Deck 13: Information Systems

A) An injury documented in the record was caused by negligence
B) "Duty to act" information was included in the patient record
C) The record was kept during the ordinary course of business
D) Warehoused data about patients was reviewed by the risk manager

A) Be familiar with the hardware and software used in the system
B) Determine which providers made entries in the patient record
C) Know whether the entries made were telephone orders or not
D) State which data entry procedures made in the record are routine

A) Electronic Signatures in Global and National Commerce Act of 2001
B) Encryption program used by healthcare facilities that implement an EHR
C) Laws that state electronic signatures may not be used in foreign commerce
D) Programs developed to support insurance reimbursement for health care

A) Judiciously maintaining data in the EHR through authentication measures
B) Keeping data or equipment from being brought down by malicious attempts
C) Preventing third parties from gaining access to healthcare communications
D) Resuming immediate computer operations in the event of a problem

A) Considered inadmissible because it is not the actual patient record
B) Entered into evidence with testimony by the custodian of health records
C) Not required to meet foundation,trustworthiness,or accuracy requirements
D) Paper-based,which means it was generated manually by providers

A) Backing up healthcare data
B) Documenting care provided
C) Court-ordered release of records
D) Hiring appropriate personnel

A) Clearly defined by federal statues and written regulations
B) Defined by each institution with input from its legal counsel
C) Healthcare documentation imported from an R.H.I.O.
D) Information captured from one health care setting to another

A) Adding unlimited access.
B) Expanding log-on attempts.
C) Installing antivirus software.
D) Limiting methods of encryption.

A) Decreased accessibility of information
B) Establishment of data mining procedures
C) Illegibility of information in the patient record
D) Reduced capacity for information storage

A) Administrative and insurance
B) Informational and technical
C) Physical and technical
D) Physical and theoretical

A) Authenticating all entries
B) Destroying sensitive data
C) Restricting copy functions
D) Using PDAs and iPads

A) Business record generated at or for a healthcare organization.
B) Dictation of a healthcare facility's physicians and other providers.
C) Results of quality management audits that impact patient care.
D) Statistical reports that contain data used for accreditation purposes.

A) does not hold the author of the entries accountable
B) is recognized by national accreditation organizations
C) is required by federal and state legislatures in the U.S.
D) requires paper record as a backup to verify authenticity

A) Ensures that people are who they say they are
B) Is accomplished by a method to prevent eavesdropping
C) Refers to the level of access to an operating system
D) Prevents malicious attempts to damage healthcare data

A) Clinical decision support
B) Dictation and transcription
C) Enforcement of collections
D) Gatekeeping for patients

A) Be familiar with the computer system hardware and software used
B) Ensure the reliability and validity of data using QM and UM measures
C) Establish policies that govern how corrections in the record are made
D) Know the manner in which patient healthcare data is recorded

A) Authenticating individual entries made in the EHR
B) Ensuring that people are who they say they are
C) Levels of access granted to an operating system
D) Preventing malicious attempts to destroy health data

A) Healthcare information that always resides off site in a computer system
B) Patient documentation created,authenticated,and retrieved manually
C) Systems that may contain links to clinical decision support systems
D) Warehoused data that is accessible by patients and third-party payers

A) Ensure data integrity by protecting it from unauthorized deletion
B) Limit the availability of healthcare and other data to authorized users
C) Operate within the confines of stricter state legislation and rules
D) Protect confidentiality by allowing all providers to access information

A) Assist entities protect information from physical intrusions
B) Define the framework of an excellent security program
C) Help develop security measures,which protect PHI
D) Include optional risk assessments that can be implemented

A) Are subject to the same requirements for safeguarding confidentiality of PHI
B) Have been assigned exempt status from HIPAA regulations and requirements
C) Govern only those patients who receive Medicare reimbursable services
D) May be implemented by entities subject to Medicare Conditions of Participation

A) Are mandatory and must be implemented in health care facilities and covered entities
B) Do not bind the entity to implementation but require documentation of alternatives
C) Permit the health care facilities and the covered entities to ignore unreasonable rules
D) Impact only the hybrid medical records that are maintained by covered entities

A) Electronic indexing of patient records and other documents
B) Photographs taken of patients before and after surgery
C) Scanning a paper document,to be viewed over a server
D) Using fiberoptics in minimally invasive procedures

A) Are optional for certain types of facilities
B) Help in detecting security violations
C) Must be implemented by all facilities
D) Provide opportunities to ignore certain rules

A) inappropriate access to genetic information
B) pharmacy calculations
C) statistics
D) vendor contracts

A) Alter the original medical record in person
B) Know how his information is being disclosed
C) Receive copies of any records upon request
D) Restrict all disclosures of information

A) Are different names for the same regulations
B) Limit patient access and control of information
C) Often oppose each rule's efforts and results
D) Protect information from different aspects