week 4 hippa

Question 1

what does a cover entity include

Answer 1

health plan
health care clearinghouse
health care provider who transmits any health information in electronic form

Question 2

what patients rights

Answer 2

Right to receive a Privacy Notice
Right to access or inspect record & obtain a copy of their record
Right to request amendment/correction
Right to an accounting of disclosures
Right to request restrictions
Right to file a complaint

Question 3

can you give anyone who asks for the individual by name their room number

Answer 3

yes unless they are a no information patient

Question 4

what should you type if you are sending an email outside of NMHS

Answer 4

ZIXIT

Question 5

what are the penalities of HIPPA

Answer 5

expelled from participation in the clinical experience at Nebraska Methodist Health System; and
subject to disciplinary action by your school.

Question 6

1. Under the HIPAA Privacy Rules, a health care provider is never permitted to share information about a patient with that patient’s family unless the patient specifically consents, true or false?

a) True
b) False

Answer 6

false

Question 7

2. You share information about a patients whom you cared for with other students during a class discussion. Any problem??
   a) No, you cannot share any information about patients whom you care for with other students.
   b) Yes, you can share any information about patients whom you cared for with other students whether in a class or otherwise – its all part of the educational process.
   c) Yes, you may share information about patients whom you cared for with other students during a class discussion, but the information must be limited to the minimum necessary

Answer 7

C

Question 8

3. All of the following are patient rights under HIPAA except:

a) The right to receive a Privacy Notice;
b) The right to receive an accounting of disclosures upon request;
c) The right to file a complaint;
d) The right to access their medical record;
e) The right to request restrictions on the use of their information;
e) The right to request an amendment of their record;
f) All of the above are patient rights under HIPAA

Answer 8

F

Question 9

4. The HIPAA Privacy Notice includes information about:

   a) How medical information is used and disclosed by an 		    organization b) How the patient may access and obtain a copy of their medical records c) Terms and conditions of treatment d) How to file a complaint, and contact information for filing a complaint e) (a) (b) and (c) f) All of the above

Answer 9

E

Question 10

Violations of HIPAA can result in:

a) Criminal penalties
b) Civil penalties
c) Disciplinary action
d) All of the above

Answer 10

D

Question 11

A doctor asks you to text him information about a patient when she’s back from her MRI. What do you do in this situation?

a) Text the information – you don’t want to anger the doctor.
b) Email the information to the doctor’s gmail account – that’s more secure.
c) Ask the doctor for another way to contact him since texting patient information is now allowed.

Answer 11

C

Question 12

7. Under HIPAA, Patients have the right:

a) to approve all uses of their “protected health information.”
b) to approve most uses of their “protected health information” other than for treatment, payment, or health care operations.
c) Patients do not have the right to control the use of their “protected health information” under HIPAA.

Answer 12

B

Question 13

8. You regularly access and use patient information that is maintained on the MHS computer system. In order to log on to your computer, you need to enter your password. So that you don’t forget your password, you use your first initial and last name. You have also written your password on a piece of paper and taped it to the front of your computer and made sure that your co-workers know what it is so they can access your computer if necessary. Any problem??
   a) No, you should always use a simple, memorable password so you have ready access to the information you need to do your job.
   b) Yes, you should never post your password on your computer - instead, make sure your co-workers know it in case you forget.
   c) Yes, you should never share your password with your coworkers - just make sure it’s simple enough that you won’t forget it.
   d) Yes, according to the password rules, your first initial and last name is NOT a strong password. Also, you may never post your password or share it with coworkers.

Answer 13

D

Question 14

You’ve been working with a patient who has a rare disorder and you are worried they won’t make it. You go home and put an entry on your Facebook page about your difficult day and how your heart is breaking for this patient. You don’t use the patient’s name but you do mention the diagnosis and that you were working at Methodist. Is this allowed?

a) Yes – be removing the patient’s name you protected his/her privacy.
b) No – you provided enough information that the patient could potentially be identified.

Answer 14

B

Question 15

10. The cutest Peds patient is on your floor and he’s been entertaining all the staff with his antics. You use your phone to take a picture of him with a couple of the staff. Then you post it on Instagram saying, “I have the best job!” Is this allowed?

a) Yes – there was no patient name or diagnosis information so the posting was harmless.
b) No – you violated explicit Methodist policy to never take pictures of patients. And a patient’s face can absolutely identify them to the public, name attached or not.

Answer 15

B