Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
47 Cards in this Set
- Front
- Back
The government agency that investigates the most serious violations of the privacy rule |
Department of Justice |
|
The person who is seeking medical care;the person whose information we are protecting |
Individual |
|
An organization or person who provides services to a healthcare organization and requires protected health information to carry out that function or activity |
Business associate |
|
The government agency that accepts and investigates complaints related to privacy rule |
Office of civil rights |
|
A healthcare employee,volunteer,student,ir trainee; responsible for protecting patients health information |
Work force member |
|
A federal official who may be requested by a covered entity to preside over a trial-type hearing and make decisions to resolve disputes |
Administrative law judge |
|
Officers of the federal,state,or local government who have legal authority to investigate violations of the law |
Law enforcement |
|
Any provider,health plan,or clear house to which the privacy rule applies |
Covered entity |
|
Any piece of information that identifies or could be used to identify a specific individual is referred to as |
Protected health information |
|
The act of accessing any health information by a workforce member for the purpose of performing a task within a healthcare organization is referred to a |
Use |
|
The release,transfer,or sharing of health information which another individual or entity outside the healthcare organization holding this information is referred to as |
Disclosure |
|
Unnecessary use or disclosure of health information that could have been reasonably prevented is referred to as |
Impermissible |
|
Many healthcare organizations are adapting ( ) policies in regard to workforce members who violate the organization's privacy policies |
Zero- tolerance |
|
When protected health information (phi) is being used or disclosed for reasons other than treatment,payment,or health care operations,the authorization for the release of the PHI must be |
valid |
|
The privacy rule prohibits acts of revenge,known as ( ), against any person filing a complaint about a privacy violation |
Retaliation |
|
A( ) is an order of the court that prohibits parties from using protected information (PHI) for any purpose other than litigation or proceedings for which the PHI has been requested |
Qualified protective order |
|
Monies collected under penalties imposed under the Privacy Rule are deposited by the ( ),not disbursed to the complaint |
U.s. Treasury |
|
Under the privacy rule,workforce members are expected to take ( ) steps to safeguard protected health information |
Reasonable |
|
Under the Privacy Rule, the covered entity (CE) is obligated to implement,maintain,and provide workforce members with ( ) to make clear the CE 's expectations and assist in protecting the privacy of its patients |
Policies and procedures |
|
Under the privacy rule,the covered entity is required to appoint a ( )who will be responsible for various aspects of the rule,including assistance to work force members in maintaining compliance |
Privacy official |
|
Under the privacy rule,the covered entity must provide the individual with a ( ) on his or her first date of service which outlines the patient's rights under the rule |
Notice of privacy practices |
|
Under the privacy rule,a written authorization must be obtained when the release of information is not related to |
TPO: treatment,payment,Healthcare Operations |
|
Under the privacy Rule,a covered entity is required to put fourth it's ( )to obtain an individuals signature indicating receipt of the Notice of Privacy Practices |
Best effort |
|
Under the Privacy Rule,( ) guidelines restrict the amount of health information that may be used or disclosed to that needed to accomplish the purpose in question |
Minimum necessary |
|
Under the privacy rules,the patient has the right to request communication by |
Alternative means |
|
Under the privacy rule,the patient has the right to request ( )or obtain copies of his or her health records |
Access to |
|
Under the privacy rule ( ) may be imposed for violations of patient confidentiality |
Penalties |
|
When state laws regarding the protection of medical records are stricter than the federal privacy rule, the work force member must follow the federal rule |
False |
|
If you made your best effort to obtain a patient signature verifying that he has received the notice of privacy practices but the patient has refused to sign,you are required to document the reason that you were not able to obtain a signature |
True |
|
viewing your own medical records in the healthcare organization you work for may be considered a violation of the organization' policy on access to medical records |
True |
|
In determining what constitutes a reasonable safeguard for the protection of patient privacy,we should assess the risk without consideration of patient care |
False |
|
To meet requirements of the Privacy Rule,it is not necessary to hand a copy of the Notice of Privacy Practices to the individual if it has already been posted in the waiting room |
False |
|
The privacy Rule requires that all covered entitles (CEs) have and apply appropriate sanctions against those work force members who fail to comply with the rule |
True |
|
If a Business associate violates the privacy of an individual,it is not necessary for the covered entity (CE) to investigate or act upon knowledge of violation |
False |
|
If a medical assistant practice denies an individual 's request for medical records,the medical practice must provide the individual with a statement of his or her review rights and explanation of how to complain to the Secretary of the U.S. department of health and human services (DHHS) |
true |
|
On detecting a rule violation,the U.S. department of health and Human services (DHHS) will exercise discretion to consider not only what harm has been done but also the willingness of the covered entity (CE) to achieve voluntary compliance |
True |
|
The office of civil Rights (OCR), committed to strong enforcement of the Privacy Rule to protect patients Rights,has imposed penalties on covered entities(CEs) that have violated those rights as a means of encouraging othersl CEs to examine and improve their privacy protections |
True |
|
As workforce members,it is important for us to understand the purpose of HIPPA.furthermore,we should be able to explain the purpose of this legislation to patients.In this training HIPPA has been described as: a catalyst for change in American health care,Federal legislation focused on healthcare reform,a complex and far-reaching set on healthcare regulatory requirements,all of the above |
All of the above |
|
It is essential that work force members understand that the privacy Rule applies to |
Paper,electronic,and oral communication |
|
When you are entering the work force of a healthcare organization,what is the best method of strengthening your knowledge of the privacy rule and how the organization expects you to protect of its patients? |
Reading and becoming familiar with the organization's notice of privacy practices |
|
Work force members should understand that the privacy rule |
Requires that reasonable efforts be made to eliminate incidental use or disclosure of protected health information |
|
Work force members should be aware that under the privacy rule an individual has the right to request copies of his or her health records the provider may deny the patient access |
Under limited circumstances that must be communicated in writing to the patient |
|
Work force members must stay informed of enforcement activities related to the privacy Rule information on these activities may be found |
On the website of the office of civil rights (OCR) |
|
Work force members should be aware of the greatest areas of noncompliance risk and focus their attention on these areas.according to the office of civil rights,the most frequently reported violation of the privacy rule is |
Impermissible uses and disclosures of protected health information |
|
As workforce members,we must be aware that under the privacy rule access to medical records |
Is not restricted,other than psychotherapy,on the basis it is diagnosed |
|
As workforce members we must understand that if an incident of noncompliance with the Privacy Rule is not resolved by the covered entity (CE) in a satisfactory manner,the office of Civil Rights(OCR) may |
Impose a civil monetary penalty(CMP) |
|
To Ensure compliance with the workforce member should : continue adding to his or her knowledge of the privacy rule,focus on risk areas identified by his or her health-care organization and the office of civil rights,commit to continuous improvement of all processes relating to the protection of patient privacy,all of the above |
All of the above |