Henry Mayo Newhall Hospital in Valencia, CA, has discovered an employee has accessed the protected health information of certain patients without a valid business reason for doing so. The privacy breach was detected on May 8, 2023, and notification letters were sent to affected individuals on May 26, 2023.
The investigation confirmed that the employee was able to view patient information such as names, birth dates, medical record numbers, visit numbers, and clinical data such as diagnoses, vital signs and narrative clinical notes. The employee was interviewed about the unauthorized access and Henry Mayo believes the records were accessed out of curiosity and that no patient information has been further disclosed or misused. The hospital has acted per its sanctions policy and has taken steps to prevent further privacy breaches in the future, including continuing to counsel and educate staff members.
It is currently unclear how many patients have been affected.
Texas Law Limits Backup Power Mandates for Senior Care Facilities
Cyber Crossfire: Why Healthcare Is Becoming a Battleground in Global Conflicts
UPMC Presbyterian Receives $65 Million Gift for New Bed Tower
Premier Health Partners Falls Victim to Cyber Incident
Backup Power's Expanding Role in Emergency Preparedness for Healthcare