Becoming HIPAA Compliant Flashcards
A general overview and tips to implementing HIPAA Privacy and HIPAA Security at your organization
1
Q
HIPAA privacy vs security
A
privacy: people, security: electronic
2
Q
why care?
A
<ul> <li>financial penalities</li> <li>publicity</li> <li>loss of accreditation</li> <li>late compliance increased cost</li> <li>litigation damages</li> <li>jail</li> </ul>
3
Q
HIPAA Privacy objectives
A
- protect Privacy&Security 2. provide rights
4
Q
HIPAA Privacy components
A
- compliance officer 2. employee training 3. formal documents and controls
5
Q
HIPAA Security objectives
A
ePHI not stolen, misused
ePHI available
6
Q
HIPAA Security components
A
- compliance officer 2. validate and fix 3. formal documents and controls
7
Q
common HIPAA violations
A
<ul> <li>email noncompliant</li> <li>no BA contract</li> <li>not training employees</li> <li>not retaining medical records</li> <li>inadequate ePHI|PHI disposal</li> <li>not notifying breach</li> <li>not having formal documentation w/ policies, procedures</li> </ul>