Health Information Compliance Alert

Security Quiz Answers

1. False. The stricter of the two regulations takes precedence. You must consider all types of regulations.

2. False. Your facility must ensure that parties with whom you share protected health information are actively implementing HIPAA privacy and security standards.

3. True. You must formally document all your HIPAA policies and procedures.

4. False. Employees and business associates, not just patients, can file HIPAA complaints.

5. False. No simple way exists for you to legally refer patients to a noncompliant practice, though it can be done with a patient's written authorization. It is an unnecessary risk to refer patients to HIPAA-noncompliant practices.

6. True. HIPAA does not require that you train your employees on how to monitor log-ins, but it does consider this training addressable. That means you must consider it in an effective training program.

7. False. You should expect to be checked on a regular basis. You must also regularly monitor your business associates to ensure that they, too, are in compliance.

Reprinted from www.breakwatersecurity.com with the permission of Breakwater Security Associates.

Other Articles in this issue of

Health Information Compliance Alert

View All