Scavenger Hunt: Annual HIPAA Certification

10 Questions | By Hfuemmeler | Last updated: Jan 16, 2013 | Total Attempts: 140

Questions

Settings

This scavenger hunt will test your knowledge and ability to locate vital HIPAA information. You are encouraged to use the pages available to you via the shared links on del. Icio. Us to locate information as needed.

Questions and Answers

1.

The Privacy Rule applies to all forms of individuals' protected health information, whether: electronic, written, or oral.
- A.
  
  Electronic
- B.
  
  Written
- C.
  
  Oral
- D.
  
  All of the above
- E.
  
  A and B only
2.

By enforcing the Privacy and Security Rules, ______ helps to protect the privacy of your health information.
- A.
  
  Health and Human Services (HHS)
- B.
  
  Office for Civil Rights (OCR)
- C.
  
  Federal Bureau of Investigation (FBI)
- D.
  
  Central Intelligence Agency (CIA)
3.

The HITECH Notification Rule requires health care providers and other HIPAA covered entities to promptly notify affected individuals of a breach, as well as the HHS Secretary and the media in cases where a breach affects more than ____ individuals.
- A.
  
  100
- B.
  
  250
- C.
  
  500
- D.
  
  1000
4.

According to the HITECH Enforcement Rule, the maximum penalty amount for all violations of an identical provision is:
- A.
  
  $10,000
- B.
  
  $25,000
- C.
  
  $1 million
- D.
  
  $1.5 million
5.

The HIPAA Privacy Rule protects the privacy of individually identifiable health information, called ____________.
- A.
  
  Protected Health Information
- B.
  
  Personal Health Information
- C.
  
  Unique Health Information
- D.
  
  Substantial Health Information
6.

The Security Rule protects a subset of information covered by the Privacy Rule, which is all individually identifiable health information a covered entity creates, receives, maintains or transmits in _________ form.
- A.
  
  Oral
- B.
  
  Paper
- C.
  
  Electronic
- D.
  
  All of the above
7.

The purpose of the Security Rule is to:
- A.
  
  Ensure the confidentiality, integrity, and availability of all e-PHI they create, receive, maintain or transmit
- B.
  
  Identify and protect against reasonably anticipated threats to the security or integrity of the information
- C.
  
  Protect against reasonably anticipated, impermissible uses or disclosures
- D.
  
  Ensure compliance by their workforce
- E.
  
  All of the above
8.

A covered entity may use and disclose protected health information for its own:
- A.
  
  Treatment
- B.
  
  Payment
- C.
  
  Health care operations
- D.
  
  Curiosity
- E.
  
  A, B, and C only
9.

According to HIPAA, a health care provider is a:
- A.
  
  Health insurance company
- B.
  
  Physician
- C.
  
  HMO
- D.
  
  None of the above
10.

A covered entity must develop and implement policies and procedures to reasonably limit uses and disclosures to the ___________________.
- A.
  
  Justifiable limits
- B.
  
  Whatever is needed
- C.
  
  Minimum necessary
- D.
  
  Manual information