1|Page
Relias: Exam : Application of HIPAA in Behavioral Health Questions
and Answers with Complete Solutions UPDATED!!!
1. A provider keeps copies of their client records on an external
hard drive, just in case something happens to his primary office
computer. Under HIPAA, what is the best way for the provider
to store the external hard drive? - ANSWER At the provider's
office using physical security protections
2. Of the following, what is the best way to help keep a
telehealth client's protected health information secure? -
ANSWER Do not hold sessions in common areas where others
can overhear or interrupt calls.
3. What are the sweeping changes to HIPAA in 2013 that
modified several rules at once called? - ANSWER The Omnibus
Rule
4. Which of the following is most likely to be a business
associate of a healthcare provider that is a covered entity? -
ANSWER Answering service
, 2|Page
5. Who should HIPAA complaints be directed to within the
covered entity? - ANSWER Privacy officer
6. The Minimum Necessary Rule guides healthcare providers to:
- ANSWER Share only the protected health information that is
necessary to get the job done
7. Under HIPAA, when notifying individuals that their protected
health information has been breached, what information must
be included? - ANSWER A brief description of what the covered
entity is doing to investigate the breach and mitigate the harm
8. True or False: An individual is allowed to request an
accounting of how their personal health information has been
used. - ANSWER True
9. For which of the following types of PHI does HIPAA require a
signed authorization for use or disclosure? - ANSWER
Psychotherapy notes
Relias: Exam : Application of HIPAA in Behavioral Health Questions
and Answers with Complete Solutions UPDATED!!!
1. A provider keeps copies of their client records on an external
hard drive, just in case something happens to his primary office
computer. Under HIPAA, what is the best way for the provider
to store the external hard drive? - ANSWER At the provider's
office using physical security protections
2. Of the following, what is the best way to help keep a
telehealth client's protected health information secure? -
ANSWER Do not hold sessions in common areas where others
can overhear or interrupt calls.
3. What are the sweeping changes to HIPAA in 2013 that
modified several rules at once called? - ANSWER The Omnibus
Rule
4. Which of the following is most likely to be a business
associate of a healthcare provider that is a covered entity? -
ANSWER Answering service
, 2|Page
5. Who should HIPAA complaints be directed to within the
covered entity? - ANSWER Privacy officer
6. The Minimum Necessary Rule guides healthcare providers to:
- ANSWER Share only the protected health information that is
necessary to get the job done
7. Under HIPAA, when notifying individuals that their protected
health information has been breached, what information must
be included? - ANSWER A brief description of what the covered
entity is doing to investigate the breach and mitigate the harm
8. True or False: An individual is allowed to request an
accounting of how their personal health information has been
used. - ANSWER True
9. For which of the following types of PHI does HIPAA require a
signed authorization for use or disclosure? - ANSWER
Psychotherapy notes
