Which of the following are breach prevention best practices? Correct Answer: All of this above
The HIPAA Privacy Rule applies to which of the following? Correct Answer: All of the above
The minimum necessary standard: Correct Answer: All of the above
4) HIPAA allows the use and disclosure of PHI for treatment, payment, and health care
operations (TPO) without the patient's consent or authorization. Correct Answer: True
Which of the following statements about the HIPAA Security Rule are true? Correct Answer:
All of the above
Which of the following are fundamental objectives of information security? Correct Answer: All
of the above
Physical safeguards are: Correct Answer: Physical measures, including policies and procedures
that are used to protect electronic information systems and related buildings and equipment, from
natural and environmental hazards, and unauthorized intrusion
Technical safeguards are Correct Answer: Information technology and the associated policies
and procedures that are used to protect and control access to ePHI
Which HHS Office is charged with protecting an individual patient's health information privacy
and security through the enforcement of HIPAA? Correct Answer: Office for Civil Rights
(OCR)
What of the following are categories for punishing violations of federal health care laws? Correct
Answer: All of the above
If an individual believes that a DoD covered entity (CE) is not complying with HIPAA, he or she
may file a complaint with the: Correct Answer: All of the above
A covered entity (CE) must have an established complaint process. Correct Answer: True
Which of the following statements about the Privacy Act are true? Correct Answer: All of the
above
Which of the following are examples of personally identifiable information (PII)? Correct
Answer: All of the above
Under the Privacy Act, individuals have the right to request amendments of their records
contained in a system of records. Correct Answer: True