Code 1280