Certified HIPAA Professional v5.0 (HIO-201)

Page:    1 / 11   
Total 160 questions

HIPAA transaction standards apply to:

  • A. Employee drug tests.
  • B. Health component of auto insurance.
  • C. Stored health information data.
  • D. Eligibility inquiries.
  • E. Non-reimbursed employee medical expenses.


Answer : D

Under the Privacy Rule, an individual may request a covered provider to restrict routine use or disclosure beyond what exists in the provider's Notice of Privacy Practices. Upon that request, the provider.

  • A. Must store the information in an encrypted formal.
  • B. May refuse the request but still offer treatment.
  • C. Must comply within seventy-five (75) days.
  • D. Must only transfer the information using the ASC XI2 format specification.
  • E. Can request binding arbitration.


Answer : B

Select the correct statement regarding the "Minimum Necessary" standard in the HIPAA regulations.

  • A. In some circumstances a coveted entity is permitted, but not required, to rely on the judgment of the party requesting the disclosure as to the minimum amount of information necessary for the intended purpose. Some examples of these requesting parties are: another covered entity or a public official.
  • B. The privacy rule prohibits use, disclosure, or requests for an entire medical record.
  • C. Non-Covered entities need to redesign their facility to meet the requirement for minimum necessary uses.
  • D. The minimum necessary standard requires covered entities to prohibit maintenance of medical charts at bedside and to require that X-ray light boards be totally isolated.
  • E. If there is a request for more than the minimum necessary PHI, the privacy rule requires a covered entity to deny the disclosure of information after recording the event in the individual's case file.


Answer : A

The version of the ANSI ASC X12N standard required by HIPAA regulations is:

  • A. 3070
  • B. 3050
  • C. 3045
  • D. 4010
  • E. 4020


Answer : D

A grouping of functional groups, delimited by' a header/trailer pair, is called a:

  • A. Data element
  • B. Data segment
  • C. Transaction set
  • D. Functional envelope
  • E. Interchange envelope


Answer : E

Which of the following was not established under the Administrative Simplification title?

  • A. National PKI Identifier.
  • B. National Standard Health Care Provider Identifier.
  • C. National Standard Employer Identifier.
  • D. Standards for Electronic Transactions and Code Sets.
  • E. Security Rule.


Answer : A

Physical safeguards using media controls do not include procedures to:

  • A. Control access to tapes, floppies, and re-writeable CDs.
  • B. Track the access of record able media.
  • C. Dispose of storage devices.
  • D. Backup copies of health information.
  • E. Prohibit alteration of health information.


Answer : E

When limiting protected health information (PHI) to the minimum necessary for a use or disclosure, a covered entity can use:

  • A. Their professional judgment and standards.
  • B. The policies set by the security rule for the protection of the information.
  • C. Specific guidelines set by WEDI.
  • D. Measures that are expedient and reduce costs.
  • E. The information for research and marketing purposes only.


Answer : A

This Security Standard addresses the proper functions to be performed on a specific workstation as well as the physical attributes of its surroundings.

  • A. Information Access Management
  • B. Workstation Security
  • C. Access Control
  • D. Facility Access Controls
  • E. Workstation Use


Answer : E

In addition to code sets, HIPAA transactions also contain:

  • A. Security information such as a fingerprint.
  • B. Privacy information.
  • C. Information on all business associates.
  • D. Information on all health care clearinghouses.
  • E. Identifiers.


Answer : E

When submitting a Health Care Claim Status Request, it is important to provide the proper tracking information to exactly identify the previously submitted claim. Select the information that would be most important to the claim inquiry process.

  • A. Authorization Number
  • B. Provider's National Provider Identifier (NPI)
  • C. Claim Submitter home phone number
  • D. Patient's lab report
  • E. Provider's security PIN code


Answer : B

To comply with the Privacy Rule, a valid Notice of Privacy Practices:

  • A. Is required for all Chain of Trust Agreements.
  • B. Must allow for the patient's written acknowledgement of receipt.
  • C. Must always be signed by the patient.
  • D. Must be signed in order for the patient's name to be sold to a mailing list organization
  • E. Is not required if an authorization is being developed


Answer : B

Security to protect information assets is generally defined as having:

  • A. Controls
  • B. PKI
  • C. Biometrics
  • D. VPN technology
  • E. Host-based intrusion detection


Answer : A

One characteristic of the Notice of Privacy Practices is:

  • A. H must be written in plain, simple language
  • B. It must explicitly describe all uses of PHI
  • C. A description about the usage of hidden security cameras for tracking patient movements for implementing privacy.
  • D. A description of the duties of the individual
  • E. A statement that the individual must abide by the terms of the Notice.


Answer : A

Select the FALSE statement regarding the transaction rule.

  • A. The Secretary is required by statue to Impose penalties of at least $100 per violation on any person or entity that fails to comply with a standard except that the total amount imposed on any one person in each calendar year may not exceed $1,000.000 for violations of one requirement
  • B. Health plans are required to accept all standard transactions.
  • C. Health plans may not require providers to make changes or additions to standard transactions
  • D. Health plans may not refuse or delay payment of standard transactions.
  • E. If additional information is added to a standard transaction it must not modify the definition, condition, intent, or use of a data element


Answer : A

Page:    1 / 11   
Total 160 questions