VBRCM Compliance

1234567891011
Across
  1. 2. A ____ is presumed to have occurred when unsecured PHI is accessed, acquired, used, or disclosed in a way not permitted by the HIPAA Privacy Rule.
  2. 3. _____is one place where you can report a suspected breach.
  3. 6. The process of converting information or data into a code, to prevent unauthorized access.
  4. 7. Protected Health Information, or _____ is any information in a medical record that can be used to identify an individual, and that was created, used, or disclosed in the course of providing a health care service, such as a diagnosis or treatment.
  5. 9. You should never share your _____ with another individual that is used to access systems.
  6. 10. The ___ Rule of 2003 set national standards for protecting the confidentiality, integrity, and availability of electronic protected health information.
  7. 11. The release, transfer, access to or divulging of patient information.
Down
  1. 1. _____data is also known as plaintext.
  2. 2. A person or entity, other than a member of the workforce of a covered entity, who performs functions or activities on behalf of, or provides certain services to, a covered entity that involves access to protected health information is a ______ Associate.
  3. 4. The ______ Necessary amount of information needed to accomplish a task is required when sharing PHI.
  4. 5. The Health Insurance Portability and Accountability Act of 1996 (_____) is a federal law that required the creation of national standards to protect sensitive patient health information from being disclosed without the patient's consent or knowledge.
  5. 6. Individuals, organizations, and agencies that meet the definition of a covered _____ under HIPAA must comply with the Privacy Rules' requirements to protect the privacy and security of health information and must provide individuals with certain rights with respect to their health information.
  6. 8. The _____ Rule of 2000, set national standards for the protection of individually identifiable health information by three types of covered entities: health plans, health care clearinghouses, and health care providers who conduct the standard health care transactions electronically.