#1
What does HIPAA stand for?
Healthcare Information Privacy and Assurance Act
Health Insurance Portability and Accountability Act
Hospital Information Protection and Authorization Act
Human Immunodeficiency and Prevention Act
#2
What is the primary goal of the HIPAA Privacy Rule?
To establish national health information standards
To protect individuals' medical records and personal health information
To enforce penalties for healthcare providers
To regulate health insurance portability
#3
In HIPAA terminology, what is a 'covered entity'?
Any individual who seeks medical treatment
Entities providing health insurance
Entities subject to HIPAA regulations that handle protected health information
Entities involved in medical research
#4
Which of the following is not considered Protected Health Information (PHI) under HIPAA?
Patient's name and address
Social Security Number
Medical diagnosis and treatment information
Email address without patient's name
#5
Who is responsible for enforcing HIPAA compliance?
Centers for Disease Control and Prevention (CDC)
Federal Trade Commission (FTC)
Office for Civil Rights (OCR)
Food and Drug Administration (FDA)
#6
Which of the following is considered an administrative safeguard under the HIPAA Security Rule?
Physical safeguards
Security awareness training
Access controls
Encryption of data
#7
What role does a Business Associate play in HIPAA compliance?
Provides medical treatment to patients
Handles protected health information on behalf of a covered entity
Enforces HIPAA regulations
Conducts security risk assessments
#8
What is the purpose of the HIPAA Breach Notification Rule?
To establish guidelines for physical security measures
To notify individuals about breaches of their protected health information
To penalize covered entities
To prevent data breaches
#9
What is the purpose of the Privacy Rule's 'minimum necessary' requirement?
To limit the use and disclosure of protected health information
To encourage healthcare providers to share more information
To exempt certain information from privacy protections
To establish a maximum limit on the disclosure of any health information
#10
Which of the following is a key requirement for HIPAA Security Rule compliance?
Use of encryption to protect health information
Providing unlimited access to all employees
Sharing patient data without consent
Ignoring security risk assessments
#11
What is the maximum penalty for a HIPAA violation for an individual or organization?
$100,000
$1 million
$10,000
$50,000
#12
In the context of HIPAA, what is the minimum necessary standard?
Only disclosing the maximum amount of protected health information necessary for a specific purpose
Disclosing all available information for transparency
Sharing information without restrictions
Ignoring the concept of minimum necessary
#13
Which of the following is a primary goal of the HIPAA Security Rule?
To protect patients' medical records from disclosure
To establish national health information standards
To provide guidelines for health insurance portability
To ensure the confidentiality, integrity, and availability of electronic protected health information (ePHI)
#14
What is the purpose of the HIPAA Enforcement Rule?
To establish guidelines for physical security measures
To provide penalties for non-compliance
To regulate health insurance portability
To establish national health information standards
#15
Under HIPAA, what is the purpose of the Security Rule?
To protect the privacy of patients
To ensure the confidentiality of paper records
To establish guidelines for health insurance portability
To safeguard electronic protected health information (ePHI)