FUNDAMENTALS OF HIPAA EXAM
QUESTIONS AND ANSWERS
Privacy Rule covers disclosure of protected health information (PHI) in any form or
media - Answer-True
Under HIPAA, provides may choose to submit claims either on paper or electronically -
Answer-It depends whether they are a small or large provider
Medical Savings Account (now Health Savings Account) is a means to shelter funds
from taxes to pay for - Answer-Medical expenses
The HIPAA Security Officer is responsible for - Answer-Safeguarding all electronic
patient health information
Written policies are a responsibility of the HIPAA Officer - Answer-True
Typical Business Associate individuals are - Answer-Biometric device repairmen, legal
counsel to a clinic, and outside coding service
Psychotherapy notes or process notes include - Answer-The therapist's impressions of
the patient
It is possible for a first name and zip code to be considered individually identifiable
health information (IIHI) - Answer-False
Who in the health care organization is responsible to know where the written policies
are located regarding HIPAA compliance? - Answer-All staff members, paid or not paid
For individuals requesting to amend their medical record - Answer-The provider has the
option to reject the amendment
Audit trials of computer systems include - Answer-Who logged in, what was done, when
it was done, and what equipment was accessed.
The Office of HIPAA Standards seek voluntary compliance to the Security Rule -
Answer-True
HIPAA Security Rule applies to data contained in - Answer-Any computer storage
media
Which are the five areas the DHHS has mandated each covered entity to address so
the e-PHI is maintained securely? - Answer-Organization requirements; policies,
procedures, and documentation; technical safeguards; administrative safeguards; and
physical safeguards
QUESTIONS AND ANSWERS
Privacy Rule covers disclosure of protected health information (PHI) in any form or
media - Answer-True
Under HIPAA, provides may choose to submit claims either on paper or electronically -
Answer-It depends whether they are a small or large provider
Medical Savings Account (now Health Savings Account) is a means to shelter funds
from taxes to pay for - Answer-Medical expenses
The HIPAA Security Officer is responsible for - Answer-Safeguarding all electronic
patient health information
Written policies are a responsibility of the HIPAA Officer - Answer-True
Typical Business Associate individuals are - Answer-Biometric device repairmen, legal
counsel to a clinic, and outside coding service
Psychotherapy notes or process notes include - Answer-The therapist's impressions of
the patient
It is possible for a first name and zip code to be considered individually identifiable
health information (IIHI) - Answer-False
Who in the health care organization is responsible to know where the written policies
are located regarding HIPAA compliance? - Answer-All staff members, paid or not paid
For individuals requesting to amend their medical record - Answer-The provider has the
option to reject the amendment
Audit trials of computer systems include - Answer-Who logged in, what was done, when
it was done, and what equipment was accessed.
The Office of HIPAA Standards seek voluntary compliance to the Security Rule -
Answer-True
HIPAA Security Rule applies to data contained in - Answer-Any computer storage
media
Which are the five areas the DHHS has mandated each covered entity to address so
the e-PHI is maintained securely? - Answer-Organization requirements; policies,
procedures, and documentation; technical safeguards; administrative safeguards; and
physical safeguards
