Flashcards in 1602 Limiting Access, Disclosure and Use of PHI (administration) Deck (13):
Who is responsible for Maintaining this document?
The TFD Privacy Officer or his/her designee.
What policy number is Limiting Access, Disclosure and Use of PHI?
Who is responsible for appropriately and adequately de-identifying and maintaining the security of PHI for use in conjunction with training and/or quality assurance activities in
accordance with the guidelines set forth in this document?
TFD Peer Review Chairs and Training Staff
Who is responsible for ensuring the
security of PHI associated with TFD personnel records in accordance with the
guidelines set forth in this document?
Administrative Assistant for EMS
Who is responsible for:
1. Ensuring the security of the EMIRs and billing related PHI contained within the file cabinets at TFD Headquarters in accordance with the
guidelines set forth in this document
2. PHI requested by TFD field personnel is secured electronically prior to being released in accordance with the guidelines set forth in this document
Account Technician for EMS billing or his/her designee.
Designated Record Set.
Incidental Use or Disclosure.
A secondary use or disclosure that cannot
reasonably be prevented, is limited in nature and occurs as a result of or in connection with another permitted use or disclosure even though reasonable safeguards were in place and the “minimum necessary” standard was applied.
PHI that is either electronically stored and encrypted or when maintained in hard copy is kept in a:
• Locked file cabinet that is not easily moveable and has limited access to the associated keys AND
• Locked or monitored room AND
• Locked or monitored building
What do you do with Yellow copies of EMIRs that are more than one month old?
What forms of PHI into the station’s
locked deposit box?
a. All white copies of EMIRs
b. Yellow copies of EMIRS that are one month old or less
c. Controlled substance logs
d. Signed reports of PHI Disclosure
What demographic information are not included in the list of identifiers that must be
How often may Peer Review Chair use a single password for securing electronic
documents used in Peer Review activities.
Passwords shall not be used for longer than one Peer Review meeting cycle or more than twice each year