Any organization that may have been hired to handle PHI on behalf of a CE or another business associate. Include practice management firms, IT companies, data storage and managed service providers. In our industry, for example, your labs, vendors, CSEye, SolutionReach or Weave would be considered a business associate of a practice; anyone who has access to patient information. ​
Includes any information that is personally identifiable to the patient. This includes: name, address, date of birth, telephone number, fax number, social security number, email address, medical record number, health plan identification number, account number, and driver license number. ​
Refers to any protected health information that is covered under HIPAA security regulations and is produced, saved, transferred or received in an electronic format.
Includes health care providers, health insurance plans and health care clearinghouse. CE's are those that are required to follow the rules and standards of HIPAA. ​
The statement that all covered entities must provide patients or individuals with, which under the Privacy Rule, must cover certain elements of the practice.
The official agreement which is a signed document that must specify each party’s responsibilities when it comes to protecting PHI.
View Answers:
Correct
Incorrect
Login
Accessing this program requires a login. Please enter your credentials below!