All about HIPAA

PATIENT PHI

THE BOOK

HIPAA BASICS

SAFEGUARDS TO SECURITY

ALL THINGS SECURITY

100

THIS IS THE MEANING OF ACRONYM PHI

PROTECTED HEALTH INFORMATION

100

THIS IS THE MEANING OF NPP

NOTICE OF PRIVACY PRACTICES

100

HIPAA LAW APPLIES TO THESE PEOPLE

EVERYONE WORKING IN HEALTHCARE WHO TOUCHES ELECTRONICS

100

SHOW PHOTO 1

EMPLOYEE NAME TAGS

100

WHAT WE MUST DUE TO COMPLY WITH THE RULES

MAKE A BOOK

200

TO WHOM CAN WE DISCOLOSE INFORMATION? BE CAUTIOUS; THERE ARE 2 RULES

THOSE PEOPLE SPECIFIED ON THE HIPAA FORM; ANYONE WHO ARRIVES WITH THE PATIENT

200

THE PERSON WHO NEEDS TO KNOW WHAT IS IN THE NPP

YOU. ALL STAFF MUST KNOW WHAT IS IN THE NPP

200

THE TOTAL NUMBER OF TITLES VS THE NUMBER THAT APPLY TO OUR OFFICE.

5/1

200

SHOW PHOTO 2

PASSWORDS

200

NEW HIRE RESPONSIBILITIES

SIGN CONFIDENTIALITY AGREEMENT & HIPAA TRIANING WITHIN 90 DAYS OF HIRE

300

THESE ARE THE TWO TYPES OF DISCLOSURES. NAME THEM AND GIVE AN EXAMPLE OF EACH.

ROUTINE DISCLOSURE, NON-ROUTINE DISCLOSURE

300

THE 2 REQUIREMENTS FOR AN NPP

HAVE A COPY AVAILABLE TO READ; PATIENT MUST ACKNOWLDEGE RECEIPT

300

THIS IS THE MEANING OF THE ACRONYM HIPAA

HEALTH INSURANCE PORTABILITY AND ACCOUNTABILITY ACT

300

SHOW PHOTO 3

BARRIERS- PHYSICAL AND/OR WORKSTATION

300

EMPLOYEE BREACH OF SECURITY PENALTIES- 3 KINDS

WRITE UP (UNINTENTIONAL MINOR BREACH)

ADMINISTRATIVE LEAVE WITH OR WITHOUT PAY (UNINTENTIONAL BUT SIGNFICANT)

TERMINATION OF EMPLOYEMENT (INTENTIONAL)

400

LENGTH OF TIME A PATIENT CAN ASK FOR AN ACCOUNTING OF ALL DISCLOSURES

ONE YEAR

400

THE PRIVACY OFFICER AND PUBLIC INFORMATION OFFICER.

PO- DR ROBB, PIO- OFFICE MANAGER

400

THE THREE PURPOSES OF HIPAA

IDENTIFIES/PROTECTS/SECURES INFORMATION

400

SHOW PHOTO 4

NETWORK SECURITY

400

CURRENT SECURITY MEASURES- NAME 3

SAVING RECORDS TO SERVER/UTILIZING SECURITY SYSTEM/TRAINING OF EMPLOYEES/SECURING RECORDS AT DESKS/SHREDDING OF DOCUMENTS

500

THERE ARE 11 PARTS TO A PATIENT'S PHI. NAME 8

NAME/DATES/EMAIL ADDRESS/MEDICAL RECORD #/ DL LICENSE NUMBER/SOCIAL SECURITY #/ PHOTOGRAPHS/GEORGRAPHIC INFORMATION/ TELEPHONE NUMBER/HEALTH PLAN #/BIOMETRIC IDENTIFIERS

500

6 TYPES OF RECORDS THAT CAN BE IN A PATIENT RECORD SET (THERE ARE MANY MORE)

NEW PATIENT INFO/BILLING RECORDS/FEE SLIPS/OPTICAL RECORDS/THERAPY TESTINGS/LEGAL REQUESTS/REFERRAL DOCUMENTS/DR LETTERS/COPIES OF DISCLOSURES

500

COMMON HIPAA INFRACTIONS- GIVE ME 6

HACKING/THEFT/NON-TRAINING/GOSSIPING/UNATUTHORIZED ACCESS BY EMPLOYEE/IMPORPER DISPOSAL/UNSECURE RECORDS/UNAUTHORIZED RELEASE/NOT HAVING BUISNESS ASSOCIATE AGREEMENT/NOT REPORTING BREACHES

500

SHOW PHOTO 5

ALL EMPLOYESS ARE ON A NEED TO KNOW BASIS

500

POTENTIAL THREATS AND OR VULNERABILITIES TO SECURITY IN OUR OFFICE - NAME 3

BULDING DOES NOT HAVE A SECURITY SYSTEM/RECORDS ARE KEPT IN OPEN ACCESS STORAGE/MULTIPLE EMPLOYEES HAVE KEYS/SOME SOFTWARE PROGRAMS ARE NOT ENCRYPTED/USER ERROR IN FAXING OR EMAILING RECORDS/REMOTE SIGN-IN