Chp Go-live Support - HIPAA Knowledge Quiz

11 Questions  I  By Deneac
Please take the quiz to rate it.

HIPAA Quizzes & Trivia
A passing grade of 80% or higher is required for all contractors coming aboard for CHP and must be completed at least 48 hours before arriving at the client site. After you complete the quiz, you MUST email your results page or certificate to [email protected] Com. The results are not automatically sent. Thank you and good luck! more

  
Changes are done, please start the quiz.


Questions and Answers

Removing question excerpt is a premium feature

Upgrade and get a lot more done!
  • 1. 
    Provide your full name and email address.

  • 2. 
    Which of the following is true regarding a healthcare company complying with the Security Standards?
    • A. 

      The company has to disclose healthcare information when the media requests it in writing

    • B. 

      The company doesn't have to train its workforce in security procedures

    • C. 

      The only data that's actually protected in e-PHI are the patient names

    • D. 

      The company has to protect its e-PHI against all reasonable threats


  • 3. 
    A doctor contracts with an accounting firm to handle her patient e-PHI billing. Which of the following statements is true regarding her relationship with her accounting business associate?
    • A. 

      The accounting firm must provide written documentation of its proper safeguards to protect the e-PHI she provides

    • B. 

      She must closely monitor the accounting firm's compliance with the Security Standards

    • C. 

      She can allow the business associate to transmit e-PHI on her behalf without restriction

    • D. 

      She isn't responsible for investigating concerns she has about the accounting firm's security measures


  • 4. 
    Dr. Sanchez is participating in a research study and needs to de-identify his patients' records before sending them to the research team. Which of the following methods could he use to properly de-identify the patients' information so it's not subject to Security Standards?
    • A. 

      Have his nurse review the records to determine if the risk of re-identification is low

    • B. 

      Remove all individually identifiable information

    • C. 

      Encrypt the patient's name only

    • D. 

      Use only patient demographics to identify the records


  • 5. 
    A healthcare company develops a plan to put into effect an addressable implementation specification, but determines that it's cost prohibitive. Does the company have to implement the addressable security standard?
    • A. 

      Yes, cost is irrelevant

    • B. 

      No, as long as it documents its decision in writing and implements an equivalent measure

    • C. 

      Yes, all implementation specifications must be implemented

    • D. 

      No, addressable implementation specifications are completely optional and may be skipped with no further action


  • 6. 
    Which of the following is a documentation requirement imposed by the Security Standards?
    • A. 

      A healthcare provider must review its documentation daily

    • B. 

      Policy documentation must be retained for 20 years or the life of the organization

    • C. 

      Security procedures developed by health insurance companies must be made available to every employee, whether or not they are subject to them

    • D. 

      Every covered healthcare organization must implement appropriate measures to comply with HIPAA's safeguards


  • 7. 
    One of the required specifications of the access control standard is to
    • A. 

      Use voice and eye recognition software

    • B. 

      Use encryption software

    • C. 

      Assign unique names or numbers to system users

    • D. 

      Implement automatic logoff for computers


  • 8. 
    One of the Security Standards' goals is to protect e-PHI data from being altered or destroyed in an unauthorized way. Which of the following standards covers this goal?
    • A. 

      Access controls

    • B. 

      Integrity

    • C. 

      Authentication

    • D. 

      Transmission


  • 9. 
    Which of the following must a company implement to meet the security management process standard?
    • A. 

      Risk analysis to identify potential vulnerabilities

    • B. 

      Surveillance cameras to monitor computer access

    • C. 

      Monitoring systems to track login attempts and discrepancies

    • D. 

      A strict dismissal policy for employees who fail to comply with any security measure


  • 10. 
    A healthcare company develops a plan to put into effect an addressable implementation specification, but determines that it's cost prohibitive. Which standard covers this type of security?
    • A. 

      Evaluation standard

    • B. 

      Security awareness standard

    • C. 

      Security incident procedures standard

    • D. 

      Contingency plan standard


  • 11. 
    Which of the following standards deals with the removal of any electronic media that contains e-PHI?
    • A. 

      Facility access control standard

    • B. 

      Device and media controls standard

    • C. 

      Workstation security standard

    • D. 

      Ergonomic comfort standard


Back to top

Removing ad is a premium feature

Upgrade and get a lot more done!
Take Another Quiz
We have sent an email with your new password.