Chapter 8: L&E

Privacy & Confidentiality

Constitutional Rights

HIPAA Rules & Permissions

HITECH Act

100

The right of individuals to keep their personal health information free from unauthorized intrusion.

What is privacy

100

This amendment protects citizens from unreasonable searches and seizures.

What is the 4th Amendment

100

This term refers to any identifiable patient information such as name, birth date, or SSN.

What is Protected Health Information (PHI)

100

The HITECH Act was part of this 2009 law

What is the American Recovery and Reinvestment Act (ARRA)

200

The duty of health care professionals to keep patient information secret unless authorized by the patient.

What is confidentiality

200

The Supreme Court case that first recognized a constitutional right to privacy.

What is Griswold v. Connecticut (1965)

200

The HIPAA rule that protects PHI in written, spoken, or electronic form.

What is the Privacy Rule

200

This Act strengthened HIPAA’s privacy and security protections

What is the HITECH Act

300

Saying a patient’s name in the waiting room is this type of disclosure, which is allowed under HIPAA

What is an incidental disclosure?

300

This case expanded the right to privacy to include reproductive rights.

What is Roe v. Wade

300

The HIPAA rule that safeguards electronic PHI through data protection measures.

What is the Security Rule

300

The HITECH Act extended liability to this group that performs services for covered entities.

What are business associates

400

Sharing information with staff not involved in a patient’s care is an example of this kind of violation.

What is a confidentiality violation

400

Which amendments imply the right to privacy even though it is not directly stated in the Constitution?

What are the 1st, 3rd, 4th, 5th, 9th, and 14th Amendments

400

Releasing information about child abuse is allowed under this HIPAA permission category

What is Public Interest and Benefit

400

This HITECH provision incentivized providers to adopt electronic medical records.

What is meaningful use

500

In health care, privacy is a ______, while confidentiality is a ______.

What is right and duty

500

When federal privacy laws override state laws, this legal principle applies.

What is preemption

500

If a data breach affects over 500 records, this organization must be notified.

What is the Office for Civil Rights (OCR)

500

The HITECH Act requires these two key actions after a data breach.

What are notification and documentation