#1
Which of the following regulations governs healthcare data privacy in the United States?
#2
What does HIPAA stand for?
Health Insurance Portability and Accountability Act
Healthcare Information Privacy and Protection Act
Healthcare Information Privacy and Accountability Act
Health Insurance Privacy and Protection Act
#3
What is the primary goal of healthcare data privacy regulations?
To protect patient confidentiality and security
To increase healthcare costs
To limit access to healthcare services
To promote data sharing without restrictions
#4
Which of the following is an example of identifiable health information?
Medical history without patient names
Patient's date of birth
General health statistics of a population
Health insurance claim number
#5
Which of the following rights do patients have under HIPAA?
Right to free healthcare services
Right to access their medical records
Right to share medical information with anyone
Right to sue healthcare providers for any reason
#6
What is the purpose of the HIPAA Privacy Rule?
To regulate the security of electronic health records
To define the rights and protections for patient health information
To mandate specific healthcare procedures
To restrict access to healthcare services
#7
Which entity enforces HIPAA regulations?
Department of Health and Human Services (HHS)
Food and Drug Administration (FDA)
Centers for Disease Control and Prevention (CDC)
Occupational Safety and Health Administration (OSHA)
#8
What does PHI stand for in healthcare data?
Personal Health Information
Protected Health Information
Private Health Information
Public Health Information
#9
What is the purpose of a healthcare data breach notification?
To inform affected individuals and relevant authorities
To hide the breach from the public
To sell the breached data
To punish healthcare providers
#10
Which of the following is NOT considered a covered entity under HIPAA?
Healthcare providers
Health insurance companies
Healthcare clearinghouses
Social media platforms
#11
What is the maximum penalty for a HIPAA violation by an organization?
$100,000
$1,000,000
$10,000
$50,000
#12
What is the 'minimum necessary' requirement under HIPAA?
Healthcare providers must disclose all patient information
Healthcare providers must disclose only the information requested by the patient
Healthcare providers must disclose information to law enforcement agencies
Healthcare providers must disclose information to insurance companies
#13
Which of the following is NOT considered a breach of HIPAA?
Unauthorized access to healthcare records
Loss of a laptop containing PHI
Accidental disclosure of PHI to the wrong recipient
Proper disposal of paper records containing PHI
#14
What is the minimum requirement for a healthcare provider to comply with HIPAA?
Implement basic security measures
Encrypt all patient data
Have a designated privacy officer
Annual data breach reporting
#15
Which of the following statements about the HIPAA Security Rule is true?
It only applies to electronic health information
It requires covered entities to implement administrative, physical, and technical safeguards
It focuses solely on protecting patient privacy
It applies only to healthcare providers
#16
What is the maximum fine for non-compliance with the GDPR?
€100,000
€1,000,000
€20,000,000 or 4% of global annual turnover, whichever is higher
€10,000
#17
Which of the following is NOT considered a violation of the Security Rule under HIPAA?
Unauthorized access to ePHI (electronic Protected Health Information)
Loss of encryption keys protecting ePHI
Improper disposal of paper records containing PHI
Providing patients access to their own medical records