SOP's 06.xx.xx HIPAA

Question 1

When was HIPAA enacted?

Answer 1

1996

Question 2

What information regarding incidents is allowed to be shared without violating HIPAA?

Answer 2

Response information including dispatch time, units dispatched, and receiving facility transport location remain as public record

Question 3

Who is the FRD privacy officer in accordance with the administrative requirements of HIPAA?

Answer 3

EMS compliance officer. EMS regulatory officer is the alternate

Question 4

How often does refresher HIPAA training happen?

Answer 4

Annually and within 90 days of material change to policies

Question 5

Access to protected health information (PHI) is limited to whom?

Answer 5

Direct patient care. Billing. Training quality management purposes

Question 6

Improper or unintentional disclosure of PHI. Requires correct of action plan but no formal discipline

Answer 6

Level one HIPAA breach?

Question 7

Unauthorized use/misuse of PHI unrelated to personal gain.

Answer 7

level 2 HIPAA breach

Question 8

Willful or intentional disclosure of PHI

Answer 8

level III HIPAA breach

Question 9

A copy of the Hipaa report breach will be in an individual’s personnel file for how many years?

Answer 9

Minimum 6

Question 10

When can FRD disclose PHI to law-enforcement/fire investigators?

Answer 10

Wounds from Guns and knives, explosives.
Treatment to child/adult abuse, neglect, domestic violence.
Court orders.
Critical Incident stress management.
For investigations of fraud and abuse within the health care industry. Deceased patient

Question 11

What disclosures of PHI are not permitted to law-enforcement?

Answer 11

PHI from deemed consent following communicable disease risk exposure’s. Must use appropriate public health authorities