HIM 320 EXAM 1
Privacy
- one's legal right to be selective about what is revealed about oneself to others
Confidentiality
- results from sharing private thoughts with someone else in confidence
Security
- prevent unauthorized access, use, disclosure, modification, or destruction of information or
interference with system operations in an information system
Data Security
- exists when data are protected from accidental or intentional disclosure to unauthorized
persons and from unauthorized or accidental alteration
System Security
- the totality of safeguards including hardware, software, personnel policies, information
practice policies, disaster preparedness, and oversight of these components
Integrity
-guarding against improper information modifications or destruction, and ensuring
information non-repudiation and authenticity
- not allowing information to be changed or deleted inappropriately
Confidentiality
- preserving authorized restrictions on access privacy and propriety information
,Availability
- ensuring timely and reliable access to and use of information
What are the 4 ethical principles?
- autonomy, beneficence, nonmaleficence, justice
Autonomy
- Recognizing the right of a person to make one's own decisions
Beneficence
- doing good
- promoting the health and welfare of others
- demonstrating kindness
- showing compassion
- helping others
Nonmaleficence
- doing no harm
Justice
- obligation to be fair in the distribution of benefits and risks
What are the 2 key goals of the HIPAA privacy rule?
- provide an individual with greater rights with respect to his or her health information
- provide greater privacy protections for one's health information, which serves to limit access
by others
American Recovery and Reinvestment Act
- contained changes to the HIPAA Privacy Rule as delineated in the HITECH Act
, - Provider consumers with greater access to health insurance
- Protect the privacy of health data
Why was HIPAA passed by congress?
- Promote standardization and efficiency in the healthcare industry
Administrative Simplification
- Original intent of HIPAA
- Refers to HIPAA's attempt to streamline and standardize the healthcare industry's non-
uniform, inefficient business practices (like billing)
- Created standards for the electronic transmission of data
The Constitution
- The Constitution provides Americans with a right to privacy, but provides little protection for
health information
Freedom of Information Act (FOIA)
- underlying purpose not the privacy of information but, rather, the right of disclosure to and
access by the public regarding federal agency records
- medical records are exempt under certain circumstances
Privacy Act
- requires federal agencies holding personally identifiable records to safeguard that
information and provide individuals with certain privacy rights (for example, access and
amendment)
- applies only to federal agencies and government contractors
Federal Substance Abuse Confidentiality Law
- applies to most alcohol and drug abuse treatment, and prohibits the disclosure of
information concerning the treatment except as specifically authorized
Privacy
- one's legal right to be selective about what is revealed about oneself to others
Confidentiality
- results from sharing private thoughts with someone else in confidence
Security
- prevent unauthorized access, use, disclosure, modification, or destruction of information or
interference with system operations in an information system
Data Security
- exists when data are protected from accidental or intentional disclosure to unauthorized
persons and from unauthorized or accidental alteration
System Security
- the totality of safeguards including hardware, software, personnel policies, information
practice policies, disaster preparedness, and oversight of these components
Integrity
-guarding against improper information modifications or destruction, and ensuring
information non-repudiation and authenticity
- not allowing information to be changed or deleted inappropriately
Confidentiality
- preserving authorized restrictions on access privacy and propriety information
,Availability
- ensuring timely and reliable access to and use of information
What are the 4 ethical principles?
- autonomy, beneficence, nonmaleficence, justice
Autonomy
- Recognizing the right of a person to make one's own decisions
Beneficence
- doing good
- promoting the health and welfare of others
- demonstrating kindness
- showing compassion
- helping others
Nonmaleficence
- doing no harm
Justice
- obligation to be fair in the distribution of benefits and risks
What are the 2 key goals of the HIPAA privacy rule?
- provide an individual with greater rights with respect to his or her health information
- provide greater privacy protections for one's health information, which serves to limit access
by others
American Recovery and Reinvestment Act
- contained changes to the HIPAA Privacy Rule as delineated in the HITECH Act
, - Provider consumers with greater access to health insurance
- Protect the privacy of health data
Why was HIPAA passed by congress?
- Promote standardization and efficiency in the healthcare industry
Administrative Simplification
- Original intent of HIPAA
- Refers to HIPAA's attempt to streamline and standardize the healthcare industry's non-
uniform, inefficient business practices (like billing)
- Created standards for the electronic transmission of data
The Constitution
- The Constitution provides Americans with a right to privacy, but provides little protection for
health information
Freedom of Information Act (FOIA)
- underlying purpose not the privacy of information but, rather, the right of disclosure to and
access by the public regarding federal agency records
- medical records are exempt under certain circumstances
Privacy Act
- requires federal agencies holding personally identifiable records to safeguard that
information and provide individuals with certain privacy rights (for example, access and
amendment)
- applies only to federal agencies and government contractors
Federal Substance Abuse Confidentiality Law
- applies to most alcohol and drug abuse treatment, and prohibits the disclosure of
information concerning the treatment except as specifically authorized
