Question 1

The HIPAA security standards include:

Accepted Answer

A)  physical safeguards. 
B)  administrative safeguards. 
C)  technical safeguards. 
D)  All of the above 
E)  None of the above 
A)  physical safeguards. 
B)  administrative safeguards. 
C)  technical safeguards. 
D)  All of the above 
E)  None of the above D

Question 2

When a facility meets the requirements of the Joint Commission, Medicare may deem that it has also met the COP requirements, thereby granting ________ status.

Accepted Answer

A)  incorporated 
B)  deemed 
C)  recognized 
D)  accreditation 
E)  conditional 
A)  incorporated 
B)  deemed 
C)  recognized 
D)  accreditation 
E)  conditional B

Question 3

The HIPAA Security Rule is enforced by the:

Accepted Answer

A)  OCR. 
B)  AMA. 
C)  AHIMA. 
D)  HIPAA. 
E)  CMS. 
A)  OCR. 
B)  AMA. 
C)  AHIMA. 
D)  HIPAA. 
E)  CMS. E

Question 4

Healthcare providers, insurance companies, and clearinghouses are referred to by HIPAA documents as:

Accepted Answer

A)  covered entities. 
B)  providers. 
C)  contractors. 
D)  affiliates. 
E)  partners. 
A)  covered entities. 
B)  providers. 
C)  contractors. 
D)  affiliates. 
E)  partners.

Question 5

Healthcare facilities are required to report certain incidents such as:

Accepted Answer

A)  routine surgical procedures. 
B)  gunshot wounds. 
C)  child abuse. 
D)  Both A and B 
E)  Both B and C 
A)  routine surgical procedures. 
B)  gunshot wounds. 
C)  child abuse. 
D)  Both A and B 
E)  Both B and C

Question 6

A patient agreement to receive medical treatment after having been provided with benefits and risks is known as:

Accepted Answer

A)  consent. 
B)  commitment. 
C)  authorization. 
D)  informed consent. 
E)  acknowledgement. 
A)  consent. 
B)  commitment. 
C)  authorization. 
D)  informed consent. 
E)  acknowledgement.

Question 7

Licenses are required for:

Accepted Answer

A)  providers who prescribe drugs. 
B)  operation of a hospital pharmacy. 
C)  pharmacists who dispense drugs. 
D)  caregivers who administer drugs. 
E)  All of the above 
A)  providers who prescribe drugs. 
B)  operation of a hospital pharmacy. 
C)  pharmacists who dispense drugs. 
D)  caregivers who administer drugs. 
E)  All of the above

Question 8

All states require healthcare facilities to be:

Accepted Answer

A)  registered. 
B)  accredited. 
C)  licensed. 
D)  bonded. 
E)  regulated. 
A)  registered. 
B)  accredited. 
C)  licensed. 
D)  bonded. 
E)  regulated.

Question 9

Which of the following are required on an authorization form?

Accepted Answer

A)  Expiration date 
B)  What can be disclosed 
C)  Date signed 
D)  Who the information may be disclosed to 
E)  All of the above 
A)  Expiration date 
B)  What can be disclosed 
C)  Date signed 
D)  Who the information may be disclosed to 
E)  All of the above

Question 10

Which of the following is a system developed to pay a fixed amount for inpatient stays based on the type of case rather than the length of the stay?

Accepted Answer

A)  Discharge payment system 
B)  Provider payment system 
C)  Prospective discharge system 
D)  Patient payment system 
E)  Prospective payment system 
A)  Discharge payment system 
B)  Provider payment system 
C)  Prospective discharge system 
D)  Patient payment system 
E)  Prospective payment system

Question 11

Under HIPAA Privacy Rule, a healthcare provider may disclose PHI without patient authorization in all of the following situations EXCEPT:

Accepted Answer

A)  as part of a claim for payment from a health plan. 
B)  to a nursing home a patient is being transferred to. 
C)  when consulted to provide healthcare to a patient. 
D)  to a specialist a patient is being referred to. 
E)  to any family members. 
A)  as part of a claim for payment from a health plan. 
B)  to a nursing home a patient is being transferred to. 
C)  when consulted to provide healthcare to a patient. 
D)  to a specialist a patient is being referred to. 
E)  to any family members.

Question 12

Companies that have a contract to handle claims for Medicare and Medicaid for a state or region are called:

Accepted Answer

A)  insurance companies. 
B)  fiscal intermediaries. 
C)  consultants. 
D)  government offices. 
E)  healthcare contractors. 
A)  insurance companies. 
B)  fiscal intermediaries. 
C)  consultants. 
D)  government offices. 
E)  healthcare contractors.

Question 13

Which HIPAA identifier has NOT yet been implemented?

Accepted Answer

A)  National Provider Identifier 
B)  Employer Identifier 
C)  National Health Plan Identifier 
D)  All of the above 
E)  None of the above 
A)  National Provider Identifier 
B)  Employer Identifier 
C)  National Health Plan Identifier 
D)  All of the above 
E)  None of the above

Question 14

The abbreviation for Centers for Medicare and Medicaid Services is:

Accepted Answer

A)  CMS. 
B)  CMMS. 
C)  CMSS. 
D)  CCMS. 
E)  CCMs. 
A)  CMS. 
B)  CMMS. 
C)  CMSS. 
D)  CCMS. 
E)  CCMs.

Question 15

Medicare and Medicaid began in:

Accepted Answer

A)  1950. 
B)  1955. 
C)  1960. 
D)  1965. 
E)  1970. 
A)  1950. 
B)  1955. 
C)  1960. 
D)  1965. 
E)  1970.

Question 16

The primary goal of the Security Rule is to protect the integrity of the:

Accepted Answer

A)  healthcare providers. 
B)  EPHI. 
C)  healthcare facility. 
D)  PHI. 
E)  rules and regulations. 
A)  healthcare providers. 
B)  EPHI. 
C)  healthcare facility. 
D)  PHI. 
E)  rules and regulations.

Question 17

According to the Privacy Rule, a person authorized to act on behalf of an individual to make healthcare related decisions is a(n):

Accepted Answer

A)  personal representative. 
B)  guardian. 
C)  legal representative. 
D)  benefactor. 
E)  emergency contact. 
A)  personal representative. 
B)  guardian. 
C)  legal representative. 
D)  benefactor. 
E)  emergency contact.

Question 18

A patient has the right to know if his or her information was disclosed by a healthcare facility.

Accepted Answer

A) True 
 B)False

Question 19

A(n) ________ requires the patient's permission to disclose PHI.

Accepted Answer

A)  authorization 
B)  consent 
C)  requirement 
D)  disclosure 
E)  None of the above 
A)  authorization 
B)  consent 
C)  requirement 
D)  disclosure 
E)  None of the above

Question 20

All of the following are implementation specifications in the Security Management Process EXCEPT:

Accepted Answer

A)  Risk Management. 
B)  Patient Information Review. 
C)  Risk Analysis. 
D)  Sanction Policy. 
E)  Information System Activity Review. 
A)  Risk Management. 
B)  Patient Information Review. 
C)  Risk Analysis. 
D)  Sanction Policy. 
E)  Information System Activity Review.

The HIPAA security standards include:

When a facility meets the requirements of the Joint Commission, Medicare may deem that it has also met the COP requirements, thereby granting ________ status.

The HIPAA Security Rule is enforced by the:

Healthcare providers, insurance companies, and clearinghouses are referred to by HIPAA documents as:

Healthcare facilities are required to report certain incidents such as:

A patient agreement to receive medical treatment after having been provided with benefits and risks is known as:

Licenses are required for:

All states require healthcare facilities to be:

Which of the following are required on an authorization form?

Which of the following is a system developed to pay a fixed amount for inpatient stays based on the type of case rather than the length of the stay?

Under HIPAA Privacy Rule, a healthcare provider may disclose PHI without patient authorization in all of the following situations EXCEPT:

Companies that have a contract to handle claims for Medicare and Medicaid for a state or region are called:

Which HIPAA identifier has NOT yet been implemented?

The abbreviation for Centers for Medicare and Medicaid Services is:

Medicare and Medicaid began in:

The primary goal of the Security Rule is to protect the integrity of the:

According to the Privacy Rule, a person authorized to act on behalf of an individual to make healthcare related decisions is a(n):

A patient has the right to know if his or her information was disclosed by a healthcare facility.

A(n) ________ requires the patient's permission to disclose PHI.

All of the following are implementation specifications in the Security Management Process EXCEPT:

Healthcare Delivery Fundamentals

Health Information Professionals

Fundamentals of Information Systems

Healthcare Records

Organization, Storage, and Management of Health Records

Electronic Health Records

Additional Health Information Systems

Healthcare Coding and Reimbursement

Healthcare Transactions and Billing

Health Statistics, Research, and Quality Improvement

Management and Decision Support Systems

Filters

Exam 3: Accreditation, Regulation, and Hipaa

The HIPAA security standards include:

When a facility meets the requirements of the Joint Commission, Medicare may deem that it has also met the COP requirements, thereby granting ________ status.

The HIPAA Security Rule is enforced by the:

Healthcare providers, insurance companies, and clearinghouses are referred to by HIPAA documents as:

Healthcare facilities are required to report certain incidents such as:

A patient agreement to receive medical treatment after having been provided with benefits and risks is known as:

Licenses are required for:

All states require healthcare facilities to be:

Which of the following are required on an authorization form?

Which of the following is a system developed to pay a fixed amount for inpatient stays based on the type of case rather than the length of the stay?

Under HIPAA Privacy Rule, a healthcare provider may disclose PHI without patient authorization in all of the following situations EXCEPT:

Companies that have a contract to handle claims for Medicare and Medicaid for a state or region are called:

Which HIPAA identifier has NOT yet been implemented?

The abbreviation for Centers for Medicare and Medicaid Services is:

Medicare and Medicaid began in:

The primary goal of the Security Rule is to protect the integrity of the:

According to the Privacy Rule, a person authorized to act on behalf of an individual to make healthcare related decisions is a(n):

A patient has the right to know if his or her information was disclosed by a healthcare facility.

A(n) ________ requires the patient's permission to disclose PHI.

All of the following are implementation specifications in the Security Management Process EXCEPT:

Healthcare Delivery Fundamentals

Health Information Professionals

Fundamentals of Information Systems

Healthcare Records

Organization, Storage, and Management of Health Records

Electronic Health Records

Additional Health Information Systems

Healthcare Coding and Reimbursement

Healthcare Transactions and Billing

Health Statistics, Research, and Quality Improvement

Management and Decision Support Systems

Filters