Weekend Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

examout.co

ABC Hospital implements policies and procedures to ensure that all members of its workforce have appropriate access to electronic protected health information. These policies and procedures satisfy which HIPAA security standard?

A.

Security Management Process

B.

Facility Access Control

C.

Security Awareness and Training

D.

Workforce Security

E.

Security Management Process

The code set that must be used to describe or identify inpatient hospital services and surgical procedures is:

A.

ICD-9-CM, Volumes land 2

B.

CPT-4

C.

CDT

D.

ICD-9-CM, Volume 3

E.

HCPCS

Which of the following is NOT a HIPAA national health care identifier?

A.

National Provider Identifier (NPI)

B.

Social Security Number (SSN)

C.

National Health Plan Identifier (PlanID)

D.

National Employer Identifier for Health Care (EIN)

E.

National Health Identifier for Individuals (NHII)

The code set that must be used to describe or identify outpatient physician services and procedures is:

A.

ICD-9-CM, Volumes 1 and 2

B.

CPT-4

C.

CDT

D.

ICD-9-CM, Volume 3

E.

NDC

One characteristic of the Notice of Privacy Practices is:

A.

H must be written in plain, simple language

B.

It must explicitly describe all uses of PHI

C.

A description about the usage of hidden security cameras for tracking patient movements for implementing privacy.

D.

A description of the duties of the individual

E.

A statement that the individual must abide by the terms of the Notice.

The scope of the Privacy Rule includes:

A.

All Employers.

B.

The Washington Publishing Company

C.

Disclosure of non-identifiable demographics.

D.

Oral disclosure of PHI.

E.

The prevention of use of de-identified information.

Select the correct statement regarding the administrative requirements of the HIPAA privacy rule.

A.

A covered entity must designate, and document, a privacy official, security officer and a HIPAAcompliance officer

B.

A covered entity must designate, and document, the same person to be both privacyofficial and as the contact person responsible for receiving complaints and providing further information about the notice required by the regulations.

C.

A covered entity must implement and maintain written or electronic policies and procedures with respect to PHI that are designed to comply with HIPM standards, implementation specifications and other requirements.

D.

A covered entity must train, and document the training of, at least one member of its workforce on the policies and procedures with regard to PHI as necessary and appropriate for them to carry out their function within the covered entity no later than the privacy rule compliance date

E.

A covered entity must retain the document required by the regulations for a period often years from the time of it's creation or the time it was last in effect, which ever is later.

Select the best statement regarding the definition of protected health information (PHI).

A.

PHI includes all individually identifiable health information (IIHI).

B.

PHI does not include physician's hand written notes about the patient's treatment.

C.

PHI does not include PHI stored on paper.

D.

PHI does not include PHI in transit.

E.

PHI includes de-identified health information

The Privacy Rule has broad administrative requirements. Which one of the following requirements is defined under the Privacy Rule?

A.

Designate a security officer.

B.

Document termination procedures.

C.

Use biometrics to authenticate transactions.

D.

Deploy tokens and smart cards to all medical personnel.

E.

Verify that business associates treat patient information respectfully.

HIPAA transaction standards apply to:

A.

Employee drug tests.

B.

Health component of auto insurance.

C.

Stored health information data.

D.

Eligibility inquiries.

E.

Non-reimbursed employee medical expenses.