37 terms

HIPAA test

What is HIPPA
Health Insurance portability and accountability act of 1996 This was further defined and modified in 2002.The privacy rule became effective on april 14 2001,and health care providers and most entities subject to the rule must comply with new requirements as of april 14 2003.
the intial focus of this reform is largley on patient privacy and data security.Hippa established standards and safeguards for documentation and transmission of health record informationto assure privacy and security of this data.The came about mainly because of abuses of patient privacy that have occurred in many places.HIPAA ergulations override all state laws that define and regulate patient privacy
impimplementation of hippa regulations
will not only protect security but will also improve efficiency and exchange of information in health care thus improving the portability of health insurance.portability deals with protecting healthcare coverage for employees who change jobs,and allowing them to carry their existing plans with them new jobs.some portions of hippaa mainly affect personnel in information systems,medical records and administration.but other requirements affect virtually everyone working in american healthcare including all those working with protected information
Protected Health Information,individually identifiable health information.
Treatment,Payment ,or Health Care Operations
Unique Identifiers
HIPAA mandated code for patients to maintain security as well as standardization for providers,health plans,and employers
HIPAA Two main sections of the law
1. Title 1- health care portability
2. Title 2 - Administrative simplification
Protected health information (PHI)
any health information that identifies someone or can be used to identify someone must be protected
According to HIPAA all of the following information can used to identify a patient:
A. addresses
C. telephone or fax numbers
D. social security numbers
E. medical records numbers
F.patient account numbers
G. insurance plan numbers
H. vehicle information
I. license numbers
J. medical equipment number
K. photographs
L. fingerprints
M. e-mail addresses
N. internet addresses
Privacy rule of title 2-administrative simplification
Single most important key to simply is to standardize a set of codes and transaction standards throughtout the health care system
If use of information doesnt fall under one these categories
must obtain written authorization before sharing information with anyone
Before HIPAA
it was common to use patient information for other purposes
Now patients
must give prior authorization for use of their health information for non-TPO purposes
Minimum necessary rule
health care providers and staff should only have access to information they need to fulfill their assigned duties
Business associated include
1. those who perform or assist with tasks that involve the disclosure of identifiable health information
B. non-employees who perform legal ,billing,or administrative functions
Business Associate must
agree to appropriately safeguard protected health information
medical researchers
if the research has been approved,and patient has authorized
Funeral directors/coroners
consistent with applicable law to allow them to carry out their duties
patient information may be disclosed to the following without patient authorization
organ tissue donation and transplant organizations
food and drug administration
relating to problems with food,supplements and products
patient information may be disclosed to the following without patient authorization
to report suspected abuse or neglect
to correctional institutions
if the patient is in jail or prison as necessary for your health
for law enforcement purposes
such as if a subpoena is received,court order,or other legal process,or if the patient is a victim of a crime
revised rights allow patients to
review and copy their medical record
request restrictions on the use or sharing of their information
patients may opt out of being placed in various patient directories
the following information is disclosed in a hospital directory
1. name
2. location
3. general condition
4. religion (only to clergy)
parents and minor
1. provides parents with new rights to control the health information about their minor children
2. in special cases minors control their own health information
3. information may be released to someone who helps pay for care
4. information may be disclosed to assist in diaster relief efforts
5. family or friends may be told about patient's condition and that they are in hospital
6.information from a hospital may be disclosed to people who ask for patient by name
1. before HIPAA it was not uncommon for patient information to be released to other companies for the purpose of marketing
2. HIPAA states you must get signed authorization before doing this
1. all information no matter where it is must be secure
2. proliferation of computers in medicine has created new dangers for breaches of confidentiality
3. everyone who uses the computer has a duty to keep the information secure
protection of information on computer can be done by
A. properly signing-on with individual IDs and passwords
B. signing-off computers if walking away from the desk
C. keeping IDs and passwords confidential
D. protecting computer screens from unwanted viewing
do not call out patient names in a waiting room
consider a number tag system
fax and email security
1. fax machines should be kept in a secure area
2. all faxes should have a cover sheet,noting that confidential information is enclosed in the transmission
3. phone first to let the recipient know ahead of time that a fax is coming
4. e-mails should be sent with password protection at both ends with encryption,if it goes over the internet
5. doubled-check the name of the recipient to make sure it goes to the right person
6. destroy printouts immediately or place them in the patient's chart
1. lower your voice levels
2. move to a private place and make sure others do not hear you A.suggest moving the conversation to a more private place
3. avoid lunchrooms.corridors and elevators as much as possible
what is HIPAA
health insurance protability and accountability act of 1996
what is PHI (list some examples
protected health infromation (individually identifiable health information) EX: addresses ,dates,phone numbers record numbers account numbers insurance plan numbers email assresses etc.
what is TPO
any information related to one of these categories can be shared without written authorization
what is new and what has been revised with patient rights
new rights: can obtain a list of who has shared their information in the past six years request to amend their medical record request communicationa to be made only at work or at home