HIPAA
101
101
HIPAA stands for this.
What is the Health Insurance Portability and Accountability Act?
This division of the federal government is responsible for administering HIPAA privacy and security standards
What is the Department of Health and Human Services (HHS)?
This training is required annually, and the records for the training must be maintained for 6 years.
What is HIPAA Training?
To protect information on computer screens you should always do this before leaving the computer
What is lock the computer or log out of the computer?
HIPAA violations are punishable whether or not they are either of these
What is intentional or unintentional?
A persons’ name, birth date, email address, or social security number are all examples of this
What is Protected Health Information (PHI)?
This is the first rule addition to HIPAA and is a set of national standards designed to ensure protection of certain identifiable health information
What is the Privacy Rule?
It is mandatory to follow HIPAA because it is this
What is the law?
If faxing information, you must use a fax cover sheet with this label
What is CONFIDENTIAL?
This is the term for an unauthorized disclosure of protected health information
What is a breach?
Someone who oversees HIPAA policies and violations in a clinical setting
What is the Compliance Officer?
– Daily Double – This is our compliance officer at CDBTI
This is the second rule addition to HIPAA which sets the security standards for the protection of Electronic Protected Health Information (ePHI)
What is the Security Rule?
HIPAA helps reduce fraud and these (2)
What are theft of private information and abuse occurring from obtaining or use of that information?
This is the proper disposal of paperwork with protected health information
What is shredding?
In the event of a breach, covered entities and business associates are required to report that breach to the following individuals/organizations (2)
Who are all affected individuals and the secretary of HHS?
These are the two situations where an organization is required to disclose PHI
What are an individual’s request to their PHI/records, and to HHS for compliance investigation or review?
HIPAA standards were enacted during this presidential administration
What is the Clinton Administration?
– Daily Double - HIPAA was first introduced in this year
We comply with HIPAA to prevent these consequences (2) from occurring
What are breaches and fines?
You must obtain this prior to sharing or releasing information
What is authorization or consent?
This office within HHS is in charge of enforcement of HIPAA and all the rules of HIPAA
What is the Office of Civil Rights?
The two categories of individuals/organizations that are covered under the Privacy Rule of HIPAA
Who are covered entities and business associates?
These are the most recent rule additions to HIPAA (2)
What are the Omnibus Rule and the HITECH Rule?
A covered entity must have this in place with any entity they’re either sharing health information with or receiving health information from
What is a Business Associate Agreement?
These are the 3 types of safeguards under the HIPAA Security Rule
What are Administrative Safeguards, Physical Safeguards, and Technical Safeguards?
An covered entity or a business associate can be penalized for a HIPAA violation in these ways (2)
What are civil or criminal penalties?