Information Governance
Patient Portal
Release of Information
HIM Acronyms
Privacy/Security
100
a strategic framework composed of standards, processes, roles, and metrics that hold organizations and individuals accountable to create, organize, secure, maintain, use and dispose of information in ways that align with and contribute to the organization’s goals
What is Information Governance
100
The act of completing, signing, dating, and timing a document or entry to the medical record by the author or, if the author requires clinical supervision, the supervising physician of the author
What is Authentication
100
the obligation of professionals who have access to patient records or communication to hold that information in confidence.
What is confidentiality
100
ambulatory payment classifications
What is APCs
100
sets the floor providing baseline requirements to preserve the overall confidentiality of protected health information (PHI) regardless of type (e.g. verbal, paper, electronic). •Protects individuals’ health records and other individually identifiable health information created, maintained, or received by or on behalf of covered entities and their business associates
What is Privacy Rule
200
the overall management of the availability, usability, integrity, and security of the data employed in an organization or enterprise (AHIMA)
What is Data Governance
200
An individual who provides medical treatment or care to a patient within his or her scope of practice and who, in accordance with ABC Healthcare Organization policy, may document care or treatment in the medical record for the patient.
What is Care Provider
200
the unauthorized acquisition, access, use, or disclosure of protected health information which compromises the security or privacy of such information, except where an unauthorized person to whom such information is disclosed would not reasonably have been able to retain such information.
What is Breach
200
CPHQ
What is certified professional in health care quality
200
•Requires covered entities to implement certain administrative, physical, and technical safeguards to protect electronic information •Covered entities have contracts in place with their business associates that all business associates will appropriately safeguard the electronic protected health information they receive, create, maintain, or transmit on behalf of the covered entities
What is Security Rule
300
Five level model Defines characteristics of governance practices at advancing levels of maturity Rooted in IG best practices, standards, and requirements Introduces constructs of IG organizational "competencies" that are enumerated by performance-driven "markers"
What is AHIMA IG Adoption Model
300
Requirements under the Health Information Technology for Economic and Clinical Health (HITECH) Act for eligible healthcare professionals and hospitals to qualify for Medicare and Medicaid incentive payments upon adoption of certified electronic health record technology that meets mandated measurable objectives.
What is Meaningful Use
300
has the meaning given such term in section 160.103 of title 45, Code of Federal Regulations. Section 160.103— (1) A health plan. (2) A health care clearinghouse. (3) A health care provider who transmits any health information in electronic form in connection with a transaction covered by this subchapter [e.g., HIPAA Administrative Simplification transaction standards].
What is Covered Entity
300
EDMS
What is electronic document management system
300
•Extending compliance with HIPAA to business associates and their subcontractors •Establishing new limitations on the use and disclosure of protected health information for marketing and fundraising purposes •Prohibiting the sale of protected health information without appropriate authorization •Expanding individual rights to access of their protected health information electronically
What is HITECH Omnibus Rule
400
Concept of data quality that involves whether the data are up-to-date and available within the expected time frame; timeliness is determined by manner and context in which the data are being used
What is Data Timeliness
400
Legal parent or guardian of a minor patient authorized by ABC Healthcare Organization policy to access a minor patient's medical records.
What is Minor Proxy
400
A function or activity involving the use or disclosure of individually identifiable health information, including claims processing or administration, data analysis, processing or administration, utilization review, quality assurance, billing, benefit management, practice management, and repricing
What is Business Associate
400
CHDA
What is certified health data analyst
400
establishes national standards to protect individuals' medical records and other personal health information and applies to health plans, health care clearinghouses, and those health care providers that conduct certain health care transactions electronically.
What is HIPAA Privacy Rule
500
the ability of different systems to use and exchange information through a shared format
What is Interoperability
500
requires eligible providers or hospitals to adopt a patient portal to meet the stage 2 meaningful use program’s requirements
What is The Centers for Medicare and Medicaid Services (CMS)
500
Transmitted by electronic media; (ii) Maintained in electronic media; or (iii) Transmitted or maintained in any other form or medium.
What is Protected Health Information
500
HCPCS
What is Healthcare Common Procedure Coding System
500
oversees all ongoing activities related to the development, implementation, maintenance of, and adherence to the organization’s policies and procedures covering the privacy of, and access to, patient health information in compliance with federal and state laws and the healthcare organization’s information privacy practices
What is Privacy Officer
M
e
n
u