Chapter 10 Test 4

Question 1

Title I- Insurance Portability
Title II - administrative simplification
Title III- Medical Savings and Tax Deduction
Title IV- Group Health Plan Provisions
Title V- Revenue Offset Provisions

Answer 1

HiPAA Components

Question 2

Insurance portability

Answer 2

Title I

Question 3

Administrative Simplification

Answer 3

Title II

Question 4

Medical Savings and Tax Deduction

Answer 4

Title III

Question 5

Group Health Plan Provisions

Answer 5

Title IV

Question 6

Revenue Offset Provisions

Answer 6

Title V

Question 7

Protects individuals from losing their health insurance when leaving or changing jobs by providing insurance continuity (portability). It also prohibits discrimination based on a persons status or that of his or her dependents in the enrollment in health insurance plans and the amount of premiums charged.

Answer 7

Title I

Question 8

The most relevant title to management of health information, containing provisions relating to the prevention of healthcare fraud and abuse, medical liability reform, and administrative simplification. The Privacy Rule reside is Title II along with HIPAA security regulations

Answer 8

Title II

Question 9

Contain tax related provisions relevant to the IRS and requirements for group health plans.

Answer 9

Title III, IV, and V

Question 10

Became effective in 2003 under HIPAA law

- Has Two goals

Answer 10

The Privacy Rule

Question 11

Protect the privacy of one’s health information by limiting access by others.

Answer 11

Privacy rule Goal 1

Question 12

Provide an individual with greater rights with respect to his or her health information.

Answer 12

Privacy rule Goal 2

Question 13

______ passed in 2009

Part of ______ was the HITECH Act.

Answer 13

ARRA

Question 14

Expanded the role of the ONC
HIT Standards Committee was created
Appointed an ONC Chief Privacy Officer

Answer 14

HITECH

Question 15

______ Policy Committee was created to address technologies and promote EHR privacy and security

Answer 15

Health Information Technology (HIT)

Question 16

What Law addresses Alcohol abuse?

Answer 16

Treatment and Rehabilitation Act of 1970

Question 17

What Law addresses drug abuse?

Answer 17

Treatment and Rehabilitation Act of 1972

Question 18

What does HIPAA give or protect?

Answer 18

Protected Health Information (PHI)

Question 19

Insurance plans

Covered entities

Answer 19

Health plans

Question 20

Covered entities

Intermediary billing companies

Answer 20

Healthcare clearinghouses

Question 21

________ should be initiated to legally protect information handled by a BA

Answer 21

business associate agreement (BAA)

Question 22

Subcontractors of BAs are also _______.

Answer 22

BAs

Question 23

Include employees, volunteers, student interns, trainees, and anyone else working under the CE’s direct control
Contractors working on a covered entity’s premises may be considered workforce members if they routinely work there

Answer 23

Workforce members

Question 24

Does not identify the individual

Not subject to the HIPAA privacy rule

Answer 24

De-identified information

Question 25

Unrelated code permitted to link de-identified information back to the individual

Answer 25

Re-identification

Question 26

Per HITECH, individually identifiable information of persons ________ is not protected by the HIPAA privacy rule.
- loses its PHI status

Answer 26

deceased >50 years

Question 27

person who is the subject of the PHI

Answer 27

Individuals

Question 28

persons with legal authority to act on behalf of another adult, an emancipated minor, an unemancipated minor, or deceased individual.

Answer 28

Personal representatives

Question 29

in the place of a parent

Answer 29

In loco parentis

Question 30

divulging, releasing or disseminating outside information about an identifiable person by a CE or a BA to another entity or person OUTSIDE the entity holding the information.

Answer 30

Disclosure

Question 31

sharing, employment, application, utilization, examination or analysis of individually identifiable information WITHIN an entity that maintains such information.

Answer 31

Use

Question 32

asking for all or part of individual’s PHI

Answer 32

Request

Question 33

providing coordinating or managing healthcare or healthcare related services by one or more healthcare providers.

Answer 33

Treatment

Question 34

billing, claims management, claims collection, review of medical necessity of care, utilization review, etc.

Answer 34

Payment

Question 35

quality improvement, legal and auditing functions, general business management such as customer service, etc.

Answer 35

Operations

Question 36

performs both covered and non covered functions under the privacy rule
Example: University with a Medical Center

Answer 36

Hybrid entity

Question 37

legally separate CE affiliated by common ownership or control

Answer 37

Affiliated covered entity

Question 38

characterized by two or more CE’s who share PHI to manage and benefit their common enterprise and are recognized by the public as a single entity

Answer 38

Organized health care arrangement

Question 39

each covered function operates separately and must not disclose PHI to a function not involved with the individual.
Example: medical facility with self-insured health plan

Answer 39

Covered entity with multiple functions

Question 40

Notice of Privacy Practices
Consent
Authorization

Answer 40

Key Privacy Rule Documents

Question 41

Communication about a product or service that encourages its purchase or use

Answer 41

Marketing

Question 42

Use or disclosure of PHI for marketing requires authorization

Answer 42

General rule

Question 43

Activities initiated by the covered entity to generate money for the benefit of the covered entity

Answer 43

Fundraising