HIPAA

HIO-201

Certified HIPAA Professional

https://killexams.com/pass4sure/exam-detail/HIO-201

QUESTION: 169

Periodic testing and revision of contingency plans is addressed by:

Testing and Revision Procedures
Information System Activity Review
Response and Reporting
Data Backup Plan
Emergency Access Procedure

Answer: A

QUESTION: 170

Select the FALSE statement regarding the administrative requirements of the HIPAA privacy rule.

A covered entity must mitigate, to the extent practicable, any harmful effect that it becomes aware of from the use or disclosure of PHI in violation of its policies and procedures or HIPAA regulations.
A covered must not in any way intimidate, retaliate, or discriminate against any individual or other entity, which files a complaint.
A covered entity may not require individuals to waive their rights as a condition for treatment, payment, enrollment in a health plan, or eligibility for benefits.
A covered entity must retain the documents required by the regulations for a period of six years.
A covered entity must change its policies and procedures to comply with HIPAA regulations no later than three years after the change in law.

Answer: E

QUESTION: 171

One implementation specification of a contingency plan is:

Risk analysis
Applications and Data Criticality Analysis
Risk Management
integrity Controls
Encryption

Answer: B

QUESTION: 172

One implementation specification of the Security Management Process is:

Risk Analysis
Authorization and/or Supervision
Termination Procedures
Contingency Operations
Encryption and Decryption

Answer: A

QUESTION: 173

Maintenance personnel that normally have no access to PHI are called in to investigate water that is leaking from the ceiling of the room where a large amount of PHI is stored. The room is normally secured but the file cabinets have no doors or locks. Situations like this are addressed by which Workforce Security implementation specification?

Risk Management
Written Contract or Other Arrangement
Accountability
Authorization and/or Supervision
integrity Controls

Answer: D

QUESTION: 174

Which transaction covers information specific to accidents?

Accident Report.
First Report of Injury.
Health Care Claim.
Health Care Claim Payment/Advice.
Premium Payment.

Answer: B

QUESTION: 175

The Health Care Claim Status Response (277) can be used in a number of ways. Select the correct usage.

As a response to a health care claim status request
As a health care claim payment advice
Electronic funds transfer
As a request for health care claims status
Request for the psychotherapy notes of a patient

Answer: A

QUESTION: 176

Select the best example of a business associate (if they had access to PHI).

Accountants
Hospital employees
A covered entity’s internal IT department
CEO of the covered entity
The covered entity’s billing service department

Answer: A

QUESTION: 177

The objective of this document is to safeguard the premises and building from unauthorized physical access and to safeguard the equipment therein from unauthorized physical access, tampering and theft

Contingency Plan
Facility Security Plan
Emergency Mode Operation Plan
Accountability
Device and Media Controls

Answer: B

QUESTION: 178

The Integrity security standard has one addressable implementation standard which is:

Encryption
Authorization and/or Supervision
Mechanism to Authenticate Electronic PHI
Applications and Data Criticality Analysis
Isolating Health care Clearing House Functions

Answer: C

QUESTION: 179

This HIPAA security area addresses the use of locks, keys and procedures used to control access to computer systems:

Administrative Safeguards
Physical Safeguards
Technical Safeguards
Audit Controls
Information Access Management

Answer: B

QUESTION: 180

The transaction number assigned to the Health Care Eligibility Request transaction is: