CLEVELAND, OH (WOIO) - University Hospitals says an employee’s actions of disclosing patient information “violated UH policies and procedures.”
An internal investigation was launched after the unauthorized disclosure of patient information occurred at University Hospitals Rainbow Babies & Children’s Hospital on Feb. 28, according to the hospital system.
Information that was disclosed without authorization included email addresses and health information, but University Hospitals is not aware of any malicious identity theft at this time.
University Hospitals has taken several safety measures to help ensure that similar incidents do not occur again in the future:
- Educated the employee regarding proper procedure when communicating with patients electronically
- Notified appropriate regulatory bodies
- Notified all individuals whose information was part of the incident
- Provided education regarding patient privacy and HIPAA
Employees will also be provided additional training relating to electronically communicating with patients.
All individuals who may have been impacted by the incident were mailed a letter of communication. For any additional information, patients can contact the University Hospitals’ Privacy Office at 216-286-6362.