HIPAA & Regulatory Compliance - Key Terms (Video Notes)

0.0(0)
studied byStudied by 0 people
GameKnowt Play
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/23

flashcard set

Earn XP

Description and Tags

A set of vocabulary-style flashcards covering regulatory compliance topics from HIPAA basics to PHI identifiers, consent types, EHR incentives, and related laws referenced in the video notes.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

24 Terms

1
New cards

Implied consent

Consent inferred from a patient’s actions or behavior for low-risk or routine procedures, rather than explicit verbal or written confirmation.

2
New cards

Verbal consent

Consent given orally by the patient or their representative, without a written document.

3
New cards

Informed consent

Consent given after the patient is informed about risks, benefits, alternatives, and questions are answered; often documented in writing for high-risk or invasive procedures.

4
New cards

HIPAA

Health Insurance Portability and Accountability Act; a federal law protecting patient privacy, securing PHI (Patient Health Information), and standardizing electronic health information transactions.

5
New cards

PHI (Protected Health Information)

Identifiable health information created, received, stored, or transmitted by covered entities.

6
New cards

HIPAA Privacy Rule

WHAT you can/can’t do with patient info (all forms)

7
New cards

HIPAA - standardizes electronic transactions

uniform code sets and electronic formats

  • ICD-10-CM for diagnoses

  • CPT/HCPCS for procedures and services

  • standard electronic forms (837 claim form)

8
New cards

Ensures compliance

mishandles PHI or fail follow HIPPA rules can face heavy fines and penalties

9
New cards

HIPPA Security Rule

HOW you must protect patient info in electronic form

10
New cards

Covered entities

organizations or people who must follow HIPAA rules because they handle protected health information (PHI) in connection with healthcare services or payment.

1. Healthcare Providers

2. Health Plans

3. Healthcare Clearinghouses

11
New cards

Healthcare Providers

Doctors, nurses, hospitals, clinics, therapists, pharmacies, etc., who transmit health information electronically (for billing, claims, eligibility checks).

12
New cards

Health Plans

Insurance companies, HMOs, Medicare, Medicaid, employer-sponsored health plans.

13
New cards

Healthcare Clearinghouses

Entities that process non-standard health information into a standard format (or vice versa), such as billing services or repricing companies.

14
New cards

Under HIPAA, there are 18 identifiers that are considered Protected Health Information (PHI)

1. Name

2. Address

3. All elements of dates (except year)

4. Telephone numbers

5. Fax numbers

6. Email addresses

7. Social Security numbers

8. Medical record numbers

9. Health plan beneficiary numbers

10. Account numbers

11. Certificate/license numbers

12. Vehicle identifiers (license plate numbers, serial numbers, etc.)

13. Device identifiers and serial numbers

14. Web URLs

15. IP addresses

16. Biometric identifiers (fingerprints, voice prints, retinal scans, etc.)

17. Full-face photographs and comparable images

18. Any other unique identifying number, code, or characteristic

15
New cards

PHI breaches

Incidents where Protected Health Information is accessed, used, or disclosed without authorization, potentially compromising patient confidentiality and privacy.

16
New cards
term image
knowt flashcard image
17
New cards
term image
knowt flashcard image
18
New cards

Written Consent

A formal agreement from a patient allowing the use or disclosure of their health information for specific purposes, ensuring compliance with HIPAA regulations.

19
New cards

Release of Patient Information

information (PHI) can be used and disclosed without a specific authorization to release the information

  • Treatment

  • payemnt

  • operations

  • law enforcement, public interest and benefit activities

  • limited data set

20
New cards

Psychotherapy notes

Confidential notes taken by a therapist during or after a therapy session, focusing on the patient's thoughts and feelings. They are protected under HIPAA and have stricter requirements for disclosure compared to general medical records.

21
New cards

HITECH (health Information Technology for Economic and Clinical Health) ACT

A federal law aimed at promoting the adoption and meaningful use of health information technology while enhancing the privacy and security protections for electronic health information.

*if more than 500 patient records are affected, HITECH requires the media to be notified and offered identity theft protection services*

22
New cards

Fair Debt Collection Practices Act

protect consumers from abusive, unfair, or deceptive collection practices

23
New cards

False Claims Act

federal law that makes it illegal to knowingly submit, or cause someone else to submit, false or fraudulent claims for payment to the U.S. government.

● allows penalties to be placed on anyone who knowingly submits a fraudulent claim to the United States government for money.

24
New cards

Stark Law

A federal law that prohibits physician self-referral, specifically when referring patients to facilities in which they have a financial interest, to prevent conflicts of interest and protect patients from unnecessary procedures.