HIPAA practice test 2025 Questions and
Answers
For PHI disclosures in which their is personal gain, or for malicious purposes,
federal penalties can include up to _____ year(s) in prison. - --Answer --A.
10
Which of the following would be considered a Business Associate?
A. covered entity
B. government agency
C. documentation consultant
D. healthcare provider - --Answer --C. Documentation Consultant
The HIPAA Security Rule protects:
A. electronic data
B. written data
C. verbal data - --Answer --A. Electronic data
....COPYRIGHT ©️ 2025 ALL RIGHTS RESERVED...TRUSTED & VERIFIED 1
, PHI can be recorded on paper or verbally. The electronic documentation of PHI is
not covered under the HIPAA rules.
A. False
B. True - --Answer --A. False
If you suspect someone is violating the healthcare facility's privacy policy, you
should:
A. Report the activity to your supervisor for further follow-up
B. Approach the person yourself and inform them of the correct way to do things.
C. Say nothing.
D. Watch the person closely in order to determine that you are correct with your
suspicions. - --Answer --A. Report the activity to your supervisor for further
follow-up
Under HIPAA, as part of a patient's right to restrict their PHI, a patient can
request that they not be listed in the patient directory:
A. False
B. True - --Answer --B. True
The development of policies and procedures that address e-PHI security would fall
under which type of safeguard required by the Security Rule of HIPAA?
....COPYRIGHT ©️ 2025 ALL RIGHTS RESERVED...TRUSTED & VERIFIED 2
Answers
For PHI disclosures in which their is personal gain, or for malicious purposes,
federal penalties can include up to _____ year(s) in prison. - --Answer --A.
10
Which of the following would be considered a Business Associate?
A. covered entity
B. government agency
C. documentation consultant
D. healthcare provider - --Answer --C. Documentation Consultant
The HIPAA Security Rule protects:
A. electronic data
B. written data
C. verbal data - --Answer --A. Electronic data
....COPYRIGHT ©️ 2025 ALL RIGHTS RESERVED...TRUSTED & VERIFIED 1
, PHI can be recorded on paper or verbally. The electronic documentation of PHI is
not covered under the HIPAA rules.
A. False
B. True - --Answer --A. False
If you suspect someone is violating the healthcare facility's privacy policy, you
should:
A. Report the activity to your supervisor for further follow-up
B. Approach the person yourself and inform them of the correct way to do things.
C. Say nothing.
D. Watch the person closely in order to determine that you are correct with your
suspicions. - --Answer --A. Report the activity to your supervisor for further
follow-up
Under HIPAA, as part of a patient's right to restrict their PHI, a patient can
request that they not be listed in the patient directory:
A. False
B. True - --Answer --B. True
The development of policies and procedures that address e-PHI security would fall
under which type of safeguard required by the Security Rule of HIPAA?
....COPYRIGHT ©️ 2025 ALL RIGHTS RESERVED...TRUSTED & VERIFIED 2
