Search Privacy Violations, Breaches and Complaints
This database was last updated in December 2015 ago and should only be used as a historical snapshot. More recent data on breaches affecting 500 or more people is available at the U.S. Department of Health and Human Services’ Breach Portal.
RIVERSIDE COMMUNITY HOSPITAL
Cited by the California Department of Public Health for a violation of California’s Health and Safety Code relating to medical privacy during an inspection that began on January 25, 2013. Also cited in 64 other reports.
Report ID: TB9111, California Department of Public Health
Reported Entity: RIVERSIDE COMMUNITY HOSPITAL
Issue:
Based on interview and documents review, the facility failed, for one patient (Patient 1), to ensure that Protected Health Information (PHI) were not disclosed to an entity not authorized to receive the information. Findings:On January 25, 2013, at 2:15 p.m., the facility's Privacy Official (FPO) was interviewed. The FPO stated on January 4, 2013, a copy of Patient 1's Occupational Therapy Evaluation was transferred along with Patient 2 to a rehabilitation nursing facility (NF). On January 9, 2013, a staff from the NF called the facility to inform them that they had a copy of Patient 1's Occupational Therapy Evaluation. The FPO stated the Director of unit D2/D3 picked up Patient 1's Occupational Therapy Evaluation from the NF on January 10, 2013. On January 25, 2013, a review of facility documents with the FPO included:a. Patient 1's Occupational Therapy Evaluation. The PHI included Patient's name, date of birth, sex, age, medical record number, account number, admitting diagnosis, history of present illness and past medical history. b. A letter addressed to Patient 1, dated January 14, 2013, indicated the facility notified Patient 1 of the privacy breach.
Outcome:
Deficiency cited by the California Department of Public Health: Health & Safety Code 1280