HIPAA first went into place in 1996, with the early Privacy and Security Rules going into place in 2003. Since then, many more facets have been added, with the latest major addition going into effect September 23, 2013. Test your knowledge on this critical employer law.
1.What exactly does the HIPAA acronym stand for?
a. Health Identification Privacy and Affordability Act
b. Health Information Portability and Affordability Act
c. Health Insurance Portability and Accountability Act
d. Health Information Privacy and Accountability Act
2.What kind of Protected Health Information (PHI) is protected by the HIPAA privacy rule?
a. Paper
b. Electronic
c. The spoken word
d. All of the above
3.Which types of employers must have a Business Associate Agreement (BAA) in place directly with their broker in order to share PHI, based on the newest HIPAA rules that went into effect 9/23/2013?
a. All employers must have a BAA in place with their broker.
b. Only self funded employers.
c. Only fully insured employers.
d. All employers with 100 or more employees on their health plan.
4.You handed a preliminary health insurance census to a prospective broker to quote options and you included a number of extra fields like social security number and basic medical diagnoses just in case those are needed. Which of the following HIPAA guidelines could you be violating (choose all possible responses)?
a. Administrative safeguards
b. De-identified health information
c. Minimum necessary standard
d. Document retention guidelines
5.The establishment of computer passwords and firewalls would fall under which type of safeguard required by the Security Rule of HIPAA?
a. Electronic
b. Physical
c. Administrative
d. Technical
6.Which of the following is NOT a requirement for computer security?
a. Computers must be password protected.
b. Computer must be secured to desk with an anti-theft device.
c. PHI can't be sent in the body of an unencrypted email; it has to be sent as a password-protected attachment.
d. Computer monitors displaying PHI must face away from the public or have a privacy screen.
For more info on HIPAA, click here for a complimentary assessment of your current practices, or here to read another article we published on the top 5 most common HIPAA mistakes. Meanwhile, the answers to the above questions are: 1-c, 2-d, 3-a, 4- b and c, 5-d, 6-b.