SUBJECTS
|
BROWSE
|
CAREER CENTER
|
POPULAR
|
JOIN
|
LOGIN
Business Skills
|
Soft Skills
|
Basic Literacy
|
Certifications
About
|
Help
|
Privacy
|
Terms
|
Email
Search
Test your basic knowledge |
HIPAA
Start Test
Study First
Subjects
:
certifications
,
hipaa
Instructions:
Answer 50 questions in 15 minutes.
If you are not ready to take this test, you can
study here
.
Match each statement with the correct term.
Don't refresh. All questions and answers are randomly picked and ordered every time you load a test.
This is a study tool. The 3 wrong answers for each question are randomly chosen from answers to other questions. So, you might find at times the answers obvious, but you will see it re-enforces your understanding as you take the test each time.
1. Conforming to proper professional behavior
Ethical
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
Treatment - payment and health care operations (TPO)
false charges and malicious oral statements about someone
2. Implied contract
comes on after a few idle seconds and the use of a privacy screen should be mandatory
Invasion of Privacy Publishing
a contract that comes about from the actions of the parties rather than words
A court order requiring someone to appear in court on a certain date time and reason. A medical record could be subpoenaed.
3. Under some circumstances ...
a minor - rather than the parent - must sign the release of patient information
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
Ethical
have a unique password and it should be changed frequently
4. Good samaritan law
same legal standards apply to all patient records whether on paper or computer
false and malicious writing about another
judge made law from decisions of a court - interpretation of constitution and statuatory law - often known as precedents
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
5. Protected health information from which certain patient identifiers have been removed
Notice of Privacy Practices (NPP)
Limited data set
individuals in their mid- to late teens who legally live outside of parents' or guardians' control
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
6. Any wrongdoing for which an action for damages may be brought
Tort
What types of disclosures do not require patient permission?
Standard
Notice of Privacy Practices
7. Statutory
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
U.S. goverment
The body of laws made by states is their own statutory laws
treatment - payment - & healthcare operations
8. Libel
U.S. Department of Health and Human Services (HHS; established national standards for HIPAA) - Centers for Medicare and Medicaid Services (CMS; enforce insurance portability and transaction/code set requirements) - Office for Civil Rights (OCR; enfor
only those who meed to know should have access to patient information
false and malicious writing about another
Individually Identifiable Health Information
9. Coded information that can't be read until is decoded.
State preemption
purpose - pride - patience - persistence - perspective
treatment - payment - & healthcare operations
Encryption
10. Professional Negligence
U.S. Department of Health and Human Services (HHS; established national standards for HIPAA) - Centers for Medicare and Medicaid Services (CMS; enforce insurance portability and transaction/code set requirements) - Office for Civil Rights (OCR; enfor
Covered entities
it must have an accompanying disclaimer stating the fax information cannot be shared with any other party w/o patient's written consent
malpractice
11. NPP
Notice of Privacy Practices
Limited data set
false and malicious writing about another
Tort
12. making known - or using information relating to the private life or affairs of a person without their approval or permission
should never be released w/o a patient's signed consent or court order
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
Invasion of Privacy Publishing
purpose - pride - patience - persistence - perspective
13. If a states privacy laws are stricter than HIPAA privacy standards - the state laws take precedence.
State preemption
false charges and malicious oral statements about someone
need to know
have a unique password and it should be changed frequently
14. Misfeasance
Tort
Security
Standard
improper performance of an otherwise lawful act. civil
15. Medical records used for health care research
16. Verify the identification of anyone requesting patient information.
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
Verification
human immunodeficiency virus/acquired immune deficiency syndrome (HIV/AIDS)
Transaction
17. Federal law protects patient records dealing with...
substance abuse treatment
state laws setting time limit for bringing a lawsuit
generally only patient can auth release of own medical record - there are a few exceptions
Code sets
18. Negligence
testimony under oath
failure to act with the standard of care that a reasonable person would exercise under the same circumstances
a contract that comes about from the actions of the parties rather than words
regular - in a secure location
19. A general HIPAA requirement
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
U.S. Department of Health and Human Services (HHS; established national standards for HIPAA) - Centers for Medicare and Medicaid Services (CMS; enforce insurance portability and transaction/code set requirements) - Office for Civil Rights (OCR; enfor
Standard
testimony under oath
20. EPHI
concerns noncriminal disputes between private parties
Electronic Protected Health Information
have a unique password and it should be changed frequently
Patient
21. Advanced directives
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
parent of a minor - legal guardian - Agent (patient selected on behalf in h/c power of attorney)
Encryption
Privacy
22. Business Associate Agreements applies to...
need to know
individuals such as cleaning staff and consultants who work in the office. These individuals do not need access to patient info but may come in contact while completing their duties
Medical data from which individual identifiers have been removed; also known as a redacted or blinded record.
law concerned with public wrongs against society
23. Protected Health Information (PHI)
What types of disclosures do not require patient permission?
Any information that would identify a patient (name - add - tele - DOB - SSN - email - med. rec. number - etc)
Notice of Privacy Practices
need to know
24. Title I of HIPAA
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
law that permits a person w/ a legal age and sound mind to give their body to donation
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
addresses portability of insurance coverage when employees change or lose their jobs
25. Electronic exchanges of information between two covered-entity business partners using HIPAA mandated transaction standards.
Covered transactions
Portability
failure to act with the standard of care that a reasonable person would exercise under the same circumstances
Regulations
26. Medical records can be released w/o consent to...
h/c workers --qualified people of organizations(perf. data processinf or transcript) -certain gov. auth. (pub health activities) -appropriate auth(protect vic. of abuse) -law enforcement officials or judicial orders
parent of a minor - legal guardian - Agent (patient selected on behalf in h/c power of attorney)
Electronic Protected Health Information
regular - in a secure location
27. interrogatory
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
A written set of questions requiring written answers from a plaintiff or defendant under oath
regular - in a secure location
Minimum necessary
28. Document that includes the standards
false charges and malicious oral statements about someone
Rule
law concerned with public wrongs against society
Limited data set
29. Civil law
concerns noncriminal disputes between private parties
parent of a minor - legal guardian - Agent (patient selected on behalf in h/c power of attorney)
Notice of Privacy Practices
law that permits a person w/ a legal age and sound mind to give their body to donation
30. HI
Health Information
Electronic Protected Health Information
Ethical
Prohibits discrimination preventing indiviualds with physical or mental disabilities or chronic illness - from accessing public services & accomodations. Employers requires 'reasonable accommodation' be provided so they can perform duties.
31. Hardware or software designed to prevent unauthorized access to electronic information.
Firewalls
concerns noncriminal disputes between private parties
State preemption
a contract that comes about from the actions of the parties rather than words
32. Disclosure without Consent
Psychotherapy notes - information for legal proceedings - information exempted from disclosure under CLIA
Limited data set
have a unique password and it should be changed frequently
although medical records are confidential - there are times when they can be released w/o a patient consent.
33. Computes and HIPAA
concerns noncriminal disputes between private parties
same legal standards apply to all patient records whether on paper or computer
Transaction
concerned with mostly with h/c providers. It addresses fraud and abuse - administrative simplification and medical liability
34. Statue of limitations
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
state laws setting time limit for bringing a lawsuit
Insurance portability - administrative simplification - privacy and security
failure to act with the standard of care that a reasonable person would exercise under the same circumstances
35. Uniform anotomical gift act
security rule
U.S. goverment
state laws setting time limit for bringing a lawsuit
law that permits a person w/ a legal age and sound mind to give their body to donation
36. Slander
false charges and malicious oral statements about someone
What types of disclosures do not require patient permission?
purpose - pride - patience - persistence - perspective
Firewalls
37. Releasing patient information
U.S. goverment
also called biomedical ethics - the moral dilemmas and issues of advanced medicine and medical research
Notice of Privacy Practices (NPP)
generally only patient can auth release of own medical record - there are a few exceptions
38. Protecting healthcare coverage for employees who change jobs - allowing them to continue existing plans with a new employer.
Portability
h/c workers --qualified people of organizations(perf. data processinf or transcript) -certain gov. auth. (pub health activities) -appropriate auth(protect vic. of abuse) -law enforcement officials or judicial orders
should never be released w/o a patient's signed consent or court order
it must have an accompanying disclaimer stating the fax information cannot be shared with any other party w/o patient's written consent
39. De-Identified Information
treatment - payment - & healthcare operations
Medical data from which individual identifiers have been removed; also known as a redacted or blinded record.
Examples of PHI
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
40. Some state laws specifically protect __________. A patient would need to sign a specific request.
human immunodeficiency virus/acquired immune deficiency syndrome (HIV/AIDS)
have a unique password and it should be changed frequently
De-Identified Information
What types of disclosures do not require patient permission?
41. Doctor release of patient
Patient rights under HIPAA
Permission
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
Electronic data interchange
42. Data must be backed up at ___________ and those back-up files should be stored ________.
Covered entities
although medical records are confidential - there are times when they can be released w/o a patient consent.
regular - in a secure location
allows patients to give directions to health care providers about treatment choices in circumstances in which the patient may no longer be able to provide that direction. There are two types: Living Will and Durable Power of Attorney
43. Sending information over electronic networks.
Patient rights under HIPAA
judge made law from decisions of a court - interpretation of constitution and statuatory law - often known as precedents
Electronic transmission
generally only patient can auth release of own medical record - there are a few exceptions
44. Treatment means that a health care provider can provide care; payment means that a provider can disclose PHI to be reimbursed; health care operations refers to HIPAA approved activities and transactions.
Tort
Portability
Limited data set
Treatment - payment and health care operations (TPO)
45. In HIPAA language health plans - Health care clearinghouses - and all health care providers that transmit HIPAA standard transactions electronically are called covered entities. Hospitals - nursing homes - hospices - pharmacies - physician practices
Any information that would identify a patient (name - add - tele - DOB - SSN - email - med. rec. number - etc)
Verification
Covered entities
Electronic Protected Health Information
46. See & Copy their health records - update health records - obtain a list of the institution's disclosures - other than for payment & healthcare operations - request a restriction on a certain uses or disclosures - choose how to receive their health in
a contract that comes about from the actions of the parties rather than words
Standard
individuals in their mid- to late teens who legally live outside of parents' or guardians' control
Patient rights under HIPAA
47. 5P's of ethical power
Regulations
U.S. goverment
h/c workers --qualified people of organizations(perf. data processinf or transcript) -certain gov. auth. (pub health activities) -appropriate auth(protect vic. of abuse) -law enforcement officials or judicial orders
purpose - pride - patience - persistence - perspective
48. Privacy Officer
Every office should have one! - responsible for making surethat thise office is HIPAA compliant - privacy officer should be.. an effective communicator with ability to answer questions about sespected HIPPA violations and complaints
only those who meed to know should have access to patient information
have a unique password and it should be changed frequently
Electronic data interchange
49. Fax machines
comes on after a few idle seconds and the use of a privacy screen should be mandatory
Designated record set
state law that protects healthcare professionals from liability when they provide emergency assistance/services within their scope of training
should only be used when no other - more secure mode of transmission is available
50. The limited amount of patient information to be disclosed - depending on circumstances.
Minimum necessary
patient discharges doctor with letter - doctor formally withdraws from patient with a certified letter or patient no longer needs treatment
a service company that recieves electronic or paper claims from the provider - checks and prepares them for processing - and transmits them in HIPAA-complaint format to the correct carriers
substance abuse treatment
