Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
CLOVIS COMMUNITY MEDICAL CENTER
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on April 4, 2014. Also cited in 27 other reports.
Report ID: DDSF11, California Department of Public Health
Reported Entity: CLOVIS COMMUNITY MEDICAL CENTER
Issue:
Based on staff interview, facility and administrative document review the facility failed to keep Protected Health Information (PHI) confidential when Patient 1's Financial Evaluation Form was sent to patient 2 in error.This failure placed Patient 1"s PHI at a potential risk for unauthorized use.Findings:On 4/11/14 at 10:31 a.m., the Privacy Officer (PO) stated on 6/7/13 Staff 1 mistakenly mailed Patient 1's Financial Evaluation Form to Patient 2.On 4/11/14 at 10 at 10:31 a.m., Staff 1 stated the PHI disclosed included: patient name, address, date of birth, account number, medical record number and social security number.On 4/11/14 the facility policy and procedure number 12136, titled "HIPPA General Rules for the Use and Disclosure of PHI," contained the following documentation: "PHI includes any information received, created, or maintained by the facility in which the patient is or may reasonable be identified, regardless of wether the information is oral, paper,or electronic form. The facility may only use or disclose PHI when the patient has given a valid authorization."
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights