Thousands of medical records leaked in California
Compliance Monitor, February 22, 2012
A glitch in the network security settings of five California hospitals allowed outside search engines to potentially access the private health data of thousands of patients, the health system discovered earlier this month.
The St. Joseph Health System in Orange, CA, reported on its website that it learned February 8 that its hospitals accidentally made PHI accessible to disclosure by allowing outside search engines to access certain files on its internal computer network. The information relates to patients who may have received services between February 2011 and August 2011, according to a press release from St. Jude Medical Center in Fullerton, CA, one of the five hospitals in the St. Joseph Health System.
The breach affected an estimated 30,000 patients, according to Healthcare Info Security’s February 17 report.
The data did not contain Social Security numbers, financial data, or addresses, but did possibly include patient names, lab results, demographic information, and diagnoses lists, according to the St. Jude press release.
St. Jude is providing identity theft protection services to its patients at no cost.
- Study: Almost half of nurses are thinking about leaving the profession
- Fracture coding in ICD-10-CM requires greater specificity
- Differentiate between types of wound debridement
- What does case-mix index mean to you?
- Complications from immobility by body system
- OB services: Coding inside and outside of the package
- Pneumonia with a negative chest x-ray: Clinical diagnoses, physician documentation, and coding guidelines
- Don’t forget the three checks in medication administration
- Note similarities and differences between HCPCS, CPT® codes
- What is the difference between an IPA and a medical group?
- Bill and charge for supplies correctly to reduce risk and minimize lost revenue
- Seven tips for slashing ED wait times with limited resources
- Increase patient satisfaction by improving your discharge process
- Homecare Direction
- QA:Coding multiple initial infusions
- Q&A: Coding for transplant complications
- Peeling away the confusion: Split billing guidance
- OIG focuses on documentation, frequency, and duration for outpatient PT services
- Note from the Instructor: Review of hospital inpatient mental health services payable under the inpatient psychiatric facility prospective payment system (IPF PPS)
- HIPAA Q&A: Maintenance of medical records after physician death