Help
Options
Didn't know it?
click below
click below
Knew it?
click below
click below
Don't Know
Remaining cards (0)
Know
retry
shuffle
restart
0:00
Embed Code - If you would like this activity on your web page, copy the script below and paste it into your web page.
Normal Size Small Size show me how
Normal Size Small Size show me how
HIPAA
| Question | Answer |
|---|---|
| What does the acronym "HIPAA" stand for? | Health Insurance Portability and Accountability Act |
| The privacy rule protects information that exists what formats? Also referred to as the three phases of HIPAA. | Protected Health Information (PHI) Written, oral and electronic formats. |
| What form must be given to the patient informing them of their patient rights? | Each patient must receive the Notice of Privacy Practice. They must read it and signed it. |
| What are the penalties/punishment for healthcare providers and workers who violate HIPAA guidelines? Unintentional violations | $100 fine per violation Up to $25,000 for multiple violations of the same standard in a calendar year |
| What are the penalties/punishment for healthcare providers and workers who violate HIPAA guidelines? Knowingly making unauthorized disclosure of PHI may result in | $50,000 fine Imprisonment of not more than one year Or both |
| What are the penalties/punishment for healthcare providers and workers who violate HIPAA guidelines? Offenses which include false pretense may result in | $100,000 fine Imprisonment of not more than 5 years Or both |
| What are the penalties/punishment for healthcare providers and workers who violate HIPAA guidelines? An offense with intent to sell information may result in | $250,000 fine Imprisonment of not more than 10 years Or both |
| Why does the “Minimum Necessary Standard” require covered entities to evaluate their practices? | Enhance safeguards to protect access and disclosure of protected health information. |
| Who must comply with the HIPAA Privacy Rule? | Providers and workforce employees. |
| The privacy rule permits certain incidental uses and disclosures as long as what has adhered to what? | Applied reasonable safeguards Implemented the minimum necessary standard |
| Under the Uses and Disclosures in Treatment, Payment, and Health Care Options; the provision, coordination, or management of health care and related services is defined as ______________. | Privacy rules |
| A patient’s privacy rights are communicated to the patient through what document? | Notice of Privacy Practices. |
| What must covered entities have in place that protect against uses and disclosures not permitted by the privacy rule? | place appropriate administrative, technical, and physical safeguards |
| What are business associates? Give examples. | Health Information Technology for Economic and Clinical Health Act.Is a person or entity that performs certain functions or activities that involve the use or disclosure of protected health information on behalf of, or provides services to covered entit |
| What must happen when a patient receives a "Notice of Privacy Practices"? | Patients must read the NOPP and sign it. |
| A person or entity that performs certain functions or activities that involve the use or disclosure of personal health information on behalf of, or provides services to, a covered entity is known as a __________________. | Business Associate |
| The HITECH Act updated the HIPAA Privacy Rule to include what? What do they protect against? | Protections against identity theft. |
| Which government office is responsible for administering and enforcing HIPAA standards? | HHS Office For Civil Rights. |
| Under the Minimum Necessary Standard, covered entities must identity who needs access to protected health information for what reason? | To get the job done with limited information. |
| Under the Uses and Disclosures in Treatment, Payment, and Health Care Options; the privacy rule provides for what? | Established protection for personal health information, carefully balanced to avoid creating unnecessary barriers to the delivery of quality health care. |
| The HIPAA Security Rule requires that institutions designate a Privacy Officer. What are they responsible for? | The development & implementation information security policies Regular reviews records & information system activity such as audit logs, access reports & security incident tracking reports The development of awareness & training programs members workplace |
| HIPAA accountability involves “Administrative Simplification” which includes what? | health care clearinghouses provider who transmits health information electronic connection transaction secretary HHS adopted standards under HIPAA decision tool Required secretary HHS publish national standards security security health information |
| What is the privacy officer required under the privacy rule is responsible for? | Development and implementation of privacy policies Privacy related training and education Investigating privacy related complaints Conducting routine audits to ensure compliance |
Created by:
maria_serv