HIPAA – Flashcards
Unlock all answers in this set
Unlock answersquestion
When a patient requests copies of his/her medical records:
answer
I can charge reasonable cost-based fees
question
When a patient requests access to their records:
answer
I always have to provide the complete record and
I can provide a summary if I think it is too difficult for the patient to understand
question
A copy of a medical record authorization, as opposed to the original document:
answer
Is acceptable if all elements are completed accurately (name, DOB, types of records requested, date, signature, etc.)
question
A medical record authorization can be revoked:
answer
If the requested action has NOT already taken place
question
If the Secretary of Health and Human Services (HSS) validates a patient complaint regarding a potential privacy breach:
answer
It may result in a compliance review
question
My provider may respond to a request to amend/ modify a record:
answer
Within 60 days
question
An organization can refuse to amend the record:
answer
Under certain circumstances
question
The Notice of Privacy Practices (NPP) must be:
answer
- Given to each patient at the first visit
-Posted on the clinic's Web site, if there is one
-Posted in the office
question
Protected health information (PHI) can ONLY be released after obtaining written authorization.
True or False?
answer
False
question
If a non-authorized disclosure of protected health information (PHI) is made, i.e. a breach has occurred:
answer
The provider/ office must keep a record of this for six years and give the patient a full accounting of the event upon proper request
question
If a patient wants to request a restriction on the disclosure of his/her protected health information (PHI), for example they do not want any PHI mailed to their home address, rather they want it mailed to their work:
answer
It must be in writing
question
Staff must be trained:
answer
Initially and Annually
question
Other than office staff:
answer
Everyone who works in or with the facility, including unpaid volunteers, contract employees, and casual laborers, must be trained or show documentation of training about HIPAA
question
When it comes to a complaint regarding the protection of a patient's PHI, the government is the only way to assure an office's compliance with HIPAA.
True or False?
answer
False
question
What does HIPAA stand for?
answer
Health Insurance Portability and Accountability Act
question
I don't have to worry about the minimum necessary requirement for:
answer
-Disclosures to or requests by a health care provider for treatment
-Uses or disclosures made pursuant to an authorization
Disclosures made to the Secretary of Health and Human --Services (HSS), pursuant to the stated rules
question
A provider can be fined if he/she violates HIPAA.
True or False?
answer
True
question
If you are at the store with a family member and a patient, John Smith, stops you and says hello. Is it OK to say to that family member "Oh that was John Smith, he is a patient at my work."
True or False?
answer
False
question
Which of the following is an example of when a provider cannot give a patient's family member information though they are on a signed release.
answer
Psychotherapy Notes
question
A provider does not need a business associate agreement for:
answer
-The employees
-The cleaning service
-Contracted employees such as a physical therapist who perform a substantial portion of their work at that facility
question
The Privacy Rule requires the return or destruction of all PHI at the termination of a business associate agreement contract
True or False?
answer
True
