HIPAA

Question 1

PHI

Answer 1

protected health information

Question 2

info created or recieved by a covered entity, that contains pt identification such as name, address, phone number, zip code, email, etc

Answer 2

phi-protected health info

Question 3

NPP

Answer 3

notice of privacy practices

Question 4

the written document developed by your practice that describes how protected health info will be used and disclosed and how you will protect the privacy of ur patients and the info they give to you

Answer 4

notice of privacy practices

Question 5

a health plan (insurance company), a healthcare clearinghouse (billing compnay) or a healthcare provider who transmits any health info in electronic format in connection w/ a transaction

Answer 5

covered entities

Question 6

violation where phi has been accidentally or intentionally exposed

Answer 6

breach

Question 7

a person or organization that contracts w/ our office to provide services, but is not an employee

Answer 7

business associate

Question 8

the minimum amount of pt information you willl need to complete the work expected of you. otnly those persons authorized to see PHI should have access to it

Answer 8

minimum necessary

Question 9

an agency w/in health and human services charged w/ monitoring, educating and public outreach in privacy compliance

Answer 9

office of civil rights

Question 10

how you use informatoin that identifies a pt inside the medical office

Answer 10

use

Question 11

the release, transfer, or divulging of pt information outise the medical office

Answer 11

disclosure

Question 12

responsible for privacy issues, compliance training, resolving compliance complaints, and answering questions

Answer 12

privacy official

Question 13

what is CMS

Answer 13

centers for mdicare and medicaid services formerly known as health care finanicng administration

Question 14

does the hipaa privacy rule permit a covered entity or its collectoin agency to communicate w/ parties other than the pt regarding payment of a bill?

Answer 14

yes.

Question 15

can an individual revoke his or her authorizatioN/

Answer 15

yes. the revocaktion must be in writing and is not effective until the covered entitity receives it

Question 16

can health care providers to whom a pt is referred for the first time use PHI to set up appointmnets or schedule surgery or other procedures w/o the pts written consent

Answer 16

yes. the hipaa privacy rule doesn’t require covered entities to obtain an individuals consent priore to using or discloing PHI about him or her for treatmnet, payment, or health care operations

Question 17

is a copy, facsimile, or electronically transmitted version of a signed authorization valid uner the privacy rule?

Answer 17

yes

Question 18

what is the diff btwn consent and authorization

Answer 18

• privacy rule permits but doesn’t require a covered entity voluntarily to obtain pt consent for uses and disclosures of PHI.
• authoization is required for uses and disclosures of PHI not otherwise allowed by the Rule. it is a detalied document that gives covered entities permission to use PHI for specified purposes other than treatment, payment, or health care operations or to give to a 3rd party.

Question 19

what must be specified in an authorization

Answer 19

1. description of the PHI to be used and disclosed
2. the person authorized to make the use or disclosure
3. the person to whom the covered entity may make the disclosure
4. an expiration date
5. in some cases, the purpose for which the info may be used or disclosed