Name: _______________________

HIPAA Quiz

1. A covered entity is someone or an organization that

a. provides direct patient care.

b. transmits information about patient care or financial aspects of patient

care.

c. has access to medical records.

d. is only involved in financial aspects of patient care.

2. The HIPAA Privacy Rule recognizes and requires that

a. only patients can see their medical records.

b. health information can only be disclosed during an emergency.

c. a patient's "protected" health information is confidential, and must be

protected.

d. genetic information is exempt from the Privacy Rule.

3. Protected health information includes

a. any information that concerns the health status of an individual.

b. medical information but not a patient's psychiatric records.

c. only information discussed between a physician and patient.

d. only information that the patient does not want disclosed.

4. Protected health information is information that is in

a. written form only.

b. electronic or written form.

c. written, electronic, or verbal form.

d. verbal form only.

5. Protected health information can be shared only if

a. there is an immediate, emergent need.

b. someone has a legitimate and reasonable interest in the information.

c. the patient is present when the information is shared.

d. the patient is notified within 24 hours that the information has been

shared.

Name: _______________________

6. Covered entities are allowed to disclose proof of minor's

immunization records to a school with agreement from a parent

or guardian

a. even if the agreement is oral

b. if the minor is already attending the school

c. so long as the authorization is in writing

d. as long as the minor is aware of the disclosure

7. The HIPAA Security Rule is primarily concerned with

a. safeguards to protect health information

b. providing patients with information about HIPAA

c. defining protected health information

d. monitoring covered entities for security violations

8. Protected health information can only be shared if

a. the patient is present when information is shared

b. the patient is notified within 24 hrs. that the information was shared

c. someone has a legitimate and reasonable reason interest in the

information

d. there is an immediate, emergent need

9. Protected health information can be

a. Electronic

b. Verbal

c. Written

d. All of the above

10. Texting is allowed to be transmitted but the clinician must clear

with

a. the police

b. compliance officer

c. charge nurse

d. physicia