Brainscape's Knowledge GenomeTM


Top Flashcards (Certified)
All Flashcards

ZzZzZ > HIPAA > Flashcards

HIPAA Flashcards

1
Q

HIPAA is comprised of three rules. What are they?

A
  1. The Privacy Rule
  2. The Transaction Rule
  3. The Security Rule
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is the Privacy Rule?

A

The privacy rule of HIPAA provides regulations and safeguards regarding confidential patient information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is the Transactions Rule?

A

The rule requires that a nationally standardized format be used for all health-care transactions that are transmitted electronically, most notably all insurance claims.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the Security Rule?

A

The security rule addresses issues of physical security, such as locking filing cabinets and encrypting e-mails.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the relationship between HIPAA and California Law?

A

HIPAA is a federal law that can take precedence over state law. Specifically, when HIPAA is stricter, it supersedes state law. In contrast, when state law is stricter, it supersedes HIPAA. When state law and HIPAA are contradictory, making it impossible to comply with both, the practitioner must follow HIPAA.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is Protected Health Information (PHI)?

A

Refers to health information that identifies a patient, and that is transmitted or maintained in any form (e.g., on computer, handwritten notes, etc.).

PHI includes information about the mental health condition of a patient (e.g., diagnosis, symptoms, prognosis, progress), the provision of services (e.g., medication, treatment modality, treatment plan, frequency of treatment), and payments. Typically, chart notes kept on a psychotherapy patient are considered to be PHI.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

How do you ensure that psychotherapy notes receive special protections not generally afforded to Protected Health Information (PHI)?

A

In order for process notes to be considered “psychotherapy notes” and to be accorded special protection, HIPAA requires that these notes be “separated from the rest of an individual’s medical record.”

Most analysts interpret this to mean that psychotherapy notes must be kept physically separate from the medical record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

According to HIPAA, when can a psychologist disclose PHI without the patients consent?

A

By law, psychologists, medical doctors, and hospitals may disclose and use PHI without a patient’s consent if they are doing so for:

  1. treatment (e.g., a consultation)
  2. payment (e.g., billing an insurance company)
  3. health care operations (e.g., utilization review).

Although patient consent is technically not needed in these three disclosure situations, it is still considered the standard of practice for psychologists to obtain written permission from patients for any disclosures of confidential information.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

According to HIPAA, what is “authorization” and when is it needed?

A

Authorization refers to obtaining patient permission to disclose information on a release of information form.

According to HIPAA, a practitioner does not need to obtain authorization for disclosures, as long as any of the disclosures are for the purposes of treatment, payment, or health care operations (as these are covered under generalized consent).

However, an authorization is needed for any other type of disclosure.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

According to HIPAA, can managed care organizations and other third- party reimbursement entities require the release of treatment notes in order to provide reimbursement?

A

No

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

According to HIPAA, what are the six patient rights?

A
  1. Right of Notice
  2. Right to Request Restrictions
  3. Right to Receive Confidential Communications by Alternative Means and Alternative Locations
  4. Access to Records
  5. Right of Amendment
  6. Right of Accounting`
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Right of Notice

A

Patients have the right to be informed about the psychologist’s privacy policy and the ways in which personal health information may be used or disclosed. Patients should be provided with a written copy of the psychologists privacy policy

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Right to Request Restrictions

A

Psychologists are obligated to agree to “reasonable requests,” to restrict use and disclosure of PHI.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Right to Receive Confidential Communications by Alternative Means and at Alternative Locations

A

Patients may elect to have psychologists mail their bills to an address other than their home address or not to call them at their home phone, in order to protect patients’ confidentiality.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Access to Records

A

Patients have the right to inspect and receive a copy of personal health information (PHI) that is in the medical record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

According to HIPAA, do patients have the right to obtain or inspect a copy of their psychotherapy notes?

17
Q

Right of Amendment

A

Patients may request changes to their PHI to improve accuracy. If a psychologist determines that such a change would make the PHI less accurate, the request may be denied. All requests for amendment, as well as whether the requests were granted or denied, must be documented.

18
Q

Can PHI information ever be expunged?

A

The record may never be expunged (i.e., inaccurate information deleted and replaced with accurate information). Instead, changes to the record should be noted as amendments.

19
Q

Right of Accounting

A

Patients have the right to receive an accounting of all the disclosures of their PHI for the past six years.

20
Q

What five general practices are necessary to he HIPAA compliant?

A
  1. Written Privacy Policy
  2. Tracking Disclosures
  3. Compliance of Employees and Business Associates
  4. Protection for Psychotherapy Notes
  5. Safeguarding Access to PHI
21
Q

If you wish to maintain records electronically, what three procedures must be instituted?

A
  1. The therapist must ensure that the confidentiality of the records is safeguarded.
  2. The therapist must make sure they are tamper proof.
  3. Off-site, backup storage system is needed.

Hardcopies may be destroyed once the records are stored electronically.

22
Q

According to HIPAA, when are you able to withhold treatment records? How does this differ from California law? How does it differ when the patient is a child versus an adult?

A

According to HIPAA, treatment records can only be withheld when doing so would endanger someone’s physical safety.

According to California law, treatment records can be withheld when doing so would adversely impact the treatment, or would be detrimental to the physical or emotional well-being of the patient.

When the patient is an adult, HIPAA overrides California law. When the patient is a child, California law overrides HIPAA.

23
Q

If a patient wants another, qualified professional to review your treatment records, are you able to decline?

A

Declining this request is never a legal option.

24
Q

What does HIPAA stand for?

A

The Health Insurance Portability and Accountability Act

25
What does PHI refer to?
Health information that identifies a patient, and that is transmitted or maintained in any form (e.g., on computer, handwritten notes, etc.)

ZzZzZ (5 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2025 Bold Learning Solutions. Terms and Conditions