Med Law Chapter 10 Patient Confidentiality and Health Insurance Portability and Accountability Act (HIPAA). 80 Questions and Answers.

Document Content and Description Below

Med Law Chapter 10 Patient Confidentiality and HIPAA 1 / 12 1. Clearinghouse) 2. Deidentifying 3. Employer Identification Number (EIN) 4. Health Insurance Portability and Accountability Act of... 1996 (HIPAA) 5. Healthcare Integrity and Protection Data Bank (HIPDB) 6. Medical Informatics 7. Minimum Necessary Standard 8. Sanctions Penalties and Fines 9. Expectations when visit physician's office or medical facility? 10. Congress mandated the Health Insurance Portability and Accountability Act of 1996? Med Law Chapter 10 Patient Confidentiality and HIPAA 2 / 12 11. Confidentiality: - Physicians are expected to maintain all 12. HIPAA - Five major cate- - gories covered under HIPAA: - 13. PRIVACY Rules - Applies to protected health information 14. Who is Affected by Privacy Rule: 15. Why have some health care institutions deny access to patient medical information? 3 / 12 Unique Identifiers for Health Care Providers: 18. How to de-identify Public Health Information (PHI) 19. Special Rules Relating to Research: 20. Problems Relating to HIPAA's Privacy Rules: 21. Misconceptions about HIPAA: Med Law Chapter 10 Patient Confidentiality and HIPAA 4 / 12 22. Recommendations to prevent HIPPA violations: 23. Ethical Concerns with Information Technology 24. Required disclosures a. Health and Human Services (HHS) can 25. Valid patient authorization a. Allows for PHI to be disclosed 26. Patient requests for disclosure 27. For the treatment, payment and healthcare operations Med Law Chapter 10 Patient Confidentiality and HIPAA 5 / 12 (TPO) AND of other covered entities 28. For patient representatives such as family 29. Qualified disaster relief organizantions 30. Incidental disclosures about patients without their authorization 31. For public purposes a. When the PHI disclosure is required by Med Law Chapter 10 Patient Confidentiality and HIPAA 6 / 12 32. When deidentification has occurred (i.e), when patient identifiers have been removed) 33. In limited data set in which certain identifiers, such as patient's, relative's, and employer's names have been removed, patients do not have the right to access 7 / 12 35. Employer Identifier Standard A standard number based on an employer's tax ID number or EIN that is used for all electronic transmissions 36. Healthcare plan An individual or group plan that provides or pays for medical care 37. HIPAA-defined permission Permission to use information based on the reason for knowing, or use of, the information 38. Notice of Privacy Practices A written statement that details the provider's (NPP) privacy practices 39. Office of Civil Rights (OCR) The federal office that investigates violations of HIPAA 40. Permission HIPAA defined areas in which permission must be granted in order to use or disclose patient health information (PHI) 41. Privacy Rule A requirement that all covered entities under HIPAA must be in compliance with the priva cy, security, and electronic-data provisions by April 14, 2003 42. Protected Health Information Any individually identifiable information that (PHI) relates to the physical or mental condition or the provision of healthcare to an individual 43. Telemedicine The use of communications and information technologies to provide healthcare services to people at a distance 44. Treatment, payment, and Functions that a healthcare provider can per healthcare operations (TPO) form 45. Wireless Local Area Net- A wireless system that is used by physicians works (WLANs) and nurses to access patient information 46. Med Law Chapter 10 Patient Confidentiality and HIPAA 8 / 12 Penalties of Noncompliance with HIPPA -Civil penalties -Federal criminal liability with sanctions (fines) and time in prison -Risk of class action suit and public relations 47. PRIVACY RULE All covered entities must be in compliance 48. WLAN's wireless systems to send and receive data 49. HIPAA Health Insurance Portability and Accountability Act of 1996 50. EIN Number assigned to an employer 51. CLEARINGHOUSE a billing service 52. HEALTHCARE PLAN Individual or group that provides or pays for medical care 53. PHI 54. TELEMEDICINE at a distance 55. EMPLOYER IDENTIFIER STANDARD 56. HHS 57. The privacy rule is meant to ensure: a. standardization of health data b. standardization of financial data c. standardization of medical care d. a and b only e. a, b, and c Med Law Chapter 10 Patient Confidentiality and HIPAA 9 / 12 58. An example of a clearinghouse is: a. PHI b. a skilled nursing facility c. a billing service d. a government regulation e. EIN 59. The government organization that investigates a violation of a patient's medical privacy is called a. OSHA b. OCR c. PHI d. HIPAA e. none of the above 60. A network of wireless communication systems used to access patient records is a. HIPAA b. PHI c. WLANs d. EIN e. ADA 61. The privacy law a. prevents hospitals from sharing medical information with other facilities b. prevents hospitals from sharing registered patient names with the clergy c. does not appy to most police and fire departments d. allows unlimited information to be shared by EMT's e. none of the above Med Law Chapter 10 Patient Confidentiality and HIPAA 10 / 12 62. A violation of HIPAA a. is a criminal offense b. does not carry any financial penalty at present c. is not reportable d. does not affect a physician's reputation, as it is just a document e. may have a fine of under $100 for all offenses 63. When implementing HIPAA, physicians and physician groups should a. hire a privacy officer b. implement a Notice of Privacy Practices c. retain signed authorization for at least six years d. enter into written agreements with nonemployee service provides e. all of the above 64. Covered entities include all of the following except a. hospice programs b. medical device companies c. clinical laboratories d. police departments e. skilled-nursing facilities 65. Patients rights under HIPAA include the ability to a. examine their medical record b. have a full copy of their medical record c. complain to the HHS if they Med Law Chapter 10 Patient Confidentiality and HIPAA 11 / 12 believe there is a violation d. a and c only e. a, b, and c 66. When pt info is requested via a subpoena you must a. comply and send the entire record immediately b. provide only the minimum necessary standard even if more is requested in the subpoena c. provide all PHI that is requested in the subpeona d. provide PHI only with the consent of the patient e. none of the above are correct 67. What is the privacy Rule and why is it important? 68. What is a covered transaction? and give an example. 69. What are some examples of forms of identity that must be deidentified when health statistics are obtained? 70. What are some of the misconceptions about HIPAA? 12 / 12 What are some of the benefits of telemedicine? 72. What might be some of the ethical concerns with WLANs? 73. What are some privacy precautions to use when taking care of patients? 74. Who should pt contact if they wish to register a complaint about a potential privacy violation? 75. What does "minimum necessary standard" mean and why is it important? 76. Explain the quote from Justice Brandeis, found in this chapter, relating to our right to privacy 77. Electronic Health Records (EHR) [Show More]

Last updated: 1 year ago

Preview 1 out of 12 pages