HIPAA Flashcards

1
Q

What does Abyde do?

A

Technology company of HIPAA experts with HIPAA education and solutions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What does HIPAA stand for?

A

Health insurance portability and accountability act

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

When was HIPAA established?

A

1996

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is the purpose of HIPAA?

A

US Law designed to provide privacy standards to protect medical records and other health information provided by health plans, doctors, hospitals, and other health care providers

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

When were Medicare/Medicaid programs created?

A

1965

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

When was the Health Care Financing Administration created?

A

1977

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

When was the Department of Health and Human Services born?

A

1980

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Which president signed HIPAA into law?

A

Bill Clinton 1996

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the order of the HIPPA rules?

A

2003 privacy rule, 2005 security rule, 2006 breach enforcement rule, 2013 omnibus rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What percent of covered entities are HIPAA compliant according to OCR audits?

A

6%

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is the office for civil rights?

A

OCR issues guidance documents, records HIPAA complaints, collects fines and focuses on patient right of access and enforcement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What is the definition of HIPAA compliant?

A

Documented proof that there is a culture of compliance within your organization

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What is the first step in an organization’s security rule compliance efforts?

A

Risk analysis— documented

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the two phases to compliance?

A

Security rule and privacy rule

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

What goes into the privacy rule?

A

Risk mitigation, HIPAA training, policies and procedures, patient consent forms, HIPAA manual, business associate agreements, and updated risk analysis

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

How often is HIPAA training conducted?

A

Minimum once per year, quiz required

17
Q

What are the first two HIPAA penalties and fees for compliant entities?

A

Tier 1 Complaint- violation could not have been reasonably avoided min. $100 and Tier 2 Compliant- violation should have been corrected min. $1000

18
Q

What are the HIPAA penalties and fees for the non compliant tiers?

A

Tier 3 Not Compliant- made attempt to correct violation min. $10,000 and Tier 4 Not Compliant- no attempt made to correct violation min. $50,000

19
Q

What is the tier 1 penalty for criminal action?

A

Tier 1- 1 year max jail time- reasonable cause or no knowledge of violation

20
Q

What is the tier 2 penalty for criminal action?

A

Tier 2- 5 years max jail time- obtained PHI under false pretenses

21
Q

What is the tier 3 penalties for criminal action?

A

Tier 3- 10 years max jail time- obtaining PHI for personal gain or with malicious intent

22
Q

What were the the takeaways from the fine examples?

A

Have policies in place for off boarding employees and know who has access to PHI and how—have a canned response for online reviews and have policies that address social media and disclosures

23
Q

Who can receive public health information during a public health emergency?

A

A public health authority figure, individuals at risk, and disaster relief organizations

24
Q

What are telehealth and cybersecurity options are HIPAA compliant?

A

Updox, Zoom for healthcare, skype for business, google G suite hangouts meet

25
Q

What is the application of HIPAA with students?

A

1) sharing among fellow students 2) you are already liable 3) PHI in a lecture setting still protected 4) professional communications should have minimum info necessary and encryption for sharing