Under HIPAA, any information related to patient identity, patient health status, the provision of care, or payment for services is considered __________ .
Fill in the blank with correct word.
(
Q. 2) Pharmacies and __________ equipment (DME) companies can be more flexible than providers' offices in their requirements for authorizations for the release of information.
Fill in the blank with correct word.
(
Q. 3) The three types of protections of electronic data that must be in place to be in compliance with the HIPAA Security Rule are administrative, physical, and technical __________ .
Fill in the blank with correct word.
(
Q. 4) Electronic documentation of patient care that can include multiple providers, services, and facilities is referred to as an electronic __________ .
Fill in the blank with correct word.
(
Q. 5) The person in medical practice who handles requests for medical records and serves as the primary contact person in regard to HIPAA confidentiality issues is the __________ Officer.
Fill in the blank with correct word.
(
Q. 6) The HIPAA Privacy Rule regulates the use and __________ of protected health information (PHI).
Fill in the blank with correct word.
(
Q. 7) Data that has been scrambled and/or encoded to prevent it from being readable by unauthorized users is __________ .
Fill in the blank with correct word.
(
Q. 8) Under HIPAA, health plans, providers, and clearinghouses are considered __________ .
Fill in the blank with correct word.
(
Q. 9) Civil penalties are penalties that include prison time.
Indicate whether this statement is true or false.
(
Q. 10) Compliance with the HITECH Act is to occur in three stages, and organizations can receive financial incentives for achieving compliance objectives by designated dates.
Indicate whether this statement is true or false.