HIPAA Privacy and Security Rules for All Healthcare Personnel (Media Lab)
You should never keep your password on a piece of paper beside your computer, and you should always log off your computer when you leave.
True
Which of the following are examples of physical safeguards for protecting health information? More than one answer is correct. Please select all correct answers
2 ANSWERS Shredding unneeded patient testing reports AND Locking offices and file cabinets containing PHI
Your institution is a covered entity as defined by HIPAA. Which of the following will be true? More than one answer is correct. Please select all correct answers
2 ANSWERS You will have a Privacy Officer (Official) AND You will have a Security Officer (Official)
As a healthcare worker, I have the right to access anyone's medical records whenever I want to.
False
HIPAA stands for:
Health Insurance Portability and Accountability Act
In which of these cases would it be acceptable for you to identify a patient by name and discuss the patient's medications?
The medications are necessary for treatment of the patient and you are discussing the details with the clinical staff who are treating the patient.
An individual's name, address, health identifiers, social security number, test requests and results, family physician, and billing information are all examples of Protected Health Information.
True
You are checking your hospital email, and open an email from an unknown sender offering you a free program that will show you the current time of day in all world time zones. You click to download the program. You may have inadvertently downloaded spyware or a virus onto your computer.
True
The Privacy Rule requires covered entities to have which of the following measures in place? More than one answer is correct. Please select all correct answers
2 ANSWERS HIPAA training program that requires participation by all staff AND Privacy Officer (Privacy Official)
The HIPAA Privacy Rule applies to covered entities. Which of the following are examples of covered entities? More than one answer is correct. Please select all correct answers
2 ANSWERS Hospitals and physicians' offices AND Health care billing companies
Which of the following are appropriate ways to dispose of unneeded patient reports containing PHI? More than one answer is correct. Please select all correct answers
2 ANSWERS Shred paper reports AND Wipe, shred, or in some manner destroy, if on electronic media
Printing your mother's chest X ray report without a physician request for a copy of the report is an acceptable privacy practice.
False
The HIPAA Privacy Regulations apply only to health information about an individual, which is in electronic form.
False
You may provide medical records to researchers, police and clergy. All they need to do is ask.
False
You work in a physician's office. You receive an email from a nurse at another physician practice requesting medical records on a patient that one of your physicians has referred to that practice. You can safely send the records as an unencrypted email attachment, since email attachments are secure.
False