HIPAA Security and Privacy Training

Speaking quietly to others about your patient in the elevator

Using only patient initials on care plans and pre-clinical conference notes

Keeping pre-clinical conference notes on a clipboard at the station

Discussing patient care with your peers on the bus

Implementation of physical, administrative, and technical safeguards

Use of paper records only

Annual public disclosure of all PHI

Encryption of all verbal communications

Encryption of electronic PHI

Mandatory use of paper records

Public disclosure of patient information

Annual patient consent forms

To ensure the confidentiality of patient information

To allow unrestricted access to patient records

To mandate the use of electronic health records

To provide public access to health data

Firewalls and encryption

Locked filing cabinets

Employee training programs

Visitor sign-in sheets

Protected Health Information

Personal Health Identifier

Private Health Insurance

Public Health Initiative

Discussing patient information in a public area

Using encrypted emails to share patient data

Storing patient files in a locked cabinet

Limiting access to patient records to authorized personnel

Patient's written consent

Verbal agreement from the patient

Approval from a healthcare administrator

No consent is needed

Locked doors and security systems

Password-protected software

Data encryption

Employee access controls

Annually

Every two years

Only once at hiring

Every six months