Using Two Patient Identifiers in the Pharmacy for Safety: How It Prevents Medication Errors

Every year, thousands of patients in the U.S. receive the wrong medication-not because a pharmacist made a careless mistake, but because the system failed to confirm who the patient really was. In pharmacies, where hundreds of prescriptions are filled daily, a simple mix-up between two patients with similar names or birth dates can lead to life-threatening consequences. That’s why using two patient identifiers isn’t just a best practice-it’s a non-negotiable safety rule backed by federal standards, research, and real-world tragedy.

Why Two Identifiers? The Science Behind the Rule

The requirement to use two patient identifiers comes straight from The Joint Commission’s National Patient Safety Goal (NPSG.01.01.01), first introduced in 2003. It wasn’t created in a boardroom-it was born from preventable deaths. One patient was given chemotherapy meant for another. Another received insulin because their record was confused with someone else’s. These weren’t rare cases. They were symptoms of a broken system.

The rule is simple: before handing over any medication, you must verify the patient’s identity using two separate pieces of information. Acceptable identifiers include the patient’s full name, date of birth, medical record number, or phone number. What’s not allowed? Room number, bed number, or location. Why? Because those change. A patient might move from Room 205 to 207. Their bed might be reassigned. But their name and birth date? Those stay the same.

A 2020 study in JMIR Medical Informatics found that up to 10% of serious drug interaction alerts go undetected simply because systems can’t link a patient’s full history across different visits. That means a patient could be given a drug they’re allergic to-because the pharmacy never saw the allergy listed in their old record. And that’s only possible if the system doesn’t know it’s the same person.

Manual Verification: The Flawed Default

Most community pharmacies still rely on verbal confirmation: "Can I have your name and date of birth?" Then the pharmacist checks the label. Sounds easy. But it’s not reliable.

Think about it: you’re juggling 15 prescriptions at once. The patient says, "I’m John Smith, born May 12, 1978." You pull up the record. Everything matches. You dispense. But what if the real John Smith is actually John Robert Smith? What if the system has him listed under his middle name? What if another patient, John Smith, was born on May 12, 1977? One digit off. One letter missing. That’s all it takes.

A 2023 survey by the American Society of Health-System Pharmacists found that 63% of pharmacists admit to occasionally cutting corners on verification during busy hours. In community settings, 42% said they rarely document the verification process at all. That’s a problem. Because if something goes wrong, and no one recorded that the identifiers were checked, there’s no proof it ever happened.

And it’s not just about memory. Human attention fades. A 2020 review in BMJ Quality & Safety found no solid evidence that having two staff members double-check a prescription reduces errors-unless the process is automated. Manual double-checking often becomes a checkbox ritual, not a safety net.

Technology That Actually Works: Barcode and Biometrics

The most effective way to prevent these errors isn’t more training. It’s better technology.

Barcode scanning at the point of dispensing has been proven to cut medication errors by 75%, according to a 2012 study in the Journal of Patient Safety. Here’s how it works: the pharmacist scans the patient’s wristband (which contains their name and medical record number) and the medication’s barcode. The system checks: Is this the right patient? Is this the right drug? Right dose? Right time? If anything doesn’t match, the system stops the process. No exceptions.

Even better? Biometric identification. Systems like Imprivata PatientSecure use palm-vein scanning-something unique to each person, impossible to fake. A 2024 Altera Health survey showed these systems match patients to their records 94% of the time. Compare that to hospitals without such systems, where matches drop to just 17%. That’s not a small improvement. That’s life-saving.

One real case from Imprivata tells the story: a man was brought to the ER unconscious. The hospital created a new record because they couldn’t find him in the system. Days later, they discovered he had a full medical history under his middle name-and a documented allergy to a drug he was about to be given. He survived because the system eventually caught it. But he shouldn’t have had to.

The Hidden Problem: Duplicate Records

Here’s the dirty secret no one talks about: many hospitals and pharmacies don’t even know they have duplicate records. A patient might be registered once as "Sarah Jones, DOB 03/15/1985" and again as "S. Jones, DOB 03/15/1985." Or worse-"Sarah Jones, DOB 03/15/1984."

These duplicates are why a patient might get two different blood pressure medications from two different doctors, each unaware of the other’s prescription. A 2023 report from the Office of the National Coordinator for Health IT found that 8-12% of patient records in U.S. healthcare systems contain duplicates. That’s tens of millions of records across the country. And each one is a ticking time bomb.

Enterprise Master Patient Index (EMPI) systems are designed to fix this. They act like a central database that links every record of a patient-no matter how they were entered-into one clean profile. But adoption is slow. Only 68% of large health systems use them. Why? Cost. Setting up an EMPI can run $1.2-$1.8 million for a 100-bed hospital. But the alternative? $40 million a year in costs from error correction, duplicate testing, and legal claims.

What Happens When You Don’t Follow the Rule

The Joint Commission doesn’t just recommend this rule. They enforce it. In 2023, non-compliance with the two-identifier requirement was the third most common violation in hospital surveys-accounting for 28% of all patient safety goal failures.

What does that mean for a pharmacy? Lose accreditation. Lose Medicare and Medicaid reimbursement. Lose the ability to operate. That’s not a threat. That’s the law.

And it’s not just hospitals. Community pharmacies are under increasing scrutiny. The 21st Century Cures Act and CMS rules now require accurate patient identification as a foundation for nationwide health data sharing. If your pharmacy can’t prove it’s identifying patients correctly, you’re not just at risk of fines-you’re blocking the entire healthcare system from working efficiently.

How to Get It Right: A Real-World Checklist

If you’re a pharmacist, pharmacy technician, or manager, here’s what actually works:

• Always use two identifiers-never one. Never assume.
• Use the same identifiers every time-name and date of birth are the most reliable.
• Scan, don’t just ask-if your pharmacy has barcode wristbands and scanners, use them. Every time.
• Document verification-even if it’s just a checkbox in the system. If it’s not recorded, it didn’t happen.
• Train staff regularly-not once a year. Every six months. Use real near-miss cases as examples.
• Push for EMPI and biometrics-if your system doesn’t have them, advocate for them. The ROI is clear.

What’s Next? The Future of Patient ID

In January 2025, a pilot program launched in five U.S. regions to test a universal patient identifier-a single, unique number tied to each person, like a Social Security number but for health records. It’s controversial. Privacy advocates worry about misuse. But the data is overwhelming: without it, duplicate records and misidentification will keep costing lives.

The World Health Organization, the Emergency Care Research Institute, and Harvard Medical School all agree: patient identification is the most basic, most ignored safety step in healthcare. And pharmacies? They’re ground zero.

The truth is, no amount of training, posters, or reminders will fix this unless the system is designed to make mistakes impossible. Technology isn’t the enemy. Complacency is.

Frequently Asked Questions