RHIA 2022 Domain 2, Practice Exam Questions – COMPLETE SOLUTION

A visitor walks through the work area and picks up a flash drive from an employee's desk. What security controls should have been implemented to prevent this security breach? a. Device and media controls b. Facility access controls c. Workstation use controls d. Workstation security controls - Correct Answer: B Facility access controls include establishing safeguards to prohibit the physical hardware and computer system itself from unauthorized access while ensuring that proper authorized access is allowed (Reynolds and Brodnik 2017a, 275-276). Which of the following is true regarding the development of health record destruction policies? a. All applicable laws must be considered. b. The organization must find a way not to destroy any health records. c. Health records involved in pending or ongoing litigation may be destroyed. d. Only state laws must be considered. - Correct Answer: A Not all information must be kept forever. Just as the HIM professional must consider multiple factors when determining retention, many factors must also be taken into consideration with regard to health record destruction. These include applicable federal and state statutes and regulations; accreditation standards; pending or ongoing litigation; storage capabilities; and cost (Reynolds and Morey 2020, 135- 136). Which of the following allows a patient to access all or part of the health record that is maintained by the provider? a. Clinical decision support b. Digital dictation c. Patient portal d. WebMD - Correct Answer: C