Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on June 14, 2011. Also cited in 64 other reports.
Report ID: BRLZ11, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on staff interview and record review, the facility failed to safeguard and prevent unauthorized disclosure of medical information for one patient, Patient A. This failed practice resulted in the facility releasing the PHI for Patient A to an unauthorized person. Findings:On June 14, 2011, at 9:45 a.m., the PO was interviewed. The PO stated the facility's billing service called a telephone number listed as the telephone number for the financial guarantor (person responsible for paying for services provided) for Patient A to discuss an account balance. The person answering the telephone indicated they had the same name as the guarantor. After providing the account balance, billing account number, and the date of service for Patient A, the billing representative was informed by the person on the telephone that he was not Patient A. A record review was conducted on March 16, 2011. The documentation indicated on May 4, 2011, the billing service called the guarantor's home telephone number, and a male stated he was the guarantor. After the opening speech, the male stated he was not Patient A, he was the father of Patient A.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280