HIPAA Privacy Exam Questions and Answers 100% pass

HIPAA Privacy Exam Questions and Answers 100% pass What is the HIPAA PRIVACY RULE - Answer- Sets the minimum standards for your disclosure of PHI to 3rd parties. Such as 1. Under what circumstances you can disclose PHI 2. What kind of consent you need to disclose PHI and from whom the consent is needed from 3. When no consent is neccessary to disclose PHI 4. What is appropriate info of PHI you can disclose in certain contexts. What is HIPAA PRIVACY RULE in regards to patient's - Answer- Increases patients rights to their PHI, 1. Recieve notice from you describing how and when you will disclose the patients info 2. Access their health records and info with certain limitations 3. Ability to amend their records Does HIPAA PRIVACY RULE override state law? - Answer- No, it does not override state law that gives greater privacy protection or gives clients greater access rights than HIPAA PRIVACY RULE. Thus if state law is higher and more protective and gives more access to clients, then we must abide by state law. How does a therapist trigger HIPAA PRIVACY RULE? - Answer- Electronically transmits PHI in connection with insurance claims or other third party reimbursment such as square or paypal or other credit card machine companies, as well as to a business associate in which data is stored online or an accountant looking at the data of people's names and money. What is an example of not triggering HIPAA PRIVACY RULE - Answer- Any electronic submission of data that is not in connection with claims, info storing, business associates, will not trigger HIPAA PRIVACY RULE. In emailing a collegue about a case of depression that you know they have specilized in will not trigger HIPAA, or emailing records to another therapist for a consultation will not trigger HIPAA. Does HIPAA get triggered if someone you are associated with submits PHI of your client like a billing service? - Answer- Yes, because it is your clients PHI and they are working in association with you. Compliance is required. Triggering HIPAA PRIVACY RULE does what to the rest of your practices patient information that does not do anything online - Answer- With one trigger of PRIVACY RULE, the PRIVACY RULE applies to all your practice and all people you see, not just the information in electronic form and not just the professional services that triggered the rule. You may be a cash based, paper based business, but once you have a client that does transaction electronically, then all the info in the practice becomes under HIPAA PRIVACY RULE. How does TRIGGERING THE PRIVACY RULE affect different aspects of your business? - Answer- You may have triggered the PRIVACY RULE by tranmsitting PHI to insurance claims related to the portion of your practice doing therapy. Once, the RULE is triggered, it will apply to every aspect of your business and practice, for example your involvment with disability evaluations even though the evaluations are not online and they are not part of therapy, but they are done by you and your business entity as a person. So they are under the RULE now. All must be compliant to HIPAA PRIVACY RULE requirements, because HIPAA PRIVACY RULE covers you as an entire entity not just part of what you do as an entity. What if you do not do anything electronically but the insurance claims does or the credit card does - Answer- You are still under HIPAA PRIVACY RULE becuase the third party is online and electronically using PHI and you are now under the umbrella because it is your PHI that is online. Is sending a paper fax considered an electronic transmission of data? - Answer- No, but a computer generated fax machine is considered because it is electronic form and faxed directly from a computer. What is electronic transmission - Answer- - sending email to insurance company - billing service that is wireless like square or paypal - storing PHI on cloud based server, - storing PHI on flash drives - websites that patients fill out info on