The HIPAA Privacy Rule covers: (Select all that apply.) 4

Health care providers who conduct certain financial and administrative transactions electronically.

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.) 4

clearing (using software or hardware products to overwrite media with non-sensitive data).

purging (degaussing or exposing the media to a strong magnetic field in order to disrupt the recorded magnetic domains).

destroying (disintegration, pulverization, melting, incinerating, or shredding).

tossing into the trashcan or recycle bin.

A health care provider wants to disclose protected health information (PHI) about a student to a school nurse or physician. Does the HIPAA Privacy Rule allow this? 2

Yes. The HIPAA Privacy Rule allows covered health care providers to disclose PHI about students to school nurses, physicians, or other health care providers for treatment purposes, without the authorization of the student or student’s parent.

No. The HIPAA Privacy Rule mandates parental consent in this case.

In the event of a cyber-attack or similar emergency, an entity: (Select all that apply.) 3

Must execute its response and mitigation procedures and contingency plans.

Should report the crime to other law enforcement agencies.

Should report all cyber threat indicators to federal and information-sharing and analysis organizations (ISAOs).

Must report the breach to the Office of Civil Rights (OCR) as soon as possible, but no later than 60 days after the discovery of a breach affecting 500 or more individuals.

In determining the amount of any civil money penalty for violations of HIPAA, the following factors are considered: (Select all that apply.) 2

The nature and extent of the violation.

The nature and extent of the harm resulting from the violation.

The financial condition of the covered entity or business associate.

Such other matters as justice may require.

The history of prior compliance with the administrative simplification provisions, including violations, by the covered entity or business associate.

HIPAA Security and Privacy Training

University - Professional Development

•

20 Qs

Similar activities

AKG 4

University - Professional Development

•

19 Qs

FOL. UF1 AEA2. COWORKING.

Professional Development

•

15 Qs

PTY 104 Piagets Theory of Cognitive Development

University - Professional Development

•

20 Qs

CPA MS-Office Hotkeys Quiz

8th Grade - Professional Development

•

21 Qs

2PM Pub Quiz Sample Questions

Professional Development

•

15 Qs

CISG- Công ước viên 1980

University

•

15 Qs

Silver Label Course 301-302

Professional Development

•

15 Qs

Revenue Recognition Quiz

12th Grade - University

•

15 Qs

HIPAA Security and Privacy Training

Quiz

•

Professional Development

•

University - Professional Development

•

Practice Problem

•

Hard

Tricia VanCleef

Used 110+ times

FREE Resource

20 questions

Show all answers

MULTIPLE SELECT QUESTION

15 mins • 1 pt

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

maintain reasonable and appropriate administrative, technical, and physical safeguards for protecting electronic protected health information (e-PHI).

Ensure the confidentiality, integrity, and availability of all e-PHI they create, receive, maintain or transmit.

Identify and protect against reasonably anticipated threats to the security or integrity of the information.

Protect against reasonably anticipated, impermissible uses or disclosures.

Ensure compliance by their workforce.

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

physician

security official

police officer

custodian

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

True

False

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

Treatment purposes

Payment

Health care operations activities

All of the above

MULTIPLE SELECT QUESTION

15 mins • 1 pt

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

Marketing activities

Research

PHI sales and licensing

Information sharing needed for treatment

MULTIPLE CHOICE QUESTION

15 mins • 1 pt

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

non-protected health information (non-PHI)

reverse PHI

regulated PHI

de-identified health information

MULTIPLE SELECT QUESTION

15 mins • 1 pt

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

absence of actual knowledge by the covered entity that the remaining information could be used alone or in combination with other information to identify the individual

removal of only patient name and date of birth

a formal determination by a qualified expert

the removal of 18 specified individual identifiers

Access all questions and much more by creating a free account

Create resources

Host any resource

Get auto-graded reports

Continue with Google

Continue with Email

Continue with Classlink

Continue with Clever

or continue with

Microsoft

Apple

Others

Already have an account?

Similar Resources on Wayground

20 questions

Business Writing

Quiz

•

Professional Development

20 questions

Renewable Energy - TED-Ed

Quiz

•

10th Grade - Professi...

20 questions

SERGEANTS OPERATIONAL COURSE - POWERS AND ROLE OF THE PCSO

Quiz

•

Professional Development

20 questions

Workplace Inspection

Quiz

•

Professional Development

15 questions

Chapter 7 Quiz

Quiz

•

University

15 questions

Marketing and Advertising

Quiz

•

Professional Development

16 questions

Plans & Maxis Device Contract

Quiz

•

Professional Development

15 questions

BIR RDO 27 Caloocan Transfer Tax on Estate and Donation

Quiz

•

University - Professi...

Popular Resources on Wayground

8 questions

2 Step Word Problems

Quiz

•

KG - University

20 questions

Comparing Fractions

Quiz

•

4th Grade

15 questions

Fractions on a Number Line

Quiz

•

3rd Grade

20 questions

Equivalent Fractions

Quiz

•

3rd Grade

25 questions

Multiplication Facts

Quiz

•

5th Grade

10 questions

Latin Bases claus(clois,clos, clud, clus) and ped

Quiz

•

6th - 8th Grade

$fractions$

22 questions

fractions

Quiz

•

3rd Grade

7 questions

The Story of Books

Quiz

•

6th - 8th Grade

Discover more resources for Professional Development

10 questions

How to Email your Teacher

Quiz

•

Professional Development

HIPAA Security and Privacy Training

20 questions

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

The HIPAA Privacy Rule covers: (Select all that apply.)⁴

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)⁴

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

HIPAA Security and Privacy Training

20 questions

The HIPAA Security Rule requires covered entities to: (Select all that apply.)4

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.4

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).4

A covered entity may disclose protected health information (PHI) without a patient's written permission for:1

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)1

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.1

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)1

The HIPAA Privacy Rule covers: (Select all that apply.)4

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)4

Access all questions and much more by creating a free account

Similar Resources on Wayground

Popular Resources on Wayground

Discover more resources for Professional Development

The HIPAA Security Rule requires covered entities to: (Select all that apply.)⁴

A covered entity must designate a ___________________ who is responsible for developing and implementing its security policies and procedures.⁴

The HIPAA Security Rule requires a covered entity to implement policies and procedures for authorizing access to e-PHI only when such access is appropriate based on the user or recipient's role (role-based access).⁴

A covered entity may disclose protected health information (PHI) without a patient's written permission for:¹

A covered entity must obtain the patient's written authorization for any use or disclosure of protected health information (PHI) in which circumstances? (Select all that apply.)¹

The Privacy Rule does not restrict the use or disclosure of ____________________________, which neither identifies nor provides a reasonable basis to identify an individual.¹

Protected health information (PHI) is considered de-identified by HIPAA Privacy Rule standards by: (Select all that apply.)¹

The HIPAA Privacy Rule covers: (Select all that apply.)⁴

Examples of proper disposal methods of protected health information (PHI) may include: (Select all that apply.)⁴