Compliance--CMAA test prep UPDATED
ACTUAL Exam Questions and CORRECT
Answers
Covered Entities - CORRECT ANSWER - Providers, hospitals, laboratories facilities,
nursing homes, rehabilitation facilities, health plans, health care clearinghouses, and those that
supply care, services, or supplies to a patient and transmit any health information electronically.
Non-covered Entities - CORRECT ANSWER - Organizations that use, collect, access, and
disclose individually identifiable health information, cut do not transmit electronic data. These
do not have to comply with the Privacy Rules.
Divulge - CORRECT ANSWER - Make private or sensitive information known.
Business associates - CORRECT ANSWER - Individuals, groups, or organizations, who
are not members of a covered entity's workforce, that perform functions or activities on behalf of
or for a covered entity.
Incidental Disclosure - CORRECT ANSWER - Secondary use of PHI that cannot be
reasonably prevented, is limited in nature, and occurs as a result of another use or disclosure that
is permitted.
Electronic Data Interchange (EDI) - CORRECT ANSWER - The transfer of electronic
information in a standard format.
National Provider Identifier (NPI) - CORRECT ANSWER - Unique 10-digit code for
providers required by HIPAA.
HIPAA Security Rule - CORRECT ANSWER - Rule that describes safeguards that must
be in place to protect the confidentiality, integrity, and availability of health information stored in
a computer and transmitted across computer networks, including the internet.
ACTUAL Exam Questions and CORRECT
Answers
Covered Entities - CORRECT ANSWER - Providers, hospitals, laboratories facilities,
nursing homes, rehabilitation facilities, health plans, health care clearinghouses, and those that
supply care, services, or supplies to a patient and transmit any health information electronically.
Non-covered Entities - CORRECT ANSWER - Organizations that use, collect, access, and
disclose individually identifiable health information, cut do not transmit electronic data. These
do not have to comply with the Privacy Rules.
Divulge - CORRECT ANSWER - Make private or sensitive information known.
Business associates - CORRECT ANSWER - Individuals, groups, or organizations, who
are not members of a covered entity's workforce, that perform functions or activities on behalf of
or for a covered entity.
Incidental Disclosure - CORRECT ANSWER - Secondary use of PHI that cannot be
reasonably prevented, is limited in nature, and occurs as a result of another use or disclosure that
is permitted.
Electronic Data Interchange (EDI) - CORRECT ANSWER - The transfer of electronic
information in a standard format.
National Provider Identifier (NPI) - CORRECT ANSWER - Unique 10-digit code for
providers required by HIPAA.
HIPAA Security Rule - CORRECT ANSWER - Rule that describes safeguards that must
be in place to protect the confidentiality, integrity, and availability of health information stored in
a computer and transmitted across computer networks, including the internet.
