HIPAA
PHI
Education
Breach
Access
100
Provides federal protections for personal health information
What is the Privacy Rule of the Health Information Portability and Accountability Act (HIPAA).
100
A persons name, date of birth, address and phone number.
What is Private Health Information.
100
Each person who handles PHI
Who is required to have HIPAA compliance training
100
Unauthorized access or diclosure of PHI for any reason other than treatment, payment, or healthcare operations
What is a breach of HIPAA.
100
Treatment, payment, healthcare operations
What are legitimate reasons to access PHI without consent
200
Specifies a series of administrative, physical, and technical safeguards for covered entities to use to assure the confidentiality, integrity, and availability of electronic protected health information.
What is the Security Rule of the Health Information Portability Accessability and Accountability Act (HIPAA).
200
Each covered entity, with certain exceptions, must provide this type of notice to all patients.
What is the organizational privacy practices
200
Upon hire, then annually, and as needed
What is how often is HIPAA compliance training conducted
200
Sharing your secure computer login and password
What is an open door for someone to access PHI and violate HIPAA.
200
the right to view and make changes to PHI
What is patient access rights to their PHI
300
The U.S. Department of Health and Human Services through the Office for Civil Rights
Who enforces the HIPAA Privacy Rules
300
An individual’s past, present or future physical or mental health or condition
What is PHI
300
a fun, interactive experience
What is this HIPAA compliance training
300
Unintentional, intentional, and intentional with intent
What are the types of breaches of HIPAA PHI
300
(1) To the Individual (unless required for access or accounting of disclosures); (2) Treatment, Payment, and Health Care Operations; (3) Opportunity to Agree or Object; (4) Incident to an otherwise permitted use and disclosure; (5) Public Interest and Benefit Activities
What are reasons to access PHI without express consent of the individual
400
A health plan, a health provider, a health clearing house
What is a HIPAA covered entity.
400
The past, present, or future payment for the provision of health care of an individual
What is PHI
400
obligations imposed by HIPAA and the Privacy and Security Rules
What are the requirements for HIPAA compliance training
400
$100.00 to $250,000 and 1 to 10 years in prison
What are the minimum and maximum penalies for HIPAA breaches.
400
A nurse takes goes to lunch and another nurse assumes care of her patients. During this time, a celebrity patient needs pain medication. The relief nurse accesses the medical record of the celebrity patient.
What is a legitimate access of PHI (treatment).
500
A busy emergency room uses bays to treat patients. HIPAA signs are posted in each bay and a written HIPAA disclosure is given to each patient upon admission. A patient hears about the neighboring patients condition.
What is incidental disclosure.
500
written, oral, electronic information that identifies an individual
What is PHI
500
sleeping, eating, talking and not paying attention
What is How you will earn having to re-take the HIPAA compliance training and recieve disciplinary action.
500
A nurse has a neighbor in the maternity ward. The HOA wants to send a special gift and asks the nurse to check into the patient's medical record so they will know the sex and weight of the new baby.
What is a breach of the Privacy Rule.
500
The Infection Control Nurse receives information that there have been several cases of MRSA on the 3 west nursing unit. The ICN access all the charts of all the patients on 3 west to collect data.
What is a legitimate access of PHI (administrative function)
M
e
n
u