The HIPAA Privacy Rule covers: (Select all that apply.) 4

Health care providers who conduct certain financial and administrative transactions electronically.

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.) 4

clearing (using software or hardware products to overwrite media with non-sensitive data).

purging (degaussing or exposing the media to a strong magnetic field in order to disrupt the recorded magnetic domains).

destroying (disintegration, pulverization, melting, incinerating, or shredding).

tossing into the trashcan or recycle bin.

A health care provider wants to disclose protected health information (PHI) about a student to a school nurse or physician. Does the HIPAA Privacy Rule allow this? 2

Yes. The HIPAA Privacy Rule allows covered health care providers to disclose PHI about students to school nurses, physicians, or other health care providers for treatment purposes, without the authorization of the student or student’s parent.

No. The HIPAA Privacy Rule mandates parental consent in this case.

In the event of a cyber-attack or similar emergency, an entity: (Select all that apply.) 3

Must execute its response and mitigation procedures and contingency plans.

Should report the crime to other law enforcement agencies.

Should report all cyber threat indicators to federal and information-sharing and analysis organizations (ISAOs).

Must report the breach to the Office of Civil Rights (OCR) as soon as possible, but no later than 60 days after the discovery of a breach affecting 500 or more individuals.

In determining the amount of any civil money penalty for violations of HIPAA, the following factors are considered: (Select all that apply.) 2

The nature and extent of the violation.

The nature and extent of the harm resulting from the violation.

The financial condition of the covered entity or business associate.

Such other matters as justice may require.

The history of prior compliance with the administrative simplification provisions, including violations, by the covered entity or business associate.

HIPAA Security and Privacy Training

University - Professional Development

•

20 Qs

Similar activities

Repair Quiz

Professional Development

•

15 Qs

PRE-TEST OPEX 02 - RCA

Professional Development

•

20 Qs

VIVO V17 ASSESSMENT

Professional Development

•

19 Qs

Application forms

University

•

18 Qs

#SQC2022INNOCREATIVATION

Professional Development

•

16 Qs

SQL Statements and Queries

Professional Development

•

15 Qs

Business and Professional Excellence

Professional Development

•

20 Qs

OBE Quiz

Professional Development

•

21 Qs

HIPAA Security and Privacy Training

Quiz

•

Professional Development

•

University - Professional Development

•

Practice Problem

•

Hard

Tricia VanCleef

Used 110+ times

FREE Resource

20 questions

Show all answers

MULTIPLE SELECT QUESTION

15 mins • 1 pt

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

maintain reasonable and appropriate administrative, technical, and physical safeguards for protecting electronic protected health information (e-PHI).

Ensure the confidentiality, integrity, and availability of all e-PHI they create, receive, maintain or transmit.

Identify and protect against reasonably anticipated threats to the security or integrity of the information.

Protect against reasonably anticipated, impermissible uses or disclosures.

Ensure compliance by their workforce.

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

physician

security official

police officer

custodian

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

True

False

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

Treatment purposes

Payment

Health care operations activities

All of the above

MULTIPLE SELECT QUESTION

15 mins • 1 pt

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

Marketing activities

Research

PHI sales and licensing

Information sharing needed for treatment

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

non-protected health information (non-PHI)

reverse PHI

regulated PHI

de-identified health information

MULTIPLE SELECT QUESTION

15 mins • 1 pt

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

absence of actual knowledge by the covered entity that the remaining information could be used alone or in combination with other information to identify the individual

removal of only patient name and date of birth

a formal determination by a qualified expert

the removal of 18 specified individual identifiers

Create a free account and access millions of resources

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

15 questions

Building Laws Quiz 4- BP344

Quiz

•

KG - Professional Dev...

20 questions

Petrochina Quiz

Quiz

•

Professional Development

20 questions

Prelim Exam for EDUC 61

Quiz

•

University

15 questions

Universal Design for Learning

Quiz

•

Professional Development

18 questions

Infallible Vedas (DYS 2)

Quiz

•

Professional Development

15 questions

REVISED CODE OF CONDUCT QUIZ BEE

Quiz

•

Professional Development

20 questions

Negotiable Instruments

Quiz

•

Professional Development

20 questions

Decision Making

Quiz

•

Professional Development

Popular Resources on Wayground

25 questions

Multiplication Facts

Quiz

•

5th Grade

15 questions

4:3 Model Multiplication of Decimals by Whole Numbers

Quiz

•

5th Grade

10 questions

The Best Christmas Pageant Ever Chapters 1 & 2

Quiz

•

4th Grade

12 questions

Unit 4 Review Day

Quiz

•

3rd Grade

20 questions

Christmas Trivia

Quiz

•

6th - 8th Grade

18 questions

Kids Christmas Trivia

Quiz

•

KG - 5th Grade

14 questions

Christmas Trivia

Quiz

•

5th Grade

15 questions

Solving Equations with Variables on Both Sides Review

Quiz

•

8th Grade

Discover more resources for Professional Development

9 questions

Principles of the United States Constitution

Interactive video

•

University

20 questions

Customer Service

Quiz

•

Professional Development

20 questions

NCCER Power Tools Quiz

Quiz

•

Professional Development

HIPAA Security and Privacy Training

20 questions

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

The HIPAA Privacy Rule covers: (Select all that apply.)⁴

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)⁴

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

HIPAA Security and Privacy Training

20 questions

The HIPAA Security Rule requires covered entities to: (Select all that apply.)4

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.4

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).4

A covered entity may disclose protected health information (PHI) without a patient's written permission for:1

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)1

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.1

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)1

The HIPAA Privacy Rule covers: (Select all that apply.)4

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)4

Create a free account and access millions of resources

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

The HIPAA Privacy Rule covers: (Select all that apply.)⁴

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)⁴