HIPAA

Question 1

HIPAA

Answer 1

Health Insurance Portability and Accountability Act of 1996 provides data privacy and security provisions for safeguarding medical information.

Question 2

HITECH

Answer 2

Health Information Technology for Economic and Clinical Health Act of 2009. The goal is to promote the adoption and meaningful use of health information technology and significantly expands the HIPAA privacy rule and security standards and adds new requirements concerning the privacy and security of PHI

Question 3

PHI

Answer 3

Protected Health Information

Question 4

ePHI

Answer 4

Electronic Personal Health Information such as personal health information stored and transmitted electronically. Examples are faxes, emails, data backup, and cloud providers, patient portals, removable media, and secure text.

All this data must be encrypted at rest and in transit.

Question 5

Business Associate

Answer 5

Anybody that supports the healthcare industry and performs functions or activities in support of a covered entity.

Question 6

Risk Assessment

Answer 6

A set of government mandated questions to help you identify your gaps in risk, to your business, and to a covered entity.

Three sections of questions
Administrative, Technical, and Physical.

Question 7

Covered Entities

Answer 7

Must comply with the applicable standards provided in the Security Rule with respect to all ePHI.

Question 8

Addressable

Answer 8

You must determine the level of risk to PHI and address it to ensure it is reasonable and appropriate security measures are applied.

Question 9

Book of Evidence

Answer 9

The customized book of policies and procedures you are required to create and explains how you handle PHI and ePHI

Question 10

Privacy Policy

Answer 10

How a covered entity and business associate handle all PHI