H
HIPAA accountability involves "Administrative Simplification" which includes
Privacy, security, code sets, identifiers, uniform transactions
This penalty exist for healthcare providers and workers who violate HIPAA guidelines
Monetary fines and Imprisonment
This form must be given to the patient informing them of their patient rights
Notice of Privacy Practices
A patient's privacy rights are communicated to the patient through what
Notice of privacy practices
The acronym "HIPAA" stands for what
Health Insurance Portability and Accountability Act
The HITECH Act updated the HIPAA Privacy Rule to include
Protection against identity theft
This is an example of a business associate
Third party administrator that assist with claims
The privacy rule permits certain incidental uses and disclosures as long as what
There are reasonable safeguards and implemented minimum necessary standards
This government office is responsible for administering and enforcing HIPAA standards
Office for Civil Rights
The privacy rule protects information that exists in what format
Written, oral and electronic
The "Minimum Necessary Standard" requires covered entities to evaluate their practices in order to do what
Protect access and disclosure of personal health information (PHI)
Cover entities must have this in place that protect against uses and disclosures not permitted by the privacy rule
Administrative, Technical, and Physical Safeguards
The individuals who must comply to the HIPAA Privacy Rule are
Employees, Volunteers, Trainees, Personal with job related access
When a patient receives a "Notice of privacy Practices" they must do what
Sign acknowledgement of receipt which is retained by Healthcare providers
Under the Minimum Necessary Standard, covered entities must identify who needs access to protected health information
Carry out there job duties
Under the Uses and Disclosure in Treatment, Payment, and Health Care Options; the privacy rule provides for what
Billing and Collection Activities
The privacy officer required under the privacy rule is responsible for
Privacy related training and education
Under the Uses and Disclosures in Treatment, Payment, and Health Care options; the provision, coordination, or management of health care and related services is defined as
Treatment
The HIPAA Security Rule requires that institutions designate a Privacy Officer who is responsible for all the following except for what
The reporting of all violations to the department of Health and Human Services
A person or entity that performs certain functions or activities that involve the use or disclosure of personal health information on behalf of, or provides services to, a covered entity is know as
Business Associate