2020 HIPAA QUIZ

A business associate is a person or entity that performs certain functions or activities that creates, receives, maintains, or transmits ________________________ on behalf of, or provides services to, a covered entity but is not part of that entity.

Protected health information

Which of the following is NOT required for an authorization to disclose PHI for purposes other than treatment, payment, or health care operations or otherwise required by law?

Summary of the HIPAA Privacy Rule

HIPAA applies to which of the following:

All of the above

Which of the following are basic guidelines that will help protect PHI?

All of the above

Which of the following are covered by the HIPAA Security Rule?

All of the above

True or False - Business Associates are not required to notify covered entities (such as GHI, HIP, HIPIC or CCI) in the event of a potential, suspected or actual privacy or security violation or breach.

False

Which of the following information is not required when facilitating a release of information request or authorization?

Notice of Privacy Practices

The HIPAA Privacy Rule allows access, use, and disclosure of an Individual's PHI to those directly involved in the:

Treatment, payment, or healthcare operations related to the care of the patient or member

True or False - Using secured and encrypted laptops is one way to deter an impermissible use or disclosure that could result in a breach.

True

If you become aware of a potential, suspected or actual privacy or security breach, you must notify which of the following right away?

Your supervisor or manager, the Privacy Official, and Compliance Officer