HIPAA Flashcards
HIPAA rules were invented to…
- …primarily make it easier to transfer insurances, to improve competition in the health sector.
- …balance between improving the flow of information while protecting the privacy of patients.
HIPAA Enshrines Several Patient Rights such as…
- …Request access to health info.
- …Request to amend their health info.
- …Request restrictions to information sharing
- …Request accountability of disclosures.
- …Transfer their information to other providers.
- …Ensure that providers have taken electronic security measures to stop disclosures.
HIPAA Rules Require Us To…
- …treat all things we learn about patients as confidential
-We can’t tell anyone else, even the patient outside of bona fide contact.
-Provide more control to patients over their personal health information
-Investigated and punished by DHHS - Office of Civil Rights.
Punish those who misuse patient information by imposing criminal & civil penalties
What is the penalty for a HIPAA Violation
10 years jail time, 1.5 million dollar fine, per disclosure.
In HIPAA Laws mean:
- You can’t talk about patients/athletes outside of the classroom with anyone.
-Student Trainers should only access the medical information that is needed for their job/clinical laboratory experience. - We need athlete’s parents/guardians to give permission before we can give information to others on their behalf.
- Keep medical records in a secure place-both paper & electronic
When can you talk about patients?
- Continuity of Care
- Operational Needs
- Training
- Billing and Business Operations
you MUST make sure that you cannot reasonably be overheard and that your conversation is in a private place. If you do not take due care to make sure you are not overheard and the information is released you are guilty of a breach
What is considered Continuity of Care?
- Hand offs to EMS
- Hand offs to other trainers or coaches
What is considered Operational Needs?
- Reports to Coaches
- Deployment of trainers
- Reports to Administrators
What is considered Training - QA/QI
- Developing New Protocols
- Classroom discussion to learn about treatments
- Review of treatments that were done for an athletes
What is considered Business and Billing Operations?
- Insurance Reports to Health Secretary
- Reports to the athlete’s health insurance (Leave this to Administration)
What is PHI?
Protected Health Information is any identifying information, including diagnosis, that a reasonable person would be able to use to identify a person beyond gender and state.
Thus, you should only be able to figure out that it was a “female in Iowa” or a “male in Colorado.”
What is the goal of Quality Assurance?
QA
Focus: Finding and Fixing Errors
Partners: Training Staff
Activities: Reviewing Charts
Outcomes: Improve Care
What is the goal of Quality Improvement?
Focus: Preventing Errors
Partners: Administration
Activities: Reviewing Protocols
Outcomes: Improve Care
What are the rules for HIPAA regarding electronics?
> You should have a unique password-don’t share with others
> Do not access information on yourself, your family, your friends, staff, or any other person.
> You have a duty to report any breach of confidentiality to your supervising adult.
-Remember most computer systems can track all access to records.
-Inappropriate access is punishable by federal and state law.
Who are the supervising adults for HIPAA purposes? When may you use others instead of Navarro?
Superintendent Stout
Principal Hill
Vice-Principal Sanchez
Vice-Principal Crosson
Nurse Keenan
Coach Logue
Coach Navarro
Supervisors at the District Office
Use Navarro as a first contact point. Use others if he is unable to be reached for 96 hours.
