HIPAA
What is HIPPA - correct answer ✔It is short for Health Insurance Portability
and Accountability Act. Passed by Congress in 1996, HIPAA is a United
States federal law that protects the privacy and security of health information.
What Information is Protected? - correct answer ✔HIPAA protects ALL
personal health information of a patient, including physical and mental health
information, payment information, and demographic information. It applies to
all oral, written, and electronic forms. Collectively, the information is referred
to as protected health information, or PHI.
PHI can be used and disclosed by covered entities and business associates
as long as they remain compliant with HIPAA.
A HIPAA covered entity refers to a - correct answer ✔person, agency, or
practice that provides treatment, payment, and operations in healthcare.
Covered entities include:
Health plans (such as health insurance companies)
Healthcare clearinghousse (such as billing companies)
Healthcare providers (such as doctors, hospitals, laboratories, and
pharmacies)
Covered entities need to access, use, and disclose protected health
information (PHI) in order to perform their job duties. Therefore, they must be
compliant with HIPAA.
A business associate is a - correct answer ✔separate entity that provides
services to or on behalf of the covered entity that may involve the use and
disclosure of PHI.
A business associate agreement (BAA) must be in place between - correct
answer ✔covered entities and their business associates. This contract
, defines the processes that will be implemented and outlines the permissible
uses and disclosures of PHI by the business associate. A business associate
may use or disclose PHI only as permitted or required by the BAA or as
required by law. If the business associate has a subcontractor, then that
subcontractor must also have and adhere to a BAA with the covered entity.
The HIPAA Privacy Rule went into effect - correct answer ✔April 14, 2003. It
protects the confidentiality of patients' health data by regulating:
How PHI is used
To whom PHI is disclosed
How and where PHI is maintained
Under the HIPAA Privacy Rule, PHI regulations apply to all forms, including
oral, written, and electronic communications. - correct answer ✔The HIPAA
Privacy Rule:
Requires reasonable security measures to protect patients' health information
Establishes accountability for use and release of PHI
Gives patients rights regarding their health information
The intent of the HIPAA Privacy Rule is to protect - correct answer ✔the
privacy of patients seeking health care while simultaneously permitting
important uses of health information.
The Privacy Rule limits the - correct answer ✔the use and disclosure of PHI
and establishes patient rights.
The Privacy Rule allows covered entities to analyze - correct answer ✔their
own needs and to implement programs based on their own environment.
However, it requires that all new privacy policies and procedures are
compliant with the Privacy Rule and monitored at least annually.
What is HIPPA - correct answer ✔It is short for Health Insurance Portability
and Accountability Act. Passed by Congress in 1996, HIPAA is a United
States federal law that protects the privacy and security of health information.
What Information is Protected? - correct answer ✔HIPAA protects ALL
personal health information of a patient, including physical and mental health
information, payment information, and demographic information. It applies to
all oral, written, and electronic forms. Collectively, the information is referred
to as protected health information, or PHI.
PHI can be used and disclosed by covered entities and business associates
as long as they remain compliant with HIPAA.
A HIPAA covered entity refers to a - correct answer ✔person, agency, or
practice that provides treatment, payment, and operations in healthcare.
Covered entities include:
Health plans (such as health insurance companies)
Healthcare clearinghousse (such as billing companies)
Healthcare providers (such as doctors, hospitals, laboratories, and
pharmacies)
Covered entities need to access, use, and disclose protected health
information (PHI) in order to perform their job duties. Therefore, they must be
compliant with HIPAA.
A business associate is a - correct answer ✔separate entity that provides
services to or on behalf of the covered entity that may involve the use and
disclosure of PHI.
A business associate agreement (BAA) must be in place between - correct
answer ✔covered entities and their business associates. This contract
, defines the processes that will be implemented and outlines the permissible
uses and disclosures of PHI by the business associate. A business associate
may use or disclose PHI only as permitted or required by the BAA or as
required by law. If the business associate has a subcontractor, then that
subcontractor must also have and adhere to a BAA with the covered entity.
The HIPAA Privacy Rule went into effect - correct answer ✔April 14, 2003. It
protects the confidentiality of patients' health data by regulating:
How PHI is used
To whom PHI is disclosed
How and where PHI is maintained
Under the HIPAA Privacy Rule, PHI regulations apply to all forms, including
oral, written, and electronic communications. - correct answer ✔The HIPAA
Privacy Rule:
Requires reasonable security measures to protect patients' health information
Establishes accountability for use and release of PHI
Gives patients rights regarding their health information
The intent of the HIPAA Privacy Rule is to protect - correct answer ✔the
privacy of patients seeking health care while simultaneously permitting
important uses of health information.
The Privacy Rule limits the - correct answer ✔the use and disclosure of PHI
and establishes patient rights.
The Privacy Rule allows covered entities to analyze - correct answer ✔their
own needs and to implement programs based on their own environment.
However, it requires that all new privacy policies and procedures are
compliant with the Privacy Rule and monitored at least annually.
