Who Would Not Be Considered A Covered Entity Under Hipaa

"HIPAA privacy regulations apply to health insurers, pharmacists, doctors, EMS personnel, as well as any other health care providers or anyone who has access to protected health information while performing services for, or on behalf of a Covered Entity"

According to HIPAA regulations, which of the following are considered COVERED ENTITIES?

HIPAA requires healthcare providers and organizations to protect the privacy and confidentiality of health information.

Any person or organization that is not considered a Covered Entity under HIPAA may also be indirectly affected by HIPAA's privacy regulations if it is a __________________.

"Central New Mexico Community College is an example of a ______________________ and, as such, students entering into the workplace of a Covered Entity must be familiar with HIPAA regulations."

Personal Health Information (PHI) is defined as information that identifies the individual or could reasonably be used to identify the individual who is the subject of the PHI.

"Personal Health Information (PHI) is related to the individual?s past/present/future physical or mental condition, or the provision of health care to the individual."

Examples of PHI include but are not limited to:

The general rule is that a federal law like HIPAA supersedes state law unless state law is more protective of PHI than those protections afforded by HIPAA

"The property of data or information of being private, restricted or unavailable for disclosure to unauthorized persons or processes"

An individual or organization that is not a member of the Covered Entity's workforce who performs or assists in the performance of a function or activity that involves the use or disclosure of t PHI on behalf of the Covered Entity

Refers to any form of information that may be used to identify a patient at any time

"Employees, volunteers, trainees, students or other persons whose conduct, in the performance of work is under the direct control of the Covered Entity"

"Information resources that include but are not limited to software, hardware, information, data, applications, communications and people"

"Is a written document that allows the use of or disclosure of PHI for purposes other than and including treatment, payment, or health care options"

"By selecting TRUE I agree to protect the privacy of my patients at all times and not disclose any private or otherwise confidential information at any time, including social media sites such as Facebook or Twitter."