HIPAA and Privacy Act Training (1.5 hrs) (DHA-US001)
Study online at https://quizlet.com/_7cme6w
1. Select all that apply: In Both A and C
which of the following
circumstances must an -Before PHI directly relevant to a person's involvement with the individ-
individual be given the ual's care or payment of health care is shared with that person
opportunity to agree or
object to the use and dis- - Before their information is included in a facility directory
closure of their PHI?
2. Which of the following All of the above
statements about the
HIPAA Security Rule are
true?
3. A covered entity True
(CE) must have an
established complaint
process.
4. The e-Government Act True
promotes the use of elec-
tronic government ser-
vices by the public and
improves the use of in-
formation technology in
the government.
5. When must a breach Within 1 hour of discovery
be reported to the
U.S. Computer Emer-
gency Readiness Team?
6. All of the above
1/6
, HIPAA and Privacy Act Training (1.5 hrs) (DHA-US001)
Study online at https://quizlet.com/_7cme6w
Which of the following
statements about the
Privacy Act are true?
7. What of the following All of the above
are categories for pun-
ishing violations of fed-
eral health care laws?
8. Which of the following All of the above
are common causes of
breaches?
9. Which of the following All of the above
are fundamental objec-
tives of information se-
curity?
10. If an individual believes All of the above
that a DoD covered en-
tity (CE) is not comply-
ing with HIPAA, he or she
may file a complaint with
the:
11. Technical safeguards Information technology and the associated policies and procedures
are: that are used to protect and control access to ePHI
12. A Privacy Impact Assess- All of the above
ment (PIA) is an analy-
sis of how information is
handled:
2/6
Study online at https://quizlet.com/_7cme6w
1. Select all that apply: In Both A and C
which of the following
circumstances must an -Before PHI directly relevant to a person's involvement with the individ-
individual be given the ual's care or payment of health care is shared with that person
opportunity to agree or
object to the use and dis- - Before their information is included in a facility directory
closure of their PHI?
2. Which of the following All of the above
statements about the
HIPAA Security Rule are
true?
3. A covered entity True
(CE) must have an
established complaint
process.
4. The e-Government Act True
promotes the use of elec-
tronic government ser-
vices by the public and
improves the use of in-
formation technology in
the government.
5. When must a breach Within 1 hour of discovery
be reported to the
U.S. Computer Emer-
gency Readiness Team?
6. All of the above
1/6
, HIPAA and Privacy Act Training (1.5 hrs) (DHA-US001)
Study online at https://quizlet.com/_7cme6w
Which of the following
statements about the
Privacy Act are true?
7. What of the following All of the above
are categories for pun-
ishing violations of fed-
eral health care laws?
8. Which of the following All of the above
are common causes of
breaches?
9. Which of the following All of the above
are fundamental objec-
tives of information se-
curity?
10. If an individual believes All of the above
that a DoD covered en-
tity (CE) is not comply-
ing with HIPAA, he or she
may file a complaint with
the:
11. Technical safeguards Information technology and the associated policies and procedures
are: that are used to protect and control access to ePHI
12. A Privacy Impact Assess- All of the above
ment (PIA) is an analy-
sis of how information is
handled:
2/6
