HIPPA FINAL 2025/2026 EXAM QUESTIONS WITH VERIFIED ANSWERS
GRADED A+
Within HIPAA how does Security differ from Privacy? -
Answer-Security defines safeguards for ePHI versus Privacy which defines safeguards
for PHI
Covered Entities may also use or disclose PHI without authorization in the
following circumstances EXCEPT:
A. Emergencies involving imminent threat to health or safety (to the individual or the
public)
B. Where required by law
C. Law enforcement
D. Medical research with information that identifies the individual
E. Public health activities
F. Workers' compensation -
G. Answer-D. Medical research with information that identifies the individual
Authorization is required for which of the following?
A. Minimum necessary disclosures of PHIB. Non-routine disclosures of PHIC.
ReferralsD. Treatment
B. Non-routine disclosures of PHI
C. Referrals
D. Treatment -
Answer-B. Non-routine disclosures of PHI
Penalties for non-compliance can be which of the following types?
A. Civil and Accidental
B. Criminal and Incidental
C. Accidental and Purposeful
, D. Civil and Criminal -
Answer-D. Civil and Criminal
Which of the following is NOT an example of physical security?
A. Lock file cabinets
B. Lock office doors
C. Locked media storage cases
D. Data encryption -
Answer-D. Data encryption
What is a key to success for HIPAA compliance?
A. Managerial expertise
B. Education
C. Organizational structure
D. Apathy -
Answer-B. Education
Which of the following are examples of health care plans?
A. An HMO
B. The Medicaid program
C. Employer group health plans
D. All of the above -
Answer-D. All of the above
The Security Rule's requirements are organized into which of the following three
categories:
A. Administrative, Non-Administrative, and Technical safeguards
B. Physical, Technical, and Non-Technical safeguards
GRADED A+
Within HIPAA how does Security differ from Privacy? -
Answer-Security defines safeguards for ePHI versus Privacy which defines safeguards
for PHI
Covered Entities may also use or disclose PHI without authorization in the
following circumstances EXCEPT:
A. Emergencies involving imminent threat to health or safety (to the individual or the
public)
B. Where required by law
C. Law enforcement
D. Medical research with information that identifies the individual
E. Public health activities
F. Workers' compensation -
G. Answer-D. Medical research with information that identifies the individual
Authorization is required for which of the following?
A. Minimum necessary disclosures of PHIB. Non-routine disclosures of PHIC.
ReferralsD. Treatment
B. Non-routine disclosures of PHI
C. Referrals
D. Treatment -
Answer-B. Non-routine disclosures of PHI
Penalties for non-compliance can be which of the following types?
A. Civil and Accidental
B. Criminal and Incidental
C. Accidental and Purposeful
, D. Civil and Criminal -
Answer-D. Civil and Criminal
Which of the following is NOT an example of physical security?
A. Lock file cabinets
B. Lock office doors
C. Locked media storage cases
D. Data encryption -
Answer-D. Data encryption
What is a key to success for HIPAA compliance?
A. Managerial expertise
B. Education
C. Organizational structure
D. Apathy -
Answer-B. Education
Which of the following are examples of health care plans?
A. An HMO
B. The Medicaid program
C. Employer group health plans
D. All of the above -
Answer-D. All of the above
The Security Rule's requirements are organized into which of the following three
categories:
A. Administrative, Non-Administrative, and Technical safeguards
B. Physical, Technical, and Non-Technical safeguards
