HIPPA Basics
Patient Privacy
Security Practices
Professional Ethics
Scenarios
100

What does HIPAA stand for?

Health Insurance Portability and Accountability Act

100

When can PHI be shared ?

During treatment, payment, and operations

100

The HIPAA Security rule establishes ____ to protect individuals electronic protected health information that is created, received, used, or maintained by a covered entity or its business

national standards

100

What ethical principle focuses on patient privacy?

-confidentiality 

100

A coworker leaves their computer unlocked. What do you do first ? 

-lock it or notify them
200

What is PHI?

Protected health information

200

Is family access allowed?

Only with permission 

200

What is the safest way to protect patient data when stepping away from your workstation ? 

Lock the screen or log out immediately 

200

What ethical principle requires health care workers to act in the patients best interests?

-beneficence 

200

You overhear PHI in the hallway. What’s your responsibility?

-stop it or report it

300

Name one HIPAA rule:

Privacy, security, or breach notification rule

300

A lawyer shall not reveal confidential info relating to the representation of a client unless? 

The client gives informed consent 

300

What type of safeguard includes passwords, user ids, and access controls? 

-administrative safeguards

300

What does “autonomy” mean in healthcare ethics ? 

-respecting a patients right to make their own decision 

300

If you send the wrong email out to someone , what do you do? 

-report it immediately! Do not attempt to send it again until the issue is resolved 

400

Who must follow HIPAA?

Covered entities and business associates 

400
Toss up! What are some factors that help determine what constitutes reasonable efforts?

-the sensitivity & nature of client info

-likelihood of disclosure or unauthorized access if safeguards are not employed

-the cost of implementing additional security measures 

-potential impact of the security measures on the lawyers ability to represent the client efficiently 

400

A staff member used a personal device to access patient records. What must be in place for this to be allowed ?

-secure access controls 

400

What ethical principle focuses on fairness and equal treatment of all patients ? 

-justice 

400

you notice a coworker frequently leaves printed PHI on a shared printer. What should you do?

-report it and remind them of proper disposal procedures 
M
e
n
u