Workplace HIPAA
Can you hold the door for fellow employees?
No
Why do you have to verify the caller name?
Eliminates the need for repetition.
What does PHI stand for?
Personal Health Information
Who is required to have HIPAA compliance training?
Anyone who handles PHI.
What does HIPAA stand for?
Health Insurance Portability and Accountability Act
Select three things you should NOT do on your computer?
1)Email out of network
2)Plug your phone into computer
3) Download programs
4) Email pictures of Sushi Cats
1)Email out of network
2)Plug your phone into computer
3) Download programs
If a caller provides a SSN or DOB with one wrong digit or two transposed numbers, what should you do?
Verify all other verification questions if DOB is incorrect and the caller is insistent, send to REGIS.
True or False: HIPAA only applies to all living individuals
False, HIPAA also applies to all deceased individuals for 50 years after date of death
What are the two required areas for HIPAA compliance training?
HIPAA and the Privacy and Security Rules
What year was HIPAA implemented?
1996
When a shredder is full, do you throw away your papers in the trash can?
Nnnope
Is it necessary to verify the service location for individually contracted providers?
No, However, for clinicians, the service address needs to be verified to ensure the provider will be seeing the member at one of the clinic affiliations they are contracted under.
Give five examples of PHI
A person's name
Date of Birth
Physical Address
Phone Number
SSN
How is Cigna Meeting Compliance Goals?
A) Implementing projects necessary to support compliance with regulations
B) Establishing a detailed work plan
C) Dedicated a team that works to ensure compliance
D) All of the above
D) All of the above
What are the three rules of HIPAA?
Implementation of three types of safeguards
1)Administrative safeguard
2)Physical safeguard
3)Technical safeguard
To make a message secure, in a new Outlook window, type “_______” in the CC (Carbon Copy) field, and then click on the CC tab.
“SecureMessage”
What amount of information can be released?
Minimum amount of necessary information.
What is required before disclosing any PHI?
A valid release of information
What is NOT one of the Cigna recommendations for providers to remain HIPAA compliant?
A) Contact your Clearinghouse and obtain guidance on how to be HIPAA compliant.
B) Consult with trusted legal counsel that is familiar with the HIPAA Privacy Rule and the Transaction and Code Sets regulations.
C) Enforce and utilize full HTTPS browsing for client protection
C) Enforce and utilize full HTTPS browsing for client protection
What is the maximum fine for a HIPAA violation?
A) $50,000
B)$1.5 Million
C)$5 Million
B) $1.5 Million
What do you have to use for when you fax PHI?
A Confidential Fax Cover Sheet
The voicemail system at Cigna requires ______ and is considered confidential.
Password Verification
List four components of a valid release of information
Name of Member
Name of Recipient
Expiration Date
Signature and Date
Description of Information Being Disclosed
Where can employees anonymously report any HIPAA concerns?
The locked box in the mailroom!
Out of these HIPAA violations, rank them in highest to lowest frequency.
Mishandling medical records
Employees disclosing information
Not getting authorization
Employees illegally accessing patient files
1)Employees disclosing information
2) Mishandling medical records
3) Employees illegally accessing patient files
4) Not getting authorization