Privacy and Security

According to the Privacy Rule, which item must be included in a record of disclosures of protected health information?

All of the above

According to the Privacy Rule, which of the following is true about authorization?

All of the above

According to the Security Rule in HIPAA, which of the following is an example of a technical safeguard?

All of the above

When are medical facilities required to notify patients of the privacy policy?

At the first visit

There are no additional costs to electronic medical records.

False

What is the name of the form that patients must sign to give permission to the medical facility to disclose health information?

Release of Information form

When did HIPAA become law?

1996

According to the Security Rule in HIPAA, which of the following is an example of a physical safeguard?

Computer server rooms should be locked.

What is using discretion when handling protected health information?

Confidentiality

Which of the following is an example of information that is obtained incidentally?

Dr. Kemper discusses a health condition with a patient behind closed doors. A nurse outside the door hears the conversation.

What type of abuse includes excessive demands, insults, humiliation, jealousy, control, isolation, stalking, threats, lack of affection, and lack of support?

Emotional abuse

According to HIPAA, a health insurance company can deny coverage to a person with pre-existing health conditions.

False

Breaches of confidential patient information never have serious consequences.

False

Errors in medical records should be erased or covered with correction fluid.

False

Unneeded printouts, copies, and faxes of confidential information should be thrown in trash cans.

False

When health data is needed for research, the entire medical record is disclosed to the researchers.

False

What does HIPAA stand for?

Health Insurance Portability and Accountability Act

With whom can patient information be shared without the patient's permission?

Patient's other health care providers at a practice

What is the term used to describe any individually identifiable health information about a patient?

Protected Health Information (PHI)

Which of the following is a legal or public interest issue in which health information can be disclosed without authorization?

All of the above

What protective measures should be taken to ensure that electronic medical records are confidential and secure?

All the above

Who is effected by a breach of confidential patient information?

All the above

Who do medical records belong to?

Health care providers

Patients have a right to obtain a copy of their medical records. Which item is legally allowed to be kept from the patient?

Psychotherapy notes

What may be included in medical records?

Subjective statements made by patients

In the Privacy Rule, what is authorization

The written permission that patients give to disclose protected health information

In HIPAA, what is the name of the rule that required nationally standardized medical transactions and codes?

Transaction and Code Set Rule

According to the Privacy Rule in HIPAA, patients must provide written authorization before health information is released to anyone else.

True

According to the Privacy Rule, patients may request that medical facilities call them at a work phone number instead of a home phone number.

True

Information that is shared between a physician and patient is privileged communication.

True

Patients may request amendments to their medical records.

True

When leaving telephone messages, health care workers should not speak about any confidential information.

True

With electronic medical records, users are able to remotely access to up-to-date information.

True