Agapé Home Care
Compassion with Excellence

CLIENT CONFIDENTIALITY - ANSWERS

CLIENT CONFIDENTIALITY - ANSWERS

1.      What does HIPAA stand for?

  • Health Insurance Portability and Accountability Act

2.      Which of the three HIPAA purposes were covered in this training?

  • Privacy and security rules

3.      What does PHI stand for?

  • Personal Health Information

4.      What type of information constitutes PHI?

  • Medical records, names, date of birth, Social Security Number, email, and other information that can be used for identity theft

5.      What is the goal of HIPAA?

  • Keeping personal information safe

6.      Is Agape Home Care and its staff a "covered entity" under HIPAA?

  • Yes

7.      What three conditions are permitted to share PHI without client's written authorization?

  • To individuals authorized by the client
  • For treatment, payment or general healthcare operations
  • If client has the opportunity to agree or object to a disclosure

8.      What does "minimum necessary information" rule mean in relation to PHI?

  • Staff who need access to PHI to carry out job, on a need to know basis
  • Non-staff are provided only what is necessary to complete their work
  • Use ethics and best judgment in what PHI is disclosed to who

9.      Is there any condition where client PHI can be retained or stored on staff's address or notebook, cell phones, social media or email accounts?

  • Only as long as is necessary and safely secured from outsider’s view or access

10.  What should be done with client's PHI that is no longer necessary to be retained by staff?

  • Discarded PHI in the most secure manner possible (delete digital, shred paper)

11.  What should you do if you observe or reasonably suspect someone violating HIPAA law?

  • Make a report to AHC management as soon as is practical.

12.  Would it be a violation of HIPAA to give your client's pharmacist or doctors office their name, social security number and date of birth to make an appointment or pick up their prescription?

  • No, sharing this information is not a violation of HIPAA as it is necessary ("need to know") to meet the client's medical needs

13.  Would it be a violation of HIPAA to give your client's name, telephone number and address to your family, friends or childcare provider as an emergency contact during working hours?

  • Yes, sharing this information is not a violation of HIPAA as it is unnecessary (not "need to know") to serve the client's needs

14.  Would it be a violation of HIPAA to discuss your client's diagnosis, care plan and/or mental, emotional or physical status with a co-worker who is not assigned to your client's care team?

  • Yes, sharing this information is not a violation of HIPAA as it is unnecessary (not "need to know") to serve the client's needs

15.  Would it be a violation of HIPAA to discuss your client's PHI with visiting friends or relatives who have not been authorized in advance?

  • Yes, sharing this information is not a violation of HIPAA as it is unnecessary (not "need to know") to serve the client's needs