SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
HIPAA
Start Test
Study First
Subjects
:
certifications
,
hipaa
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Medical records used for health care research
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
2. Patient records are _____________ so not all staff will have access.
Malfeasance
Every office should have one! - responsible for making surethat thise office is HIPAA compliant - privacy officer should be.. an effective communicator with ability to answer questions about sespected HIPPA violations and complaints
false charges and malicious oral statements about someone
need to know
3. HIPAA compliance mandates that computer systems must be...
located in a secured and private space
Electronic data interchange
safeguards health & wealthfare of Medicare/Medicaid beneficiaries & protect program integrity
a minor - rather than the parent - must sign the release of patient information
4. HI
Health Information
Patient
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
it must have an accompanying disclaimer stating the fax information cannot be shared with any other party w/o patient's written consent
5. Confidentiality
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
6. Protecting healthcare coverage for employees who change jobs - allowing them to continue existing plans with a new employer.
Portability
Minimum necessary
although medical records are confidential - there are times when they can be released w/o a patient consent.
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
7. DII
U.S. goverment
What types of disclosures do not require patient permission?
Malfeasance
De-Identified Information
8. Statue of limitations
individuals such as cleaning staff and consultants who work in the office. These individuals do not need access to patient info but may come in contact while completing their duties
state laws setting time limit for bringing a lawsuit
Firewalls
testimony under oath
9. Privacy Officer
What types of disclosures do not require patient permission?
Every office should have one! - responsible for making surethat thise office is HIPAA compliant - privacy officer should be.. an effective communicator with ability to answer questions about sespected HIPPA violations and complaints
should only be used when no other - more secure mode of transmission is available
Portability
10. Battery
testimony under oath
illegal touching of another person
Medical data from which individual identifiers have been removed; also known as a redacted or blinded record.
same legal standards apply to all patient records whether on paper or computer
11. Protected Health Information (PHI)
Notice of Privacy Practices
Any information that would identify a patient (name - add - tele - DOB - SSN - email - med. rec. number - etc)
have a unique password and it should be changed frequently
a contract that comes about from the actions of the parties rather than words
12. PII
need to know
Patient Identifiable Information
Firewalls
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
13. Statutory
The body of laws made by states is their own statutory laws
Individually Identifiable Health Information
individuals such as cleaning staff and consultants who work in the office. These individuals do not need access to patient info but may come in contact while completing their duties
concerns noncriminal disputes between private parties
14. In order for a fax document to be HIPAA compliant...
Warning
: Invalid argument supplied for foreach() in
/var/www/html/basicversity.com/show_quiz.php
on line
183
15. The computer screen should have a screensaver that...
Malfeasance
human immunodeficiency virus/acquired immune deficiency syndrome (HIV/AIDS)
must be reported to authorities by law
comes on after a few idle seconds and the use of a privacy screen should be mandatory
16. EPHI
law concerned with public wrongs against society
Examples of PHI
Electronic Protected Health Information
failure to act with the standard of care that a reasonable person would exercise under the same circumstances
17. Any wrongdoing for which an action for damages may be brought
Electronic transmission
Treatment - payment and health care operations (TPO)
Type of consent in which a patient who is unable to give consent is given treatment under the legal assumption that he or she would want treatment.
Tort
18. Transmission of information between two parties fro financial or administrative activities.
testimony under oath
Every office should have one! - responsible for making surethat thise office is HIPAA compliant - privacy officer should be.. an effective communicator with ability to answer questions about sespected HIPPA violations and complaints
should only be used when no other - more secure mode of transmission is available
Transaction
19. HIPAA
Permission
Insurance portability - administrative simplification - privacy and security
Health Insurance Portability and Accountability Act of 1996 (passed by congress because of portability problems - also to protect PHI)
a contract that comes about from the actions of the parties rather than words
20. Computes and HIPAA
Patient rights under HIPAA
same legal standards apply to all patient records whether on paper or computer
addresses portability of insurance coverage when employees change or lose their jobs
What types of disclosures do not require patient permission?
21. Guidelines and standards made by government agencies and licensing boards that have the authority to enforce compliance
Regulations
Covered transactions
improper performance of an otherwise lawful act. civil
same legal standards apply to all patient records whether on paper or computer
22. Advanced directives
the philosophical study of moral values and rules - conducts
a minor - rather than the parent - must sign the release of patient information
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
concerns noncriminal disputes between private parties
23. Sending information over electronic networks.
Invasion of Privacy Publishing
Covered transactions
Electronic transmission
illegal touching of another person
24. What are the 3 purposes of HIPAA?
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
Insurance portability - administrative simplification - privacy and security
Encryption
regular - in a secure location
25. Subpoenas
What types of disclosures do not require patient permission?
Standard
Malfeasance
A court order requiring someone to appear in court on a certain date time and reason. A medical record could be subpoenaed.
26. A general HIPAA requirement
Standard
it must have an accompanying disclaimer stating the fax information cannot be shared with any other party w/o patient's written consent
Psychotherapy notes - information for legal proceedings - information exempted from disclosure under CLIA
may be disclosed to public health agencies - patient identifiers are removed so it's covered by HIPAA
27. Hardware or software designed to prevent unauthorized access to electronic information.
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
testimony under oath
Firewalls
addresses portability of insurance coverage when employees change or lose their jobs
28. Under some circumstances ...
Electronic data interchange
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
a minor - rather than the parent - must sign the release of patient information
addresses portability of insurance coverage when employees change or lose their jobs
29. Fax machines
Patient Identifiable Information
The body of laws made by states is their own statutory laws
should only be used when no other - more secure mode of transmission is available
purpose - pride - patience - persistence - perspective
30. Includes records maintained by or for a covered entity.
Verification
judge made law from decisions of a court - interpretation of constitution and statuatory law - often known as precedents
Designated record set
Covered transactions
31. Implied consent
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
Designated record set
Type of consent in which a patient who is unable to give consent is given treatment under the legal assumption that he or she would want treatment.
Invasion of Privacy Publishing
32. Medical records can be released w/o consent to...
h/c workers --qualified people of organizations(perf. data processinf or transcript) -certain gov. auth. (pub health activities) -appropriate auth(protect vic. of abuse) -law enforcement officials or judicial orders
A court order requiring someone to appear in court on a certain date time and reason. A medical record could be subpoenaed.
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
Permission
33. Data must be backed up at ___________ and those back-up files should be stored ________.
improper performance of an otherwise lawful act. civil
substance abuse treatment
concerned with mostly with h/c providers. It addresses fraud and abuse - administrative simplification and medical liability
regular - in a secure location
34. The ability to control access and protect information from accidental or intentional disclosure to unauthorized persons and from altercation - destruction - or loss
same legal standards apply to all patient records whether on paper or computer
concerned with mostly with h/c providers. It addresses fraud and abuse - administrative simplification and medical liability
state laws setting time limit for bringing a lawsuit
security rule
35. Releasing patient information
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
Medical data from which individual identifiers have been removed; also known as a redacted or blinded record.
Health Insurance Portability and Accountability Act of 1996 (passed by congress because of portability problems - also to protect PHI)
generally only patient can auth release of own medical record - there are a few exceptions
36. Electronic exchanges of information between two covered-entity business partners using HIPAA mandated transaction standards.
Covered transactions
concerns noncriminal disputes between private parties
Minimum necessary
Notice of Privacy Practices
37. Professional Negligence
Psychotherapy notes - information for legal proceedings - information exempted from disclosure under CLIA
may be disclosed to public health agencies - patient identifiers are removed so it's covered by HIPAA
malpractice
addresses portability of insurance coverage when employees change or lose their jobs
38. The limited amount of patient information to be disclosed - depending on circumstances.
De-Identified Information
Limited data set
Minimum necessary
law that permits a person w/ a legal age and sound mind to give their body to donation
39. If a states privacy laws are stricter than HIPAA privacy standards - the state laws take precedence.
State preemption
Covered transactions
Psychotherapy notes - information for legal proceedings - information exempted from disclosure under CLIA
safeguards health & wealthfare of Medicare/Medicaid beneficiaries & protect program integrity
40. Gunshot wound - child abuse - infectious diseases - required by law - law enforcement purposes.
concerns noncriminal disputes between private parties
Covered entities
Insurance portability - administrative simplification - privacy and security
What types of disclosures do not require patient permission?
41. Negligence
judge made law from decisions of a court - interpretation of constitution and statuatory law - often known as precedents
same legal standards apply to all patient records whether on paper or computer
although medical records are confidential - there are times when they can be released w/o a patient consent.
failure to act with the standard of care that a reasonable person would exercise under the same circumstances
42. Deposition
testimony under oath
Ethical
have a unique password and it should be changed frequently
A written set of questions requiring written answers from a plaintiff or defendant under oath
43. The use of uniform electronic network protocols to transfer business information between organizations.
a minor - rather than the parent - must sign the release of patient information
Electronic data interchange
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
judge made law from decisions of a court - interpretation of constitution and statuatory law - often known as precedents
44. Uniform anotomical gift act
Firewalls
Notice of Privacy Practices
law that permits a person w/ a legal age and sound mind to give their body to donation
U.S. Department of Health and Human Services (HHS; established national standards for HIPAA) - Centers for Medicare and Medicaid Services (CMS; enforce insurance portability and transaction/code set requirements) - Office for Civil Rights (OCR; enfor
45. IIHI
Individually Identifiable Health Information
law concerned with public wrongs against society
Electronic data interchange
individuals such as cleaning staff and consultants who work in the office. These individuals do not need access to patient info but may come in contact while completing their duties
46. See & Copy their health records - update health records - obtain a list of the institution's disclosures - other than for payment & healthcare operations - request a restriction on a certain uses or disclosures - choose how to receive their health in
may be disclosed to public health agencies - patient identifiers are removed so it's covered by HIPAA
testimony under oath
Insurance portability - administrative simplification - privacy and security
Patient rights under HIPAA
47. Treatment means that a health care provider can provide care; payment means that a provider can disclose PHI to be reimbursed; health care operations refers to HIPAA approved activities and transactions.
Electronic transmission
human immunodeficiency virus/acquired immune deficiency syndrome (HIV/AIDS)
security rule
Treatment - payment and health care operations (TPO)
48. Fax Machines and HIPAA
must be reported to authorities by law
Every office should have one! - responsible for making surethat thise office is HIPAA compliant - privacy officer should be.. an effective communicator with ability to answer questions about sespected HIPPA violations and complaints
in order to maintain patient confidentiality - fax machines must be kept in areas not accessible to patients.
De-Identified Information
49. Document that includes the standards
Security
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
Rule
Medical data from which individual identifiers have been removed; also known as a redacted or blinded record.
50. Freedom from unauthorized intrusion
h/c workers --qualified people of organizations(perf. data processinf or transcript) -certain gov. auth. (pub health activities) -appropriate auth(protect vic. of abuse) -law enforcement officials or judicial orders
State preemption
Privacy
U.S. Department of Health and Human Services (HHS; established national standards for HIPAA) - Centers for Medicare and Medicaid Services (CMS; enforce insurance portability and transaction/code set requirements) - Office for Civil Rights (OCR; enfor
