Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
Adventist Medical Center
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on January 30, 2013. Also cited in 29 other reports.
Report ID: 6YX111, California Department of Public Health
Reported Entity: ADVENTIST MEDICAL CENTER
Issue:
Based on staff interview, clinical record and administrative document review, the hospital failed to keep Protected Health Information (PHI) confidential when Patients 1's clinical record was faxed to the wrong provider. This failure caused the breach of Patients 1's PHI and the potential for unauthorized use. Findings:On 1/30/13 at 1:30 p.m., during an interview, the Privacy Officer (PO) confirmed that on 10/29/12 Patient 1's clinical record was faxed to the wrong provider. The PO stated the provider faxed the clinical record back with a note that read, "Not a patient of this Doctor's office."The clinical record was reviewed on 3/27/13. The clinical record contained name, date of birth, age, medical record number, account number, and x-ray orders and result.The hospital's policy and procedure number 1000.03.14 titled, "Faxing Patient Protected Health Information" contained the following, "It is the senders responsibility to be aware of the content of the faxes they are sending, to exercise caution in faxing confidential information, and to take precautionary steps to: validate the fax number, key in correct fax number, confirm fax sent to correct fax number, as well as, request is appropriate and meet minimum necessary."
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights