Deck 2: Electronic Health Records, Hipaa, and Hitech: Sharing and Protecting Patients Health Information

A) Office of E-Health Security Services.
B) Office of E-Health Standards and Services.
C) Office of E-Health Standards and Selections.
D) Office of E-Health Security and Standards.

A) family/social
B) past medical
C) present Illness
D) spiritual

A) Centers for Medical Services.
B) Center for Medicaid Services.
C) Centers for Medicare & Medicaid Services.
D) Center for Medicare Services.

A) TPH.
B) TPHC.
C) TPO.
D) TPHO.

A) American Heart Association (AHA)
B) American Association of Professional Coders (AAPC)
C) Association for Health Care Documentation Integrity (AHDI)
D) American Medical Association (AMA)

A) angina
B) muscular dystrophy
C) schizophrenia
D) lupus

A) HITECH
B) FERA
C) HIPAA
D) Stark

A) Office of the Internal General.
B) Office of the Inspector General.
C) Office of the Informed General.
D) Office of the Investigative General.

A) a statement of the individual's right to revoke the authorization in writing.
B) a statement about whether the CE is able to base prescriptions on the authorization.
C) a statement about whether the CE is able to base payment on the authorization.
D) a statement about whether the CE is able to base treatment on the authorization.

A) HITECH Act
B) HIPAA Electronic Transaction and Code Sets Standards
C) Security Rule
D) CMS

A) psychotherapy notes.
B) legal size of practices.
C) designated record set.
D) rights of inmates.

A) OIG
B) HIPAA
C) DOJ
D) FCA

A) three
B) four
C) two
D) one

A) Identifiers
B) Minimum data sets
C) Code sets
D) NPIs

A) minimum data set.
B) covered.
C) research data.
D) de-identified.

A) diagnosis.
B) next of kin.
C) allergies.
D) signature of provider who saw the patient.

A) meaningful use
B) audit
C) electronic data interchange
D) transaction

A) code set
B) informed consent
C) encryption
D) minimum necessary standard

A) Sarbanes-Oxley
B) antikickback statute
C) FCA
D) Stark rules

A) FCA
B) HIPAA
C) OIG
D) HITECH

A) signature.
B) date.
C) verification.
D) time.

A) HITECH
B) FCA
C) FERA
D) ACA

A) HIPAA
B) TCS
C) HITECH
D) HIE

A) The National Provider Identifier (NPI)
B) The Health Care Fraud and Abuse Control Program
C) The Centers for Medicare and Medicaid Services (CMS)
D) The HIPAA Privacy Rule

A) Electronic Transaction Rule.
B) Privacy Rule.
C) Code Sets Rule.
D) Security Rule.

A) Office of Civil Reporting.
B) Office for Civil Rights.
C) Office of Civilians Rights.
D) Office for Common Rights.

A) cost.
B) assessment.
C) risks.
D) recommendations.

A) Sarbanes-Oxley
B) Stark rules
C) FERA
D) FCA

A) respondeat superior.
B) none of these answers are correct.
C) subpoena duces tecum.
D) subpoena.

A) phone call between a provider and family of the patient.
B) meeting between a clinician and a patient.
C) face-to-face meeting between an administrator and a patient.
D) face-to-face meeting between a provider and a patient.

A) Abuse
B) Kick backs
C) Fraud
D) Self-referrals

A) both a number and a name.
B) either a number or a name.
C) name.
D) number.

A) Objective
B) Plan
C) Subjective
D) Assessment

A) take reasonable safeguards to protect PHI.
B) complete the general business management functions.
C) release partial patient record to the hospital that requests it.
D) provide minimum care.

A) legal action
B) court battles
C) voluntary compliance
D) by jail terms

A) minimum necessary standard
B) data record set restrictions
C) compliance plans policy
D) no messages should be left

A) a limited authorization is required.
B) informed authorization is required.
C) a specific authorization is required.
D) no authorization is required from the patient.

A) change
B) remove
C) access
D) document

A) ACA
B) OIG
C) RCA
D) CMS

A) adjudication
B) designated record set
C) medical standards of care
D) informed consent

A) examination and management.
B) evaluation and management.
C) examination and medical history.
D) evaluation and medical history.

A) HITECH
B) ARRA
C) HIPAA
D) HIE

A) only files Medicare claims electronically
B) pays a clearinghouse to submit electronic claims on their behalf
C) doesn't send any claims electronically or employ any other firm to do it
D) employs less than 10 full-time employees

A) nine
B) five
C) seven
D) eleven

A) a brief description of what happened.
B) a description of the damages awarded for ill consequences from the breach.
C) a description of the types of unsecured PHI involved.
D) a description of what the CE is doing to investigate the breach.

A) breach report.
B) breach alert.
C) breach notification.
D) breach observation.

A) expiration date.
B) signature of the nurse who treated the patient.
C) be in plain language.
D) describe the information that is to be used or disclosed.

A) patient support.
B) electronic communication.
C) clinical decision support.
D) reduced costs.

A) when the patient receives the bill
B) if the patient is referred elsewhere
C) when the patient is scheduled for surgery
D) at the first contact or encounter

A) supplies
B) procedures
C) diagnoses
D) facilities

A) patient's signed authorization
B) patient's verbal approval
C) informed consent
D) provider's written approval

A) spill
B) breach
C) release
D) leak

A) Security Rule
B) Code Sets Rule
C) Electronic Transaction Rule
D) Privacy Rule

A) Critical data recovery
B) Backing up
C) Antivirus software programs
D) Encrypting

A) current condition of patient.
B) physical examination.
C) reason for discharge.
D) final diagnosis.

A) HITECH Act.
B) HIPAA Electronic Health Care Transactions and Code Sets (TCS).
C) National Provider Identifier (NPI).
D) Employer Identification Number (EIN).

A) tobacco cessation
B) multiple sclerosis
C) diabetes
D) alcohol abuse

A) health plans
B) electronic data interchanges
C) clearinghouses
D) business associates

A) Encryption
B) Meaningful use
C) Fraud
D) Code set

A) all of these are correct
B) research
C) statutory reports
D) court order

A) computer networks
B) storage disks
C) the Internet
D) all of these answers are correct.

A) employers in workers' compensation cases.
B) state workers' compensation administration board.
C) insurance company that handles the state's claims.
D) the employee's direct supervisor.

A) detector.
B) relator.
C) provider.
D) respondeat superior.

A) medical records.
B) PHI.
C) documentation.
D) unsecured PHI.

A) The HITECH Act
B) The HIPAA Security Rule
C) The HIPAA Electronic Health Care Transactions and Code Sets (TCS)
D) The HIPAA Privacy Rule

A) documentation
B) operating rules
C) code set
D) encounter

A) malpractice.
B) fraud.
C) abuse.
D) none of these answers are correct.

A) HIV status
B) otitis media
C) Alzheimer's disease
D) pharyngitis

A) HIPAA Security Rule
B) HIPAA
C) HIPAA Privacy Rule
D) HIPAA Electronic Transactions and Code Sets

A) covered emergency.
B) compliance entity.
C) covered entity.
D) covered exchange.

A) providers
B) health plans
C) employers
D) all of these are included

A) HIPAA firm.
B) provider.
C) business associate.
D) HIPAA vendor.

A) stark
B) relator
C) whistle-blower
D) qui tam

A) breach.
B) violation.
C) notification.
D) fraud case.

A) scheduling.
B) continuity of care.
C) education.
D) communication among providers.

A) business associate
B) electronic data interchange
C) health plan
D) clearinghouse

A) OIG
B) OESS
C) IRS
D) CMS

A) 4
B) 2
C) 5
D) 3

A) croup
B) hives
C) obesity
D) AIDS