Question

Please help to answer these questions

5. What’s your responsibility in protecting PHI?

a. To know and follow our organization’s HIPAA security and privacy policies and procedures for safeguarding PHI.

b. Limited, the person who gave me the PHI is responsible for its protection.

c. To know what it is and report violations as needed.

d. None, I don’t ever work with PHI.

6. True or False: You are only liable for securing physical or electronic forms of PHI.

a. True—having conversations about PHI is just part of our business and requires no security controls.

b. False—reasonable safeguards need to be taken to secure all PHI, regardless of its form.

7. To what extent can you access, use or disclose PHI?

a. To the minimum degree necessary required for treatment, payment, and health care operations.

b. To the minimum degree necessary to ensure a profit for the organization.

c. To the extent necessary to fulfill authorizations allowed by the patient.

d. Generally, if you can access PHI, you can use it.

8. You just learned from Facebook that your friend had an accident and they may be in the hospital. You’re concerned about them and want to know if they are OK. What can you do (select all that apply)?

a. Contact a mutual friend to find out what they might know.

b. Call the Operators to inquire of their presence.

c. Contact Health Information Management (HIM) to get a copy of information.

d. Look them up in the system to see what happened.

9. You receive a patient complaint that their privacy has been violated. What should you do?

a. Try to resolve the situation.

b. Direct the complaint to the appropriate person in the organization (the Privacy Officer).

c. Determine if it is a valid complaint and then report it as necessary.

d. Nothing—complaints are a natural part of business operations.

10.A coworker asks you to provide him with PHI for one of his employees. He isn’t authorized to access the information himself, but assures you he has no malicious intent. Should you do this?

a. Yes, because he is a coworker, he has a business need.

b. Yes, if he has no malicious intent, there’s no harm in doing a favor.

c. No, you can’t be sure he won’t use this information illegally.

d. No, providing this information—regardless of intent—is against the law and could result in massive legal repercussions.

Answer 1

5.Knowing the organisation policies in regards to HIPAA usage but at the same time it is very essential to report a violation too.

It is not limited to the person who provides it but to the concerned professionals who have the access to use it

Personal Health Record are the most confidential data to be maintained by the organization and it is the utmost responsibility of a healthcare professionals to secure and protect it from any misuse.If suspected for any misuse or at risk for violations it is an important thing to report the concerned authorities to prevent any breach of confidentiality .It shoykd be reported as per protocol not as oer need.

Ans:To know and follow our organization's HIPAA security and privacy policies and procedures and safeguarding PHI

6.Any conversation about the healthcare records should be kept confidential though used for official purposes as per the standards of law..It is a must to protect all records reasonably in any forms

Ans:False-reasonable safeguards need to be taken to secure all PHI,regardless of it's form

7.The covered entity generally makes use of PHI as per the minimum requirement. It depends on the consent given by patients for treatment, payment and health care operation

It does not divides on the profits of organization

Patient authorization is needed only to disclose certain specific information otherwise the standard is followed

Ans:To the minimum degree necessary for treatment, payment and healthcare operations

8.It is better to collect information from a mutual friend if they are aware.The operators can be contacted to know their presence and plan for a visit.

Collection of information from HIM professionals is an act of intruding in others privacy

Looking up in system without authorization or access is violation

Abs:Contact mutual friend to find out what they know

  Call the operators to inquire of their presence