Give me Some Privacy, Please!
Get with the Health Care Compliance Program!
Regs
to
Riches
Who You Gonna Call? (hint: its not Ghost Busters)
I
Smell
Potpourri
100

Patient _____ and patient _______ are the foundation of our Privacy program.

What are privacy and confidentiality.

100

There are 8 of us, all equally important.

What are the elements to an effective compliance program?

100

Health Information Portability & Accountability Act in shorthand

HIPAA

100

I had a few Compliance questions and called.

Who is Jennifer Kindle. YH's Compliance & Privacy Officer: 203-436-9816 or jennifer.kindle@yale.edu.

or

The Yale University Hotline @ 877-360-YALE (8253)

100

This set of guidelines outlines the expected ethical behavior and standards for all Yale Health employees.

What is the Yale Health Code of Conduct.

200

These are three examples of PHI identifiers

  • Names: Full or partial, including initials.
  • Geographic Subdivisions: Street address, city, county, precinct, and ZIP code (except for the first three digits if permitted).
  • Dates: All elements of dates directly related to an individual (birth, admission, discharge, death) and ages over 89.
  • Contact Information: Telephone numbers, fax numbers, and email addresses.
  • Identification Numbers: Social Security numbers, medical record numbers, health plan beneficiary numbers, account numbers, and certificate/license numbers.
  • Digital & Vehicle Identifiers: IP addresses, Web Universal Resource Locators (URLs), vehicle identifiers (including license plates), and device serial numbers.
  • Biometric & Physical Identifiers: Fingerprints, voiceprints, and full-face photographic images.
  • Unique Characteristics: Any other unique identifying number, characteristic, or code.


200

Yale Health's Compliance & Privacy Officer is Jennifer Lewis.

False! Jennifer Kindle.

200

This federal agency ensures safe working conditions, often regulating bloodborne pathogens in clinics.

  • What is OSHA? (Occupational Safety and Health Administration, a U.S. federal agency under the Department of Labor.) 
200

If I do not want to identify myself when reporting a Compliance concern I can call.

Anonymous Reporting: https://app.mycompliancereport.com/report?cid=YUH

200

Telling your spouse about a famous patient you saw in the clinic today is.

What is a HIPAA Violation?

300

Access to student information is a right for every Yale Health employee.

False.

Under the The Family Educational Rights and Privacy Act (FERPA),

Only those employees who have a legitimate educational interest should have access to student information.  

300

Auditing, Identifying and Reporting Corrective Actions are one of the elements.

False: Auditing & Monitoring.

300

This organization accredits health care organizations and focuses heavily on patient safety standards.

What is The Joint Commission?

300

I need HR information. 

Contact Yale Health Human Resources:

203-432-0247

https://yalehealth.internal.yale.edu/human-resources

300

Accepting a gift card from a vendor for using their equipment is ok as long as it is less than $50.

What is False. Accepting gifts from vendors presents a conflict of interest and could be deemed a kickback.

400

When leaving my work station, it is ok for me to hit the "power off" button on my screen.

What is False. You must lock your screen by selecting "Ctrl + Alt + Delete".

400

Drug Diversion, Credentialing, Billing & Coding, Clinical Documentation and the Clinician Staff By Laws are all.

What are all key areas of Health Care Compliance.

400

Some of the regulations that apply to YH are to prevent, detect and correct, _________, waste and _________

What are fraud and abuse. Always report suspected instances.

400

It's urgent, it's Cybersecurity related!

What is the Yale University urgent Cybersecurity line?

 (203) 627-4665.

400

This federal act makes it illegal to submit false claims to the government for reimbursement.

What is the False Claims Act?

500

This rule requires organizations to report a data breach to affected individuals, the HHS, and sometimes the media.  

The Breach Notification Rule

500

There are really 8 of us.

What are Elements of an Effective Compliance Program:

•Written Policies & Procedures

•Dedicated Compliance Officer

•Training & Education

•Open Lines of Communication/Reporting Hotline

•Auditing & Monitoring

•Disciplinary Standards & Enforcement

•Respond to Detected Issues and Corrective Action

•Policy on Non-Retaliation & Intimidation


500

Sharing your computer password with a coworker who forgot theirs is a violation of the ______________ Rule.

What is the Security.

500

If you need guidance but never call.

What is you will not receive the support you need? Always reach out!

500

This acronym stands for the organization that investigates potential HIPAA violations, often leading to fines.

What is OCR (Office for Civil Rights)? a federal agency under the U.S. Department of Health and Human Services responsible for enforcing civil rights laws, conscience and religious freedom protections, and HIPAA privacy/security rules. 

M
e
n
u