You must provide an internal reference from Henrico Doctors Hospital. We cannot provide a job shadowing experience unless an employee refers you.

Transcription

1 Welcome, We are pleased that you have chosen Henrico Doctors for your observational experience. We take great pride in providing the best care possible to our patients and as such, we must comply with safety and patient privacy regulations. Therefore, we will require you to complete this packet and return all paperwork to the Clinical Rotations Coordinator, Ellen Smith. Her contact information is: office phone fax You must provide an internal reference from Henrico Doctors Hospital. We cannot provide a job shadowing experience unless an employee refers you. All paperwork must be on file prior to the start of your observational experience. We hope that this experience will be a rewarding and productive one. 1

2 For Shadowing / Observation: Read Student/Observation Agreement and on page 7 complete ALL LINES indicated with an X. Your Preceptor must sign the agreement and state what department they work for. Read, sign and initial where indicated Exhibit A & B Read the Patient Privacy and Confidentiality packet and answer test questions. (HIPAA TEST) Have a record of all the following current immunizations: o Tuberculin skin test within the past 12 months or documentation as a previous positive reactor; and o Proof of Rubella and Rubeola immunity by positive antibody titers or 2 doses of MMR; and o Proof of Hepatitis B immunization or declination of vaccine, if patient contact is anticipated. o Proof of Varicella immunity by positive titer (Verbal history of having the disease is not acceptable). Observers who have a negative Varicella Zoster titer will be counseled by the hospital and required to sign the Varicella Susceptible or Non- Immune Information Sheet form. Return all the above to the address below Henrico Doctors Hospital Forest Campus ATTN: Ellen Smith Clinical Education Dept Skipwith Rd. Richmond, Va OR Fax to Ellen Smith Scan via [email protected] 2

3 Henrico Doctors Hospital Student / Observation Agreement Orientation Self-Study and Agreement Statement Mission and Values Statement: Above all else, we are committed to the care and improvement of human life. In recognition of this commitment, we strive to deliver high quality, cost effective health care in the communities we serve. In pursuit of our mission, we believe the following value statements are essential and timeless. We recognize and affirm the unique and intrinsic worth of each individual. We treat all those we serve with compassion and kindness. We act with absolute honesty, integrity and fairness in the way we conduct our business and the way we live our lives. We trust our colleagues as valuable members of our health care team and pledge to treat one another with loyalty, respect and dignity. Safety and Infection Control: If you hear any emergency code paged over the public address system, report to your preceptor for instructions (i.e. Code Red, Code Blue, Code E - Evacuation, etc.). CHEMICALS - Hazardous chemicals and harmful materials are used in many areas. You have a right to know about these chemicals and materials. Refer to your preceptor. Never use any chemicals unless trained to do so and with the proper personal protective equipment. All patients with communicable diseases and infections cannot be reliably identified, therefore, anyone involved in activities necessitating contact with blood, body fluids or other potentially infectious materials must use precautions to prevent personal exposure and to control the transmission of disease in the hospital. We assume all patients are potentially infectious and use Standard Precautions. Individuals participating in an observational experience at HDH will not be allowed to enter any isolation rooms. Refer to your preceptor with any questions. SHARPS Everyone in a patient care area must take precautions to prevent possible injuries caused by needles and other sharp instruments or devices used in the hospital. Refer to your preceptor. MEDICAL WASTE - Medical waste contains blood and body fluids that may potentially be infections. DO NOT HANDLE any item that you feel may be contaminated. Receptacles with RED TRASH LINERS are for medical waste. NEVER REACH INSIDE A RECEPTABLE. Should a blood or body fluid exposure occur report it to your preceptor immediately and report to the emergency room immediately for treatment. Any treatment for injury or exposure will be at student s expense. Your role is strictly observational and you must not administer care to a patient. Smoking Policy: Henrico Doctors Hospital is a smoke - free facility. Smoking is not allowed in or outside the facility. Student Rights: There may arise situations of conflict in which a student perceives that his or her individual cultural values, ethics, or religious beliefs are in direct conflict with specific aspects of the observation experience. Upon perceiving a conflict between individual beliefs and a specific aspect of patient care, the student should immediately make the preceptor and school instructor aware of the conflict for the purpose of reassignment. 3

4 Dress Code: All clothing should be conservative and in keeping with the nature of the hospital image and appropriate to nature and scope of position. Clothing should be neat, clean, well fitted and in good repair. No jeans, sandals or open-toed shoes are allowed. Each student or observer must obtain a visitors badge from the Human Resources Department; badge must be visible at all times. Health Screening: All students should be free of communicable diseases that may be transmitted in the hospital. If you are sick with a fever or have problems with rash or skin lesions, you may not be able to attend your observational experience in the hospital setting. Contact your preceptor or school instructor if you have any questions. All immunizations must be up to date. If you are going into patient rooms or going to have direct patient contact you must show proof of your immunizations and proof of a negative Tuberculosis screening current within a year, persons with a history of a positive PPD must have a negative CXR and no current signs or symptoms of TB. Whereas every effort is made to prevent blood and body fluid exposures and during an observation experience the change of exposure is highly unlikely, I understand that if I have not had the Hepatitis B vaccine I could be at risk for acquiring Hepatitis B which is a serious disease. Ethics and Confidentiality: When a patient enters the hospital, we assume an obligation to keep in confidence all that pertains to him/her and his/her personal affairs. Each individual shares this responsibility. Reason for admission, diagnosis, and all treatment of patients are confidential information and must be guarded and not shared with peers or anyone in the community. Release of Medical Information should only occur after proper authorization. The Health Information and Accountability Act of 1996 provides additional privacy rights to patients, and specifies penalties for the use and disclosure of protected health information (PHI). Any person who discusses such information with patients, volunteers, contracted or regular employees, or persons outside of the hospital is engaging in a breach of ethics of Henrico Doctors Hospital. ** Violations of this policy are subject to immediate termination of the observation experience. Prohibited Conduct: The activities prohibited by Henrico Doctors Hospital include, but are not limited to, the following: Reporting to observation experience under the influence of alcohol or drugs. Use or consumption or alcohol or other intoxicating substances on hospital premises. Selling or distributing illegal substances while on hospital premises. Stealing from patients, the hospital, or employees. Any form of dishonesty. Disorderly conduct, including fighting; acting in an obscene manner or using obscene, abusive or threatening language; or horseplay. Smoking in an area where smoking is prohibited. Defacing or damaging hospital property. Possession or use of firearms, fireworks, or any other weapon on hospital property. Excessive use of hospital telephones or other hospital equipment for personal matters. Disobeying safety regulations. Insubordination. Noncompliance with hospital policies and/or failure to observe hospital security regulations. 4

5 Failure to maintain the confidentiality of hospital matters pertaining to patients. Any action that destroys good relations between the hospital and its employees or any suppliers or patients. Harassment of any kind (i.e. sexual, racial, age, etc.) The hospital will report to the student s school and to the appropriate licensing agency, any student who engages in any of the foregoing conduct or any conduct that can reasonably be expected to jeopardize the health or safety of any patient or hospital employee. Occurrence Reporting/Indemnification: If you are injured during an observation experience at Henrico Doctors Hospital, you should report immediately to your preceptor and school instructor to obtain instructions for following appropriate procedures. School shall indemnify and hold harmless Hospital and its officers, medical and nursing staff, representatives and employees from and against all liabilities, claims, damages and expenses relating to or arising out of any act or omission of the School or any of its representatives. Hospital shall indemnify School against liabilities, claims, damages and expenses incurred by School in defending or compromising actions brought against School arising out of or relating to any act or omission of the Hospital or any of its representatives. I have read, understand, and agree to abide by these statements through the duration of my Observation experience at Henrico Doctors Hospital. I understand that I must be with a preceptor or instructor at all times during my observation experience. X Student Signature Date X Print Student name Date X Guardian Signature (if student is under age 18) Date X Preceptor/ Manager/ Primary Contact Department Date X Visit Dates X Total Hours 5

6 EXHIBIT A STATEMENT OF RESPONSIBILITY For and in consideration of the benefit provided the undersigned in the form of experience in a clinical setting at Henrico Doctors Hospital, the undersigned and his/her heirs, successors and/or assigns do hereby covenant and agree to assume all risks and be solely responsible for any injury or loss sustained by the undersigned while participating in the Program operated by ("School") at Hospital unless such injury or loss arises solely out of Hospital's gross negligence or willful misconduct. Signature of Program Participant Date Print Name Parent or Legal Guardian if Program Participant is under 18 Date Print Name 6

7 EXHIBIT B PROTECTED HEALTH INFORMATION, CONFIDENTIALITY, AND SECURITY AGREEMENT Protected Health Information (PHI) includes patient information based on examination, test results, diagnoses, response to treatment, observation, or conversation with the patient. This information is protected and the patient has a right to the confidentiality of his or her patient care information whether this information is in written, electronic, or verbal format. PHI is individually-identifiable information that includes, but is not limited to, patient s name, account number, birth date, admission and discharge dates, photographs, and health plan beneficiary number. Medical records, case histories, medical reports, images, raw test results, and medical dictations from healthcare facilities are used for student learning activities. Although patient identification is removed, all healthcare information must be protected and treated as confidential. Students enrolled in school programs or courses and responsible faculty are given access to patient information. Students are exposed to PHI during their clinical rotations in healthcare facilities. Students and responsible faculty may be issued computer identifications (IDs) and passwords to access PHI. Initial Initial each to accept the Policy Policy 1. It is the policy of the school/institution to keep PHI confidential and secure. 2. Any or all PHI, regardless of medium (paper, verbal, electronic, image or any other), is not to be disclosed or discussed with anyone outside those supervising, sponsoring or directly related to the learning activity. 3. Whether at the school or at a clinical site, students are not to discuss PHI, in general or in detail, in public areas under any circumstances, including hallways, cafeterias, elevators, or any other area where unauthorized people or those who do not have a need-to-know may overhear. 4. Unauthorized removal of any part of original medical records is prohibited. Students and faculty may not release or display copies of PHI. Case presentation material will be used in accordance with healthcare facility policies. 5. Students and faculty shall not access data on patients for whom they have no responsibilities or a need-to-know the content of PHI concerning those patients. 6. A computer ID and password are assigned to individual students and faculty. Students and faculty are responsible and accountable for all work done under the associated access. 7. Computer IDs or passwords may not be disclosed to anyone. Students and faculty are prohibited from attempting to learn or use another person s computer ID or password. 8. Students and faculty agree to follow Hospital s privacy policies. 9. Breach of patient confidentiality by disregarding the policies governing PHI is grounds for dismissal from the Hospital. I agree to abide by the above policies and other policies at the clinical site. I further agree to keep PHI confidential. I understand that failure to comply with these policies will result in disciplinary actions. I understand that Federal and State laws govern the confidentiality and security of PHI and that unauthorized disclosure of PHI is a violation of law and may result in civil and criminal penalties. Signature of Program Participant Date Print Name Signature of Parent/ Legal Guardian if under 18 Date Print name 7

8 PATIENT PRIVACY AND CONFIDENTIALITY -HIPAA STUDY GUIDE Objectives: At the completion of this study packet, the participant will: Have a basic understanding of HIPAA Privacy Standards Be able to provide examples of patient privacy protection Be able to define Protected Health Information (PHI) Have a basic understanding of the role of the Facility Privacy Official (FPO) Health Insurance Portability and Accountability Act (HIPAA) The Health Insurance Portability and Accountability Act of 1996 deals with patient privacy, security, and other requirements that includes punishment for anyone caught violating this law. Prior to HIPAA, our healthcare Code of Ethics included patient privacy. The HIPAA privacy regulations go into effect April of 2003, but that doesn't mean that we should wait until then because patient privacy is of utmost importance to everyone! This federal law has both civil and criminal penalties. Criminal penalties can be up to $250,000 and/or up to 10 years in prison. Privacy and Confidentiality All patients within our hospital have a Right to Privacy. With the new HIPAA regulations regarding patient privacy, confidentiality is being taken a step further. Regardless of your role in the healthcare setting, all employees must receive training about the obligations we have regarding privacy of health information. It is important to understand confidentiality and privacy. Privacy and confidentiality means that patients have the right to expect that their protected health information remains private and limited to those with the need to know. The information should remain private whether spoken aloud, written or saved on a computer. Protected Health Information (PHI) PHI includes, but is not limited to: Name Address Age Why the patient is being treated Medications Notes written about the patient Past health conditions Account number Unit/medical record number Social security number Photographs Birth date All duplicate papers/forms that display patient information must be shredded. All original papers/forms must be returned to the HIM department. Protecting Patient Privacy Much of this is common sense! Knock on doors, pull the curtains when talking to a patient, and don't talk about patients in public areas (elevators, cafeteria). If visitors ask about a patient, direct them to the patient information desk. 8

9 The patient information desk will have access to information contained in the hospital directory. This information includes the patient name, location, and condition in general terms. This information is available to anyone who asks for the patient by name, unless the patient chooses to restrict that information. Even the trash! Patient information should be disposed of in proper containers not in the regular trashcan. If you suspect a violation notify your supervisor and/or the Facility Privacy Officer (FPO). Facility Privacy Official (FPO): Each facility is required to have an FPO. This person not only is responsible for making sure that the rules and regulations are followed but also responsible for facility wide training and development, and enforcement of policies and procedures. Our FPO is Lou Canulli. He can be reached at or through pager number Patient Complaints/Concerns/Grievances The patient has the right to voice complaints without compromising care concerning Quality of Care, Customer Service, Timeliness of Service or Privacy. Concerns should always be taken seriously and addressed as soon as possible. Privacy questions/concerns should be directed to your supervisor or the FPO. Information obtained from concerns/complaints/grievances is a vital part of the facility's efforts to improve patient care and enhance customer satisfaction. It is the policy of this Hospital to promote quality care and patient satisfaction by analyzing concerns/complaint/grievances from patients, family members or other responsible parties involved with patient care. Breaches in Confidentiality Breaches in confidentiality may occur in many situations. Help protect confidential medical information by paying close attention to what you say or read, why you say or read the information, and where you say or read the information. The most common ways patient confidentiality is violated are: 1. Discussion of patient information in public places, or with inappropriate or unauthorized individuals. 2. Print or electronic patient information that is left exposed where visitors or unauthorized individuals can view it. 3. Records that are accessed without the need to know in order to perform their job duties. 4. Unauthorized persons hearing patient-sensitive information. Need to Know A very important question you need to ask yourself is "Do I need to know this type of information in order to do my job?" If the answer is NO, stop what you are doing! Access only what you need to know. Patient Privacy Protection: All information is confidential in any format, paper, oral and electronic communication. Each user is given appropriate access to the Clinical Patient Care System (CPCS) also known as Meditech, according to their job duties. Each staff member with access to CPCS is responsible for maintaining compliance with appropriate access and Privacy Policy Procedures. Appropriate Access: Appropriate access to clinical information is defined as providing a CPCS user timely access to patientspecific information, which is necessary to perform his/her professional responsibilities. Access will be granted for an individual to provide and/or support quality patient care processes, as defined by an individual's professional responsibilities to the patient and the facility. Employees will collect, dispose, process, view, maintain and store patients' clinical and financial information in an honest, ethical and confidential manner. It is every employee's responsibility to maintain patient confidentiality. Again, you need to ask yourself is "Do I need to know this type of information in order to do my job?" If the answer is NO, then it is not appropriate to view the information. 9

10 Appropriate Access Policies prohibit employees from accessing their own records in CPCS. Employees may, however, fill out the appropriate authorization in HIM and obtain a copy of their records. Everyone is responsible for following the Release of Information policy and procedure. If a patient or family member would like access to the medical record during their hospital stay, notify the attending physician and then consult with HIMS Director. The HIMS Director or designee will verify which forms/authorization will need to be completed and ensure verification of requestor (see Release of Information Policy and Procedure in MOX library). Notice of Privacy Practice: All patients will receive a copy of the Notice of Privacy Practices upon registration. They will be required to initial a section in the Conditions of Admission to indicate receipt of the brochure. Our Notice of Privacy states we may use or disclosure patient health information for treatment, payment and healthcare operations. Patients have specific health information rights, which include: 1. Right to Access 2. Right to Amend 3. Right to an Accounting of Disclosure 4. Right to Opt out of the Directory 5. Right to Request Restrictions 6. Right to Request Confidential Communications 7. Right to Obtain our Notice of Privacy Practices 8. Right To Access: A patient has the right to access/copy their health information. The patient/requestor must complete/sign an authorization before information can be copied/accessed. This information is contained in the Release of Information policy. Before records are released the requestor must be verified. The patient's physician can deny access to the patient if in his/her opinion, the furnishings to or review by the patient of such records would be injurious to the patient or well being. At this time we do not allow access online via Meditech. The Health Information Management Services department handles requests for release of information. There is a fee for copying medical records. Virginia State law requires us to process written requests for release of information within 15 days. Right To Amend: A patient has the right to request an amendment to their health information in the designated record set (DSR). This might include the addition of information, or an explanation of information already contained in the DSR. The right to amend does not permit deletions or removal of information from the DSR. Requests to amend should be forwarded to HIMS department for processing. The request must be in writing from the patient/responsible party. We must respond to the patient request within 60 days. We can deny the request for amendment if it meets specific requirements. Right to an Accounting of Disclosures (AOD): A patient has the right to an accounting of disclosures for protected health information made by a hospital except for disclosures to carry out payment, treatment, and healthcare operation or pursuant to an authorization. The hospital has 60 days to comply with the written request for accounting of disclosures by the patient. The first accounting of disclosures is free of charge within a 12- month period. The hospital must keep documentation of AOD for 6 years. The compliance date for AOD is April 14, Facility Privacy Official, Lou Canulli, must be advised of patient requests for AOD. Appropriate staff will require additional training for documenting disclosures. Several examples of AOD are reporting of births, deaths, congenital anomalies, cancer registries, or communicable disease, etc. 10

11 Right to Opt Out of the (Hospital) Directory: When a patient is admitted to the hospital s/he will be notified via the Notice of Privacy Practices that we include certain limited information about them in the hospital directory. The information may include their name, location in the hospital, general condition (e.g., fair, stable, etc.) and religious affiliation. This information may be provided to members of the clergy and, except for religious affiliation, to other people who may ask for them by name. If a patient wishes not to be listed in the hospital directory s/he may opt out by completing the Directory Opt Out Form. The Directory Opt Out Form will notify the patient by invoking this patient right that phone inquiries and visitors will be told I have no information about this patient, and that no deliveries will be forwarded to the patient including cards or flowers. The patient is then placed in Confidential Status" in Meditech In the event that a patient chooses to opt out of the directory after registration a Directory Opt Out Form must be completed and a copy forwarded to Patient Registration for action. Patients who Opt Out of the Directory will appear in Meditech as Confidential patients. Right to Request Restrictions A patient can request a restriction o the uses their PHI. These requests must be in writing and forwarded immediately to the Facility Privacy Officer for review. Only the FPO or his designee may review and act on a request for restriction. Right to Request Confidential Communications A patient has the right to request Confidential Communications by alternative means or to alternative locations. Requests for Confidential Communications must be accommodated by the hospital if reasonable. Confidential Communications pertains to all future correspondence and communications related to the specific visit(s) stated in the request. Verify Requestor It is every employee's responsibility to verify the identity of any person or entity outside the facility that is unknown to the employee and who is requesting protected health information (PHI) either in person, verbally or via written request. Each patient will be notified at registration that the hospital will use a password to verify that the individual calling is authorized to receive information beyond that which is available in the directory. The password will be the last four digits of the patient's Account Number. This number is readily available to the patient and all clinicians. Family/friends requesting updates on a current patient must give the patients last four digits of the Account number. It is the patient's responsibility to give this information to family/friends. The exceptions to the verification requirement are: 1. Release of information from the hospital directory to visitors requesting the patient by name (the patient has opted in our facility directory). 2. Release for disaster relief purposes; and 3. Release for purposes of care and notification purposes, which may include: o Use or disclosure of protected health information to notify a family member, a personal representative of the individual, or another person responsible for the care of the individual, of the individual's location, general condition, or death;or o In the event of an emergency or the patient's incapacity, professional judgment should determine whether the disclosure is in the best interests of the patient's and, if so, disclose only the protected health information that is directly relevant to the person's involvement with the patient's health care without verification of the requestor. Approved methods of identity verification are any one of the following three options: 1. Valid State/Federal Issue Photo ID (i.e.: passport, driver license, etc) 11

12 2. Requestor is able to provide a minimum of three information items from the acceptable identifiers" list. The information can be provided in written or verbal fashion. 3. Patient Social Security (required) and Patient Date of Birth (required) and 1 of the below. Verify Requestor Any one of the following: 1. Account Number 2. Street Address 3. Insurance Carrier Name 4. Insurance Policy Number 5. Medical Record Number 6. Birth Certificate 7. Insurance Card Positive match of signature to a signature on file e.g., request received from patient via fax or mail and signature is compared to patient signature on conditions of admission. Unacceptable forms of identification for requestor verification are: 1. Employment ID 2. Student ID 3. Membership ID Cards 4. Generic Billing Statements (utility bills) 5. SSI Card 6. Credit Cards (photo or non-photo) In the event that there are insufficient acceptable identifiers available for verification of requestor, individuals releasing the PHI should use their professional judgment to determine whether or not to permit the release. The HIMS department can be contacted for assistance. The actions taken and the reasons for that action should be documented. 12

13 Henrico Doctors Hospital HIPAA Training Answer Sheet - All Levels ** PLEASE TURN IN ANSWER SHEET ONLY** Name (print) Date Question 1 Question 21 Question 2 Question 22 Question 3 Question 23 Question 4 Question 24 Question 5 Question 25 Question 6 Question 26 Question 7 Question 27 Question 8 Question 28 Question 9 Question 29 Question 10 Question 30 Question 11 Question 12 Question 13 Question 14 Question 15 Question 16 Question 17 Question 18 Question 19 Question 20 13

14 HIPAA LEVEL 2 TEST QUESTIONS 1) Who is our Facility Privacy Official? A. Thomas Frist B. Lou Canulli C. Ron Buchanan 2) Protected health information includes all of the following except: A. Patient financial information B. Clinical information C. User ID D. Patient birth date 3) Who is responsible for protecting patient's individually identifiable health information? A. CEO B. FPO C. Everyone 4) It would be appropriate to release patient information to: A. The patient's (non-attending) physician brother B. The transferring hospital's personnel checking on the patient C. The respiratory therapy personnel doing an ordered procedure D. A retired physician who is a friend of the family 5) What is the standard for accessing patient information? A. A need to know for the performance of your job B. If a physician asks you the diagnosis of the patient C. Just because you are curious D. You are a relative of the patient 6) The acronym for HIPAA stands for: A. Health Information Protection and Accountability Act B. Health Insurance Portability and Accountability Act C. Health Information Publication and Accumulation Act D. How I Protect Patient Access 7) It s appropriate to place a "post it" note with a patient's medical record number written on it in the trashcan. 8) It is inappropriate for family/patient/employee to view/access their own medical record online via Meditech. 9) Employees are given access to Meditech according to their professional responsibilities. 10) The patient has the right to voice complaints without compromising care concerning: A. Quality of Care B. Customer Service C. Timeliness of Service D. Privacy E. All of the above 14

15 11) It is against hospital policy for a patient to read their medical record. 12) It is your professional responsibility to maintain the security of the chart, even while transporting the patient from one location to another. 13) How do you find a patient location for a visitor? A. Contact the information desk B. Look up in PCI C. Call the nursing unit D. Call Patient Access 14) Confidential Information must not be shared with another unless the recipient has: A) An OK from a doctor B) The need to know C) Permission from Human Resources D) All of the above 15) A visitor who asks for a patient by name may receive the following information except: A) Patient name B) Patient condition in general terms (e.g. stable, critical, etc.) C) Patient location D) Patient diagnosis 16) How long must the hospital keep accounting of disclosures? A) 1 year B) 6 years C) 6 months D) 10 years 17) What is the time frame for responding to a patient request for accounting of disclosure? A. 7 days B. 25 days C. 30 days D. 60 days 18) An Accounting of Disclosures must include all releases of information for the patient. 19) The patient s right to amend their Protected Health Information (PHI) includes: A. Patient s right to add PHI in the designated record set B. Patient s right to delete PHI from the designated record set C. Patient s right to remove PHI from designated record set D. None of the above 20) The facility has a right to deny a request to amend their PHI. 15

16 21) The facility must act on a written request to amend no later than: A. 24 hours B. 15 days C. 60 days D. Within 7 business days 22) The hospital directory may contain all the following information except: A. Patient name B. Patient condition in general terms (e.g. stable, critical, etc) B. Patient location C. Patient Social Security number 23) If a patient invokes their right to opt out of the hospital directory they will be able to receive cards and flowers. 24) If a patient has opted out of the Hospital Directory, it is okay to tell a family member the patient s room number or location as long as you can verify that the person inquiring is a family member. 25) Patients do have a right to request a copy of their health information. 26) There is no fee to copy health information 27) An acceptable ID to verify a requestor for PHI when the patient is no longer in-house is: A. Valid drivers license B. Credit Card C. Membership ID card D. Ukrops Card 28) In order to release information about a patient in the hospital to a family member we must verify the requestor has authorization to receive the information by asking for the password which is: A. Date of Birth B. Last four digits of the Account Number C. Street address of the patient D. A photo ID 29) Request for privacy restrictions of a medical record must be made in writing to the: A. Facility Privacy Official (FPO) B. Ethics and Compliance Officer (ECO) C. Director of Health Information Management (HIM) D. Attending Physician 30) A Notice of Privacy Practices must be given only to those patients who ask for it A. True B. False 16