Free CHPC HIPAA and Healthcare Privacy Standards Questions and Answers

Question 1

Which of the following is considered Protected Health Information (PHI) under HIPAA?

Accepted Answer

Patient's medical record number

Answer

State of residence without any other identifiers

Question 2

What is the main purpose of the HIPAA Privacy Rule?

Accepted Answer

To establish national standards for protecting individuals’ medical records and PHI

Answer

To ensure healthcare organizations have strong cybersecurity controls

Answer

To prevent fraud and abuse in healthcare

Answer

To create standardized electronic health record (EHR) systems

Question 3

A healthcare organization experiences a data breach involving the exposure of unencrypted PHI. What steps must they take according to the HIPAA Breach Notification Rule?

Accepted Answer

Notify affected individuals within 60 days of discovering the breach

Answer

Notify local law enforcement immediately

Question 4

Which of the following scenarios would NOT be considered a HIPAA violation?

Accepted Answer

A doctor shares PHI with a business associate under a signed Business Associate Agreement (BAA)

Answer

A nurse discusses a patient’s condition with a friend without authorization

Answer

A receptionist leaves a list of patient names and phone numbers in a public area

Answer

A billing clerk accesses a patient’s record without a legitimate need

Question 5

What rights does a patient have under the HIPAA Privacy Rule?

Accepted Answer

The right to access and obtain copies of their medical records

Answer

The right to delete all their PHI upon request