FERPA and HIPAA Crossword Puzzle
Across
- 4. Under FERPA, an eligible student is one who has reached the age of ______ or is attending any school beyond high-school level.
- 5. FERPA applies to all educational institutions receiving ______ funding.
- 9. HIPAA related documents must be retained for at _______ least years from the date of creation or the date they were last in effect (whichever is later).
- 11. The _______ Rule of HIPAA focuses on safeguarding the electronic protected health information (ePHI).
- 13. FERPA provides parents or eligible students the rights to control the _______ of information from education records.
- 14. All users dealing with Protected Health Information should be trained to recognize and _______ a potential security incident.
- 15. ________ records of a student, not involving any crime or law enforcement units are protected under FERPA.
- 16. Under HIPAA, _______ refers to the process of determining access to electronic Protected Health Information and the level of access.
- 19. A business associate under HIPAA is defined as a person or organization that creates, stores, processes, accesses, transmits and _______ protected Health Information on behalf of a Covered Entity.
- 20. FERPA stands for Federal Educational Rights and ______ Act.
- 22. _______ entities (CEs) under HIPAA include healthcare providers, health plans, healthcare clearinghouses, and certain business associates.
- 23. Users handling Protected Health Information on their workstation computer should always _______ their workstations when they leave.
Down
- 1. The Security Rule of HIPAA is organized into _______ categories. These categories are standards and implementation specifications.
- 2. Under FERPA, an education institution may release a student records if it is for an application for ________ aid.
- 3. Under FERPA _______ information from students’ records may be released without written consent.
- 6. Under FERPA, a timely complaint on a violation is one that is within hundred and _______ days of the date that the complainant knew or should have reasonably known about the alleged violation.
- 7. Under HIPAA electronic protected health information is defined as individually identifiable health information (IIHI) that is stored, processed, or ________ electronically.
- 8. HIPAA stands for Health Insurance Portability and _______ Act.
- 10. Before disclosing personally _______ information, FERPA requires educational institutions to obtain a signed and dated written consent from parents or eligible students.
- 12. Every ______, educational institutions must notify parents and eligible students of their rights under FERPA.
- 17. _______ safeguards of HIPAA ensure the Confidentiality, Integrity and Availability of electronic protected health information.
- 18. Title _______: of HIPPA, also known as the Administrative Simplification, pertains to national standards for electronic health care transactions and national identifiers for providers, health plans, and employers.
- 21. The safe _______ provision relates to de-identified data.