Several HIPAA violations occurred at UCLA Medical Center where over 120 employees accessed celebrity medical records without authorization. An investigation found 127 total violations and the state placed blame on the hospital. As a result, several employees were fired, suspended, or warned and computer systems were updated. Interactive training was proposed to help employees better understand privacy policies and the importance of patient confidentiality.

1. Brittani Newhouse
WEEK 1 DISCUSSION 2: CONFIDENTIALITY

2. ISSUES: UCLA MEDICAL CENTER
• HIPAA violations; celebrity medical records-without a need-to-know
• Violations still occurred despite “crackdown” efforts
• 5 reports released; later reported 127 violations
• Leads to ethical issues regarding patient information

3. ACTIONS TAKEN
• State regulators placed blame on hospital
• Involved more than 120 employees
• Some issues were detected years ago
• Several firings, suspensions, and warnings
• Computer systems updated
• Notified patients whose information was breached
• Staff being trained on privacy and security

4. TRAINING IDEAS
• Educate employees about what is considered private information
• Make sure they are aware of the consequences
• Set local policies in addition to the HIPAA regulations
• Teach about what personal and sensitive information is
• Need-to-know; who has access to what and why
• Hold everyone accountable to protect patient information
• All violations must remain consistent
• Interactive training

5. EFFECTIVENESS
• Would perhaps help employees to better gauge their actions
• Have a better appreciation for the importance of confidentiality
• Engages employee interaction with management

6. REFERENCES
Fox News. (2008). Report: Over 120 UCLA Hospital
Staff Saw Celebrity Health Records. Retrieved
from Fox News:
foxnews.com/story/2008/08/06/report
Wolper, L.F. (2011). Health care
administration: Managing organized delivery
systems (5th ed.). Boston: Jones and Bartlett
.