Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
UNIVERSITY OF CALIFORNIA SAN FRANCISCO MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on January 15, 2014. Also cited in 108 other reports.
Report ID: 3DC411.01, California Department of Public Health
Reported Entity: UCSF MEDICAL CENTER
Issue:
Based on interview and record review the facility failed to provide confidential treatment for protected health information (PHI) for Patient 1 whose patient consult letter was faxed to the wrong healthcare provider.Findings:In an interview on 1/15/14 at 1:30 PM, Privacy Analyst 1 (PA1) stated that on 10/29/13 a consult letter was faxed from the Neurosurgery Clinic to the incorrect healthcare provider. The consult letter was faxed to a general practice physician when the letter should have been faxed to neurologist with the same last name as the recipient of the consult letter. PA1 said the staff member should have used two identifiers (e.g. middle name, mailing address, phone number) before selection of fax number for consult letter.Record review fax sent 10/29/13 at 1:28 PM indicated name of physician recipient with the same last name as the intended recipient. The name of the physician and phone number was crossed out with "not my patient" written on the form.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights