Weekend Sale - Limited Time 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: sntaclus

examout.co

The Privacy Rule interacts with Federal and State laws by:

A.

Establishing an orderly hierarchy where HIPAA applies, then other Federal law, then State law.

B.

Defining privacy to be a national interest that is best protected by Federal law

C.

Allowing State privacy laws to provide a cumulative effect lower than HIPAA.

D.

Mandating that Federal laws preempt State laws regarding privacy.

E.

Establishing a "floor" for privacy protection.

Select the best example of a business associate (if they had access to PHI).

A.

Accountants

B.

Hospital employees

C.

A covered entity's internal IT department

D.

CEO of the covered entity

E.

The covered entity's billing service department

Which one of the following implementation specifications is associated with the Facility Access Control standard?

A.

Integrity Controls

B.

Emergency Access Procedure

C.

Access Control and Validation Procedures

D.

Security Reminders

E.

Security Policy

Assigning a name and/or number for identifying and tracking users is required by which security rule implementation specification?

A.

Access Authentication

B.

Integrity Controls

C.

Authorization and/or Supervision

D.

Data Authentication

E.

Unique User Identification

A valid Notice of Privacy Practices must:

A.

Detail specifically all activities that are considered a use or disclosure.

B.

Describe in plain language what is meant by treatment, payment, and health care operations (TPO)

C.

Inform the individual that protected health information (PHI) may only be used for valid medical research.

D.

Inform the individual that this version of the Notice will always cover them, regardless of subsequent changes.

E.

State the expiration date of the Notice.

Select the FALSE statement regarding the transaction rule.

A.

The Secretary is required by statue to Impose penalties of at least $100 per violation on any person or entity that fails to comply with a standard except that the total amount imposed on any one person in each calendar year may not exceed $1,000.000 for violations of one requirement

B.

Health plans are required to accept all standard transactions.

C.

Health plans may not require providers to make changes or additions to standard transactions

D.

Health plans may not refuse or delay payment of standard transactions.

E.

If additional information is added to a standard transaction it must not modify the definition, condition, intent, or use of a data element

Which HIPAA Title is fueling initiatives within organizations to address health care priorities in the areas of transactions, privacy, and security?

A.

Title I.

B.

Title II

C.

Title III

D.

Title IV.

E.

Title V.

This code set describes drugs:

A.

ICD-9-CM. Volumes 1 and 2.

B.

CPT-4.

C.

CDT.

D.

ICD-9-CM. Volume 3.

E.

NDC.

Select the correct statement regarding the requirements for oral communication in the HIPAA regulations.

A.

Covered entities must reasonably safeguard PHI, including oral communications, from any intentional or unintentional use or disclosure that is in violation of the Privacy Rule.

B.

Covered entities must have in place appropriate administrative, technical, and physical safeguards to protect the privacy of de-Identified data.

C.

Covered entities are prohibited from marketing through oral communications

D.

The Privacy Rule requires covered entities to document any information, including oral communications, which is used or disclosed for TPO purposes.

E.

The Privacy Rule will often require major structural changes, such as soundproof rooms and encryption of telephone systems, to provide the "reasonable safeguards" of oral communications required by the regulations

Select the correct statement regarding the definition of the term "disclosure" as used in the HIPAA regulations.

A.

"Disclosure" refers lo employing IIHI within a covered entity.

B.

"Disclosure" refers to utilizing, examining, or analyzing IIHI within a covered entity.

C.

"Disclosure" refers to the release, transfer, or divulging of IIHI to another covered entity.

D.

"Disclosure" refers to the movement of information within an organization.

E.

"Disclosure" refers to the sharing of information within the covered entity.