Question

These are essay questions.

1. What information must a notice of privacy policy contain?

2. Be able to identify situations in which each of the following PHI disclosure rules apply: 1. No Authorization Required, 2. No Authorization Required, but Must Give Opportunity to Object, or 3. Authorization Required.

3. What are the categories of covered entities under HIPAA?

4. Describe one of the federal laws that were in place prior to HIPAA that protected health information. Describe the limitations of that law.

5. How far should an individual's right to medical privacy extend?

6. Describe the differences between the designated record set and the legal health record.

7. List the five HIPAA-identified individual rights. For each, explain whether a covered entity must comply with the request.

Answer 1

1, HIPAA privacy rules provided individual rights to informed privacy practices of each health plans to their health care providers..So respect to their personal information is each individual rights..
   -covered entity maintains and provides information about customer benefits
   -Individual notice covered by the plan with in one year..
-Provide revised notice and notify the covered plan at least one in every three years..
   -this responsbility covered by direct Treatement providers they must notice the individual not later with in the date..It is not acceptable for emergency treatement situation..there must be acknowledgement must be obtainted why it was happened..
   -First delivery must be send through internet.email but it must be electronically notice in response..Prividers must create a good faith effort receiving response to the notice..It was exceptional for emergency treatment situation..
-Establish the latest notice in to providers office or family..
2, PHI-no authorization required:
   For some specific purpose PHI providers use and disclose without patient's authorization.To individual for treatment,payment and health care operations it includes health care management,reimbursement or health care and for auditing,legal services and general administrative activities etc..
   Disclosures with an oppurtunity sharing PHI with care takers..Disclosure for reasonable safeguards like court orders,public activities like preventing and controlling diseases,domestic violence ,law enforcement purposes,organ donation,research,seroius threats to individuals,Governement fuctions and worker's compensation..
The notice will describe about patient rights to access their health record,amendment,disclosure restrictions,confidential comuunication etc..Privacy notice should be placed where the patient can read..
3, Covered entity under HIPAA rules required to protect the privacy and security of health information and respect the individual rights in health information..It covers the health plans,health care clearing house,health care providers and health care..This and all covered by billing and insurance coverage..
   Researchers covered entity by health care providers must electronically transmit the health information with privacy rules under HIPAA ..Covered entity is covered by providers include doctors,dentist,clinics,psychologist,chiropractors,nursing homes and pharmacies..They have to transmit the information through electric form transaction which HHS has adoptes a standard..Health plans including insurance companies,HMOs,medicare and mediaid,Health care clearing houses process of nonstandard health information by electric format or data contents..
4, Federal laws:
   The federal HIPAA requires providers to make sure of patient's records and health information and required by federal department of Health and Human services to implement that..Health insurance claims under HIPAA covered entities..Federal law effect the privacy rule,security rule and breach notification rule..HIPAA privacy rules includes consumer rights about health information a consumers can receive PHI..The rule apllies in oral,electric or written..HIPAA security rule protects PHI electric form and entities to covered by HIPAA...HIPAA breach notification rules requires HIPAA covered entities and business associates to look after the notice to affected consumers,HHs in the event of a breach of unsecures PHI..