Test your HIPAA Knowledge! If a client/patient requests amending his/her medical records at your office you: A. Laugh out loud B. Laugh to your self C. Go back into the office and laugh with the rest of the office D. Explain your office procedure to do that How does your office let the patients in your office waiting room know when it is their time to see the doctor? A. Send them a postcard B. The nurse yells their name across the waiting room C. They take a number when signing in and we use that number D. Call their cell phone The federal penalties for HIPAA include: A. Up to $50,000 and/or one year in prison for disclosing PHI B. Up to $100,000 and/or 5 years in prison for obtaining PHI under false pretenses C. Up to $250,000 and/or ten years in prison for using PHI for personal gain D. All of the above are correct E. None of the above are correct EDI is short for: A. Educational Department Information B. Easy Delivery Included C. Electronic Data Interchange D. None of the above The Business Associate Agreement is required when someone your office does business with has access to client medical information. That agreement: A. Has no specific language that is required although there are some recommendations B. Does not require any specific language or points C. Requires the use of specific elements D. Protects the Business Associate from the improper use of Protected Health Information. HIPAA is: A. A static, unchanging set of regulations to cover PHI B. Enforced by the Department of Labor C. The Law, with penalties for non-compliance imposed starting on April 14, 2003 D. None of the above The civil penalties for HIPAA violations are: A. There are no civil penalties for HIPAA B. $100 a day per violation C. $100 per client D. $100 per client per violation, maximum of $25,000 per client per year What areas does HIPAA apply to? A. All auto insurance claims B. Eligibility of employees for pre-existing conditions for medical coverage C. Authorizations for claims payment D. Electronic Transmittal of claims and payment information E. B and D F. All of the above The purpose of a Privacy Officer in a health care firm is to: A. To keep the health care firm secrets B. Provide one contact person for patients C. Read the HIPAA manuals D. Learn how to keep the records safe HIPAA applies to what organizations? A. Employers with more than 10,000 employees B. Few health care professionals C. Health care clinics ONLY D. All health care organizations