HIPPA QUESTIONS & ANSWERS
What does HIPAA stand for? - Answers - Health Insurance Portability and
Accountability Act
When was HIPAA created? - Answers - 1996
What is HIPAA? - Answers - a federal law protecting health information
What does HIPAA govern? - Answers - permissible uses and disclosures of health and
information that identifies the subject of the information
What does HIPAA cover? - Answers - information created, received or maintained by
or on behalf of health care providers and health plans
What does HIPAA include? - Answers - Privacy
Security
Breach Notification Rule
When was the HITECH act created? - Answers - 2009
What was covered in the HITECH act? - Answers - promote widespread adoption and
interoperability of health information technology, four categories of violations, and four
tiers of penalty
What is the Breach Notification Rule also known as? - Answers - Omnibus Rule
When was the Omnibus Rule created? - Answers - 2013
What does the Omnibus Rule hold business associates and covered entities to? -
Answers - accountable
What does the Omnibus rule prevent? - Answers - unauthorized sale of PHI
What does the Omnibus rule restrict? - Answers - the use and disclosure of PHI for
marketing and fundraising
What does the Omnibus rule provide? - Answers - individuals with the authority to
obtain electronic copies of their health records and decline to disclose information
related to a treatment paid for out-of-pocket
What does the Omnibus rule mandate? - Answers - covered entities update and
redistribute their notices of privacy practices
, What does the Omnibus rule change? - Answers - requirements related to the
disclosure of health information with the intent to facilitate research and the disclosure
of childhood immunization records
What does the Omnibus rule allow? - Answers - family members to access the health
records of their decendents
What does the Omnibus rule enforce? - Answers - penalties for noncompliance that
arise from willful neglect
What does the Omnibus rule prohibit? - Answers - health plans from using or
disclosing genetic information for underwriting
What does the Omnibus rule amend? - Answers - civil monetary penalties
What does Privacy apply to? - Answers - providers, health plans, and health care
clearing houses and their contractors
What is a covered entity? - Answers - who is covered under HIPAA
What does privacy give to patients? - Answers - rights over their health information
What does privacy also include? - Answers - rights to examine and obtain a copy of
health records and request corrections
What limits and conditions does privacy set? - Answers - the uses and disclosures that
may be made of protected health information without patient authorization
What does PHI stand for? - Answers - Protected health information
What is PHI? - Answers - any information that can be linked to a specific individual
What are some examples of PHI? - Answers - patient name, addresses, email, SSN,
biometric identifiers, etc.
What does PHI include? - Answers - Use
Disclosure
Authorization
What is PHI used for? - Answers - sharing, employment, application, utilization,
examination, or analysis of PHI within the practice
What is disclosed within PHI? - Answers - release, transfer, giving access to or
divulging PHI in any other manner to anyone outside of the practice
What does HIPAA stand for? - Answers - Health Insurance Portability and
Accountability Act
When was HIPAA created? - Answers - 1996
What is HIPAA? - Answers - a federal law protecting health information
What does HIPAA govern? - Answers - permissible uses and disclosures of health and
information that identifies the subject of the information
What does HIPAA cover? - Answers - information created, received or maintained by
or on behalf of health care providers and health plans
What does HIPAA include? - Answers - Privacy
Security
Breach Notification Rule
When was the HITECH act created? - Answers - 2009
What was covered in the HITECH act? - Answers - promote widespread adoption and
interoperability of health information technology, four categories of violations, and four
tiers of penalty
What is the Breach Notification Rule also known as? - Answers - Omnibus Rule
When was the Omnibus Rule created? - Answers - 2013
What does the Omnibus Rule hold business associates and covered entities to? -
Answers - accountable
What does the Omnibus rule prevent? - Answers - unauthorized sale of PHI
What does the Omnibus rule restrict? - Answers - the use and disclosure of PHI for
marketing and fundraising
What does the Omnibus rule provide? - Answers - individuals with the authority to
obtain electronic copies of their health records and decline to disclose information
related to a treatment paid for out-of-pocket
What does the Omnibus rule mandate? - Answers - covered entities update and
redistribute their notices of privacy practices
, What does the Omnibus rule change? - Answers - requirements related to the
disclosure of health information with the intent to facilitate research and the disclosure
of childhood immunization records
What does the Omnibus rule allow? - Answers - family members to access the health
records of their decendents
What does the Omnibus rule enforce? - Answers - penalties for noncompliance that
arise from willful neglect
What does the Omnibus rule prohibit? - Answers - health plans from using or
disclosing genetic information for underwriting
What does the Omnibus rule amend? - Answers - civil monetary penalties
What does Privacy apply to? - Answers - providers, health plans, and health care
clearing houses and their contractors
What is a covered entity? - Answers - who is covered under HIPAA
What does privacy give to patients? - Answers - rights over their health information
What does privacy also include? - Answers - rights to examine and obtain a copy of
health records and request corrections
What limits and conditions does privacy set? - Answers - the uses and disclosures that
may be made of protected health information without patient authorization
What does PHI stand for? - Answers - Protected health information
What is PHI? - Answers - any information that can be linked to a specific individual
What are some examples of PHI? - Answers - patient name, addresses, email, SSN,
biometric identifiers, etc.
What does PHI include? - Answers - Use
Disclosure
Authorization
What is PHI used for? - Answers - sharing, employment, application, utilization,
examination, or analysis of PHI within the practice
What is disclosed within PHI? - Answers - release, transfer, giving access to or
divulging PHI in any other manner to anyone outside of the practice
