Alliyah EvangelistaHIM 1 - Chp. 16, Privacy, Confidentiality, Access & Release of Information + KAHOOT
-
HIMs may run Privacy Impact Assessments (PIA). What are PIAs?
They are assessments on the impact of patient privacy after implementing new procedures.
-
What are some factors influencing PHI?
legal - provincial and federal
- HIE (Health Information Exchange)
- iEHR (Interoperable electronic health records)
- Licensing and certification bodies (CHIMA)
- Ethics
- Policies and procedures
-
What is "Release to support quality of care"?
Services being outsourced to private companies such as transcription, coding, etc.
-
Does a provider who is part of the patient's circle of care require their consent to release their information?
No, because they need to disclose said information for the continuation and to provide quality care to the patient.
-
Name some examples where it is mandated to release information, without patient consent.
- To a lawyer
- To comply with a court order
- To a gov. institution for investigations using that information
- An emergency threatening an individual's life, health or security
- Study or research
-
What are "Notifiable diseases"?
A list of diseases that need to be reported to the government, regardless of patient consent, to prevent ongoing spread of it and for the public interest (data).
-
If a person is unable to consent, doesn't have the capacity to understand what they're consenting to, how might the government or whoever achieve it?
- For minors, their parents
- Mentally incompetent, their guardians which are their substitute decision makers
-
In MB, what is the name of the organization that assesses the best possible decision for those unable to make decisions for them?
Public Guardian and Trustee of MB
-
Do we need patient consent to videotape, or photograph their care, and to share those tapes?
No, it is generally permissible so long as its for educational purposes, however the patient must be informed beforehand.
-
What are the required elements in a consent form?
- Name of the person/agency that will receive the info.
- Name of the facility releasing the information
- The NECESSARY records you will be releasing (hx, labs, etc.)
- Date and signature
- Name and signature of the witness and the date
- Date and time information is sent
- Status of request
-
Define PIA and TRA.
PIA - process that determines whether new systems, initiatives, etc meet the privacy requirements and determines mitigation strategies. It also assists in anticipating the public's reaction.
TRA - Similar to PIA, but is focused on all threats (external, internal).
-
Define what a breach is?
An unauthorized collection, sharing, access to, alteration or deletion of PHI.
-
What are the 3 types of breaches?
- Accidental
- Malicious; done with the intent to steal or harm to an org. or a person
- Catastrophic; destroyed due to a natural disaster
-
When a breach occurs, who should you report it to?
The privacy officer
-
What is the name of the legislation that we follow in MB that protects personal health information?
The Personal Health Information Act (PHIA)
-
Secondary data sources most often represent:
aggregate data.
-
Which registry collects national statistics on injuries in Canada and is sourced by the Human Metabolome Database (HMDB)?
The National Trauma Registry (NTR)
-
Registry data in a secondary health care database would most likely be used by:
Researchers tracking trends and patients illnesses.
-
Health care in Canada is primarily a provincial government responsibility. True or false?
True; each province has its own plan and legislations on how they provide healthcare.
-
What technology solution allows orgs. to share patient information electronically between systems?
Health Information Exchange (HIE)
