#1
Which of the following laws regulates the privacy of health information in the United States?
#2
What does HIPAA stand for?
Health Information Privacy and Accountability Act
Health Insurance Portability and Accountability Act
Healthcare Information Protection and Administration Act
Health Insurance Privacy and Accessibility Act
#3
Which of the following is a key principle of health information privacy?
Transparency
Data Breach
Data Mining
Data Encryption
#4
What does PHI stand for in the context of health information privacy?
Private Health Insurance
Personal Health Information
Public Health Infrastructure
Protected Health Integrity
#5
What is the primary goal of the Privacy Rule under HIPAA?
To ensure the confidentiality of protected health information
To enforce strict penalties for healthcare providers
To promote data sharing among healthcare organizations
To limit access to healthcare services
#6
Which entity is primarily responsible for enforcing HIPAA regulations?
Department of Health and Human Services (HHS)
Food and Drug Administration (FDA)
Centers for Disease Control and Prevention (CDC)
Federal Trade Commission (FTC)
#7
Under HIPAA, what is considered protected health information (PHI)?
Social Security Numbers
Date of Birth
Medical Records
All of the above
#8
What is the purpose of the Health Information Technology for Economic and Clinical Health (HITECH) Act?
To enhance HIPAA regulations
To regulate healthcare provider reimbursements
To promote the adoption of electronic health records
To establish healthcare quality standards
#9
Which of the following entities are NOT typically considered covered entities under HIPAA?
Healthcare providers
Health insurance companies
Law enforcement agencies
Healthcare clearinghouses
#10
Which of the following rights are granted to individuals under HIPAA?
The right to access their medical records
The right to restrict disclosures of their health information
The right to file complaints with the Department of Education
Both A and B
#11
Which of the following is NOT a requirement for covered entities under HIPAA?
Implementing physical safeguards for electronic PHI
Appointing a Privacy Officer
Conducting risk assessments regularly
Providing free healthcare services to all patients
#12
What is the maximum civil penalty for a HIPAA violation by an individual or organization per calendar year?
$100,000
$250,000
$500,000
$1,500,000
#13
Which of the following is NOT a requirement for a business associate under HIPAA?
Implementing appropriate safeguards for PHI
Notifying individuals of breaches
Providing free healthcare services to all patients
Entering into a business associate agreement with covered entities
#14
Which of the following is NOT a type of HIPAA violation?
Physical theft of medical records
Unauthorized disclosure of PHI
Compliance with data encryption standards
Failure to provide a Notice of Privacy Practices
#15
Which of the following is NOT a required implementation specification of the HIPAA Security Rule?
Access control
Encryption
Firewall protection
Data storage in plain text