Brainscape's Knowledge GenomeTM

Browse over 1 million classes created by top students, professors, publishers, and experts.


See full index

HIPAA Assessment - PFS > Privacy > Flashcards

Privacy Flashcards

1
Q

§164.530(c)(2)(i) PRIVACY Personnel:

How is access to PII, PHI or ePHI safeguarded from unauthorized access in your area.

A

1) Keys
2) Card swipes
3) Other
4) Permissions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

§164.530(c)(2)(i) PRIVACY Personnel:

How is your staff trained on privacy and security?

A

1) Are there any checklists for in-department on-boarding.

2) Are there any policies or procedures documented.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Terminations:

Please describe your termination process for both voluntary (resignation) or involuntary termination’s.

A

1) Are there any special processes such as the requirement to take office keys or building keys.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Terminations:

How are people terminated from your ________ department/special applications.

A

Please describe the process.

1) Who notifies IT?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Collection of Fees / PCI. DSS:

Are you required to collect any fees for services such as: medical records fees, parking fees, etc.

A

Please describe the process.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Collection of Fees / PCI DSS:

What form of payment do you accept?

A

How are the credit cards processed?

How are checks processed?

How is cash processed?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Collection of Fees / PCI DSS:

If they use a card swipe terminal is that device connected to the network, phone line or is it a stand-alone (cell service) device.

A

When was the last PCI audit performed on the terminal.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

General:

Is information ever taken via the phone and or written down?

A

What happens to that paperwork once you’re completed with it?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

§164.530(c)(2)(i) PRIVACY Personnel:

Please describe your staff, their roles and responsibilities as well as any third parties you may work with.

A

(a) Inquire of management as to whether administrative, technical,
and physical safeguards are in place to protect all PHI.

(b) Obtain and review procedures and policies and evaluate the
content to determine if administrative, technical, and physical
safeguards are in place to protect all PHI (e.g., electronic PHI,
written PHI, rules about speaking about PHI).

(d) Observe and verify whether the safeguards in place are
appropriate.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

General:

Is information ever taken via the phone and or written down?

A

What happens to that paperwork once you’re completed with it?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

General:

Do you utilize a departmental drive?

A

What information is stored on your departmental drive?

How would someone gain access to that share?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Contingency planning:

Do you have a documented emergency disaster recovery plan.

A

Where is the plan kept.

How was the plan updated.

When was the last time the plan was updated.

How is the plan tested.

When was the last time you tested the plan.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Medical records:

Where is the legal medical record kept? system / paper / other locations?

A

Please describe the process for a record that has been placed on the legal hold.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Medical records:

Are any medical records left out during the night?

A

Please describe the process for safeguarding the medical record.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Medical records:

Do you send ePHI to other facilities?

A

How do you send the ePHI?

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Medical records:

How are medical records check in and out of the department?

A

Please explain the process.

17
Q

Medical records:

Do you have a checklist for QA of the record that staff utilizes?

A

Please explain the QA process.

18
Q

Medical records:

How long do you keep medical records for, both computerized and a paper records.

A

Please explain the archival process.

19
Q

Medical records:

Please describe the process for access to medical record by third parties.

A

Are any records sent electronically?

Are any records sent via UPS? How?

Do you send any records to a PO Box?

20
Q

Medical records:

How are consents verified?

A

Do you have a documented process?

21
Q

Medical records:

If a fax is misdirected what process do you follow?

Is it documented?

Do you have a formal policy?

A

Please describe the process.

Do you complete a risk form and forward it to risk management?

22
Q

Training:

How do you provide in-service and/or security reminders to your staff?

A

Please describe your process.

  • Weekly/monthly etc staff meetings.
  • Email correspondence.
23
Q

Food Service:

Please describe the process for intake of a patient.

A

What software do they use?

How is access controlled to that software.

24
Q

Food Service:

How are the meal tickets produced?

What information is printed on the meal ticket?

A

We’re looking for any PHI or double identifier that may be printed on the meal ticket.

25
Q

Physical Security:

Are you in an open area or in a private office?

What’s the area your staff sits in?

A

Please describe all areas within your department.

26
Q

Physical Security:

It’s in a private office, do you lock your office when you’re not inside (this includes trips to the restroom).

A

Describe how the area is secured.

27
Q

Physical Security:

Do you use any third-party’s within the area such as night cleaning crew etc.?

A

Describe how is your area police/tidied up at end of day.

28
Q

Application usage:

What applications does your department utilize?

A

How is access granted to those applications?

Do they all go through a central location or are some created locally?

How was the applications installed if it’s not on the system?

29
Q

Food Service:

How are the meal tickets reconciled once the meal has concluded?

A

Are all the meal tickets returned?

How are they destroyed?

What if a meal ticket is not returned?

30
Q

Physical Security:

Are you in an open area or in a private office?

What’s the area your staff sits in?

A

Please describe all areas within your department.

31
Q

Physical Security:

It’s in a private office, do you lock your office when you’re not inside (this includes trips to the restroom).

A

Describe how the area is secured.

32
Q

Physical Security:

Do you use any third-party’s within the area such as night cleaning crew etc.?

A

Describe how is your area police/tidied up at end of day.

33
Q

Application usage:

What applications does your department utilize?

A

How is access granted to those applications?

Do they all go through a central location or are some created locally?

How was the applications installed if it’s not on the system?

34
Q

Physical Security:

Are there any cameras within your area?

A

How are those cameras how do those cameras work doesn’t work 24 x 7 recording if there’s a miss you how can you tell.

35
Q

Physical Security:

Are there any cameras within your area?

A

How are those cameras how do those cameras work doesn’t work 24 x 7 recording if there’s a miss you how can you tell.

HIPAA Assessment - PFS (1 decks)

Brainscape helps you reach your goals faster, through stronger study habits.
© 2024 Bold Learning Solutions. Terms and Conditions