Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
SHARP CHULA VISTA MEDICAL CENTER
Cited by the California Department of Public Health for violations of California’s Health and Safety Code relating to medical privacy during an inspection that began on June 1, 2012. Also cited in 46 other reports.
Report ID: T5GP11.02, California Department of Public Health
Reported Entity: SHARP CHULA VISTA MEDICAL CENTER
Issue:
Based on interview and record review, the hospital failed to safeguard protected health information (PHI) from unauthorized persons in accordance with their policies and procedures, for 1 of 1 sampled patients (Patient 1). Findings:On 4/20/12 at 12:25 P.M., the hospital reported to the Department that an unauthorized disclosure of patient information occurred when Patient 1's facesheet was found commingled with Patient 2's (wrong person) discharge paperwork.A review of Patient 1's medical record was conducted on 6/1/12 at 3:18 P.M. Patient 1 was admitted to the hospital on 4/12/12 and discharged on 4/16/12 per the facesheet. The following confidential patient information was found in Patient 1's one page facesheet: name, medical record, admission date, discharge date, date of birth, age, address, home telephone number, spouse's name, spouse's contact information, insurance information, diagnosis and physician's name.A review of Patient 2's medical record was conducted on 6/1/12 at 3:18 P.M. Patient 2 was admitted to the hospital on 4/10/12 and discharged on 4/12/12 per the facesheet.An interview with the registered nurse (RN 1) was conducted on 6/7/12 at 1:41 P.M. RN 1 stated that reviewed each page of the discharge paperwork and discharge instructions were reviewed with Patient 2. However, she stated that Patient 1's facesheet was missed because it was found commingled with Patient 2's discharge paperwork. An interview with the Labor and Delivery Manager (LDM) was conducted on 6/7/12 at 2:10 P.M. The LDM acknowledged that an unauthorized disclosure of protected patient information occurred when Patient 1's facesheet was found commingled with Patient 2's discharge paperwork. She acknowledged that the hospital's policy related to protected health information access, use and disclosure was not implemented as written.A review of the hospital's policy entitled "Health Information: Minimum Necessary access, use and disclosure," current effect date of 7/11, was conducted. The policy indicated that the hospital staff shall take reasonable measures to limit each use and disclosure of protected health information (PHI) to the minimum amount necessary. Per the policy, it instructed hospital staff to disclose protected health information to the following:1) Health care providers who were involved in treating the patient or individual.2) The individual who was the subject of the information.3) Individuals with a valid authorization for use/disclosure.4) When the use or disclosure was in compliance with privacy regulations.5) The use and disclosure required by a court order or other laws.6) Disclosures to the Department for compliance or enforcement purposes.
Outcome:
Deficiency cited by the California Department of Public Health: Patients' Rights