Trivia Quiz Questions: Can You Pass This HIPAA Exam?

25 Questions | Total Attempts: 1850

SettingsSettingsSettings
Trivia Quiz Questions: Can You Pass This HIPAA Exam?

Did you know that HIPAA allows you to deem who may speak on your behalf in a case where you got into an accident that leaves you unable to communicate? A medical practitioner needs to know in detail what is expected of them when it comes to HIPAA. Can you pass this HIPAA exam? The best way to find out is if you press the start button and find out!


Related Topics
Questions and Answers
  • 1. 
    • A. 

      True

    • B. 

      False

  • 2. 
    Under HIPAA, information that could reasonably identify a patient includes:
    • A. 

      The zip code of the patient

    • B. 

      The patient's date of birth

    • C. 

      The patient's Medicare ID number

    • D. 

      All of the above

  • 3. 
    A patient has all of the following rights concerning their protected health information:
    • A. 

      The right to access the patient’s own patient care report by contacting your service’s privacy officer

    • B. 

      The right to review the patient care report before you submit it to the hospital

    • C. 

      None of the above

    • D. 

      Both A and B

  • 4. 
    Once an EMT generates a patient care report, s/he is permitted to do the following with the document:
    • A. 

      Make a personal copy for the EMT’s own files

    • B. 

      Share the report with another staff member at the organization who has a legitimate need to see the information for the purpose of billing the transport.

    • C. 

      Share the report with another coworker who was not on the trip and who is curious about the patient.

    • D. 

      Crumple the paper copies of the electronic patient care report you may have printed and toss them into the trash can once the EMT is through with it .

  • 5. 
    Which of the following uses would qualify as a proper use of PHI for “treatment” purposes under HIPAA?
    • A. 

      While sitting around at the office, a paramedic decides to access the file of a call he was on a year ago because he is now curious after reading about the patient’s arrest for burglary in the newspaper .

    • B. 

      An EMT gets back to the station after responding to a motor vehicle accident and states to another EMT who was not on the call, “Man, was that guy messed up from the accident.”

    • C. 

      On the way to the hospital, the EMT in the patient compartment relays the condition of the patient via radio to the physician at the emergency department.

    • D. 

      As he is unloading the patient at the hospital, EMT Smith shouts, “Outta my way everyone, we have the City Mayor on this stretcher!”

  • 6. 
    Before submitting a claim for reimbursement, HIPAA requires that ambulance services and billing companies get express written permission from the patient to use his/her information for this purpose.
    • A. 

      True

    • B. 

      False

  • 7. 
    Which of the following is the best example of adherence to the “minimum necessary” rule?
    • A. 

      A billing professional dials a phone number she has for the patient and leaves a message on the answering machine regarding a bill and recounts all of the details about the patient transport.

    • B. 

      An EMT calls dispatch to request directions to the location of a facility where the crew is performing a routine, non-emergent transport and the EMT also asks dispatch to radio the name, date of birth, and social security number of the patient so that he has it for his records.

    • C. 

      Before conducting a quality improvement case review meeting, an ambulance service redacts all identifying information from patient care reports that is unnecessary for the review, including patient names, dates of birth, home addresses, etc.

    • D. 

      When arriving at the hospital, a paramedic relays the condition of a patient to the ED staff and also proceeds to tell them that “Mr. Smith would be on his last leg if it wasn’t for all of his inherited wealth to pay for his treatment.”

  • 8. 
    When does HIPAA state that a new notice of privacy practices (NPP) must be furnished to a patient who has already received a copy of your organization’s NPP?
    • A. 

      Every 12 months

    • B. 

      Any time a new crewmember treats the patient

    • C. 

      Whenever the patient asks for a copy of a PCR

    • D. 

      If your agency has revised its NPP since the last time the patient received it

  • 9. 
    If you do not provide the patient with a notice of privacy practices (NPP) at the time of transport, you have lost your ability to provide the NPP to the patient.
    • A. 

      True

    • B. 

      False

  • 10. 
    The following individuals would generally have the same rights as the patient with respect to accessing PHI:
    • A. 

      The patient’s legal guardian

    • B. 

      The patient’s power of attorney

    • C. 

      The parent of a minor patient

    • D. 

      All of the above

  • 11. 
    A healthcare organization is required to have a HIPAA Compliance Officer or Privacy Officer in place only if the organization:
    • A. 

      Treats over 5,000 patients a year

    • B. 

      Deals with electronic health records

    • C. 

      Meets the definition of a “covered entity” under HIPAA

    • D. 

      Has over 50 employees

  • 12. 
    A patient has a right to request that your organization amend his protected health information (PHI) if he feels the information is inaccurate.
    • A. 

      True

    • B. 

      False

  • 13. 
    If you witness an incident that may qualify as a potential HIPAA violation, you should only report that incident if you are absolutely certain that there has been an improper use or disclosure of PHI.
    • A. 

      True

    • B. 

      False

  • 14. 
    Which of the following statements are false?
    • A. 

      It would be a HIPAA violation to load more than one patient into an ambulance at a time because each patient could overhear protected health information (PHI) about the other patient.

    • B. 

      It is ok to call into a receiving facility to relay a medical report to the ED staff on your incoming patient.

    • C. 

      HIPAA permits the use of radio communications to relay PHI even if the public can monitor the frequencies

    • D. 

      Communication centers may freely relay PHI to responding agencies over the airwaves for treatment purposes

  • 15. 
    HIPAA permits the release of PHI to law enforcement officers without patient consent, pursuant to a valid:
    • A. 

      Subpoena

    • B. 

      Summons

    • C. 

      Search Warrant

    • D. 

      All of the above

  • 16. 
    If a police officer approaches you to ask you for protected health information (PHI) about a patient who is the victim of a crime, and the patient is stable, all of the following courses of action would be appropriate, except:
    • A. 

      Asking the patient’s permission to give PHI to the officer

    • B. 

      Informing the police officer that he may speak with the victim so long as it would not impede care.

    • C. 

      Telling the patient that a police officer needs medical information about him and that the patient has no choice but to answer all of the officer’s questions about his medical condition.

    • D. 

      Asking the patient whether she wants to speak with the police officer.

  • 17. 
    If you are approached by law enforcement and you are unsure as to whether HIPAA permits disclosure of PHI under the circumstances, you should:
    • A. 

      Contact the HIPAA Compliance Officer at your organization to get clarification on the matter.

    • B. 

      Err on side of disclosing the information that the officer needs because he is a law enforcement agent

    • C. 

      Release only demographic information about the patient

    • D. 

      Release only general information about the patient’s condition

  • 18. 
    HIPAA permits you to release PHI to the media without patient authorization when you are merely confirming facts.
    • A. 

      True

    • B. 

      False

  • 19. 
    Posting information on the Internet about motor vehicle accident victims you treated while on duty is acceptable if:
    • A. 

      You only post pictures of the patients involved, with no names or other patient identifying information with the images, as long as their faces are not recognizable.

    • B. 

      You only post generic information about the accident and extent of the victims’ injuries

    • C. 

      You ensure that your profile is set to private so only your friends can see the information that you have posted

    • D. 

      None of the above is acceptable

  • 20. 
    A friend of a patient can be permitted to ride in the ambulance with the patient if the patient indicates that he does not object to having that person ride along.
    • A. 

      True

    • B. 

      False

  • 21. 
    When working with other EMS providers who are also involved in treating the patient, you may share protected health information (PHI) with the other providers:
    • A. 

      Only if you have a business associate agreement in place with the other provider and they show you the agreement.

    • B. 

      Only if the other provider is a contracted business partner of your organization.

    • C. 

      If sharing the information is necessary for the treatment of the patient.

    • D. 

      None of the above

  • 22. 
    You are permitted to convey protected health information (PHI) about a patient to an individual at a receiving facility who is involved in the patient’s care through the following method(s):
    • A. 

      Verbally

    • B. 

      Over the radio

    • C. 

      By handing the receiving facility a patient care report

    • D. 

      All of the above

  • 23. 
    EMS providers may ask sending and receiving facilities for protected health information (PHI) about a patient they are transporting to another facility because:
    • A. 

      Generally these facilities have a contractual arrangement with the ambulance services that perform transports for them.

    • B. 

      HIPAA allows PHI to be freely shared between healthcare providers who are treating the patient

    • C. 

      EMS providers are required by HIPAA to gather as much PHI about a patient as they can.

    • D. 

      If the patient wants to look at his record from the facility at some point in the future, the ambulance service is obligated under HIPAA to provide it to the patient .

  • 24. 
    Billing personnel may not discuss protected health information (PHI) with a patient concerning the patient’s ambulance transport because billing staff are not healthcare providers.
    • A. 

      True

    • B. 

      False

  • 25. 
    Covered entities are required to implement which of the following safeguards regarding electronic protected health information (PHI):
    • A. 

      Physical safeguards to protect things like computer file servers and other physical file locations.

    • B. 

      Technical safeguards such as password security, automatic logoff features and other security measures.

    • C. 

      Administrative safeguards such as policies and procedures about protecting electronic PHI that should be followed by all workforce members at the organization

    • D. 

      All of the above.