Access over 20 million homework & study documents

C427 technology applications in healthcare performance assessment paper docx

Content type
User Generated
Rating
Showing Page:
1/8
C427 Technology Applications in Healthcare

Sign up to view the full document!

lock_open Sign Up
Showing Page:
2/8
A1.
In light of the recent data breach of patient personal health information (PHI), this facility will be
implementing a mandatory HIPAA training course for all employees, including all providers, clinical staff,
clerical staff, and any others who could have access to PHI. This will include a video presentation on the
rules and regulations of HIPAA done by the health information management (HIM) director with an
accompanying PPT that all employees will have access to. There will be a quiz on the material that all
employees must turn into their direct supervisor to ensure their understanding of the matter presented.
This must be done at the start of employment and then again yearly to ensure continued adherence to
HIPAA. The HIM director will be responsible for ensuring that all employees are compliant with the
HIPAA training. Any employees that have not completed the training are subject to removal from their
duties until it is completed, with an option for termination if they are noncompliant.
A1a.
Three appropriate types of PHI that can be shared between staff are patient name (first and last), date
of birth, and medical record numbers.
A1ai.
This information should be shared between staff in a private room or an area where it can not be
overheard by staff not involved in the care of the patient or other patients. This information should not
be shared in a busy hallway or public area.
A1aii.
Three individuals that can use and disclose patient PHI are medical providers involved in the care of the
patient, a nurse involved in the care of that patient, and a member of the billing staff involved in
working the patient’s account and charges. Each of these individuals are only allowed to have access to
the minimum necessary information for them to perform their job duties.
A1b.
Failure to comply with the rule and regulations with HIPAA can lead to penalties for the facility as well as
for the employee(s) responsible. If the breach is unintentional, the facility or employee(s) can be fined a
maximum of $100 for each violation, up to $25,000 a year. If the violation is intentional, PHI is used for
any type of harm or personal gain, the person(s) involved can be subject to fines of $50,000 to $250,000
as well as 1-10 years in prison.
A1c.
To ensure data is protected through shift changes all employees are required to lock their computer at
any time they walk away from it. Employees are never allowed to perform duties on any username in
the system besides their own. At the end of their shift, employees are required to log out of their
username so the employee taking over the next shift can log in under their own personal username.
Employees are not allowed to share passwords with any other individuals. Employees changing shifts
will also discuss the care of patients in a private location, so as not to be overheard by other patients.
The management of the facility understands the need and encourages employees to share the condition
of patients to the next shift so as to continue a high quality of care, but employees need to be certain

Sign up to view the full document!

lock_open Sign Up
Showing Page:
3/8

Sign up to view the full document!

lock_open Sign Up
End of Preview - Want to read all 8 pages?
Access Now
Unformatted Attachment Preview
C427 Technology Applications in Healthcare A1. In light of the recent data breach of patient personal health information (PHI), this facility will be implementing a mandatory HIPAA training course for all employees, including all providers, clinical staff, clerical staff, and any others who could have access to PHI. This will include a video presentation on the rules and regulations of HIPAA done by the health information management (HIM) director with an accompanying PPT that all employees will have access to. There will be a quiz on the material that all employees must turn into their direct supervisor to ensure their understanding of the matter presented. This must be done at the start of employment and then again yearly to ensure continued adherence to HIPAA. The HIM director will be responsible for ensuring that all employees are compliant with the HIPAA training. Any employees that have not completed the training are subject to removal from their duties until it is completed, with an option for termination if they are noncompliant. A1a. Three appropriate types of PHI that can be shared between staff are patient name (first and last), date of birth, and medical record numbers. A1ai. This information should be shared between staff in a private room or an area where it can not be overheard by staff not involved in the care of the patient or other patients. This information should not be shared in a busy hallway or public area. A1aii. Three individuals that can use and di ...
Purchase document to see full attachment
User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Anonymous
Awesome! Perfect study aid.

Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4