CHC Practice Questions
HIPAAArequiresAthatAcoveredAentitiesAhaveAsafeguardsAinAplaceAtoAprotectAPHI.A
WhichAofAtheAfollowingABESTAdescribesAtheArequirementAofAhavingAadministrative
,Aphysical,AandAtechnicalAsafeguardsAinAplaceAtoAprotectAPHI?
a.AAdministrative,Aphysical,AandAtechnicalAsafeguardsAareArequiredAbyAtheAPrivac
yARule
b.AAdministrative,Aphysical,AandAtechnicalAsafeguardsAareArequiredAbyAtheASecurit
yARule
c.ABothAaAandAb
d.AneitherAaAnorAbA-AAnswerAc.ABothAaAandAb
OneAreasonAfolksAmayAoverlookAthatAtheAsafeguardsAalsoAapplyAtoAtheAPrivacyA
RuleAisAbecauseAthereAisAoftenAmuchAmoreAfocusAonAtheseAsafeguardsAunderAt
heASecurityARule.AReviewASecurityASeries:ASecurityA101AforACoveredAEntitiesA|AG
uidanceAPortalA(hhs.gov)
OnADayA1AanAemployeeAofAaABusinessAAssociateAcausesAanAimpermissibleAdiscl
osureAaffectingA25Aindividuals.AOnADayA10,AtheAbusinessAassociateAcommunicate
sAtheAimpermissibleAdisclosureAtoAtheACoveredAEntity'sAPrivacyAOfficer.ATheAPriva
cyAOfficerAdecidesAonADayA20AthatAtheAimpermissibleAdisclosureAisAaAbreach.AH
owAlongAdoesAtheACoveredAEntityAhaveAtoAcompleteAtheArequiredAnotification?
a.A60Adays
b.A50Adays
c.A40Adays
dA30AdaysA-AAnswerAb.A50Adays
TheAclockAbeginsAwhenAtheAbreachAtimeAisApresumedA(DayA10).ATheACEAnowAh
asA60AdaysAtoAcompleteAtheAnotifications.AHowever,AtheACE'sAprivacyAofficerAuse
dAupA10AdaysAinAmakingAaAdecision.ANowAthereAareA50AdaysAremaining.
WhichAofAtheAfollowingAacronymsA(listedAalphabetically)AidentifiesAtheAlawAwhich
AfocusesAonAprotectingAstudent'sAprivacy?
a.AAEPA
b.AFERPA
c.AGDPR
HIPAAArequiresAthatAcoveredAentitiesAhaveAsafeguardsAinAplaceAtoAprotectAPHI.A
WhichAofAtheAfollowingABESTAdescribesAtheArequirementAofAhavingAadministrative
,Aphysical,AandAtechnicalAsafeguardsAinAplaceAtoAprotectAPHI?
a.AAdministrative,Aphysical,AandAtechnicalAsafeguardsAareArequiredAbyAtheAPrivac
yARule
b.AAdministrative,Aphysical,AandAtechnicalAsafeguardsAareArequiredAbyAtheASecurit
yARule
c.ABothAaAandAb
d.AneitherAaAnorAbA-AAnswerAc.ABothAaAandAb
OneAreasonAfolksAmayAoverlookAthatAtheAsafeguardsAalsoAapplyAtoAtheAPrivacyA
RuleAisAbecauseAthereAisAoftenAmuchAmoreAfocusAonAtheseAsafeguardsAunderAt
heASecurityARule.AReviewASecurityASeries:ASecurityA101AforACoveredAEntitiesA|AG
uidanceAPortalA(hhs.gov)
OnADayA1AanAemployeeAofAaABusinessAAssociateAcausesAanAimpermissibleAdiscl
osureAaffectingA25Aindividuals.AOnADayA10,AtheAbusinessAassociateAcommunicate
sAtheAimpermissibleAdisclosureAtoAtheACoveredAEntity'sAPrivacyAOfficer.ATheAPriva
cyAOfficerAdecidesAonADayA20AthatAtheAimpermissibleAdisclosureAisAaAbreach.AH
owAlongAdoesAtheACoveredAEntityAhaveAtoAcompleteAtheArequiredAnotification?
a.A60Adays
b.A50Adays
c.A40Adays
dA30AdaysA-AAnswerAb.A50Adays
TheAclockAbeginsAwhenAtheAbreachAtimeAisApresumedA(DayA10).ATheACEAnowAh
asA60AdaysAtoAcompleteAtheAnotifications.AHowever,AtheACE'sAprivacyAofficerAuse
dAupA10AdaysAinAmakingAaAdecision.ANowAthereAareA50AdaysAremaining.
WhichAofAtheAfollowingAacronymsA(listedAalphabetically)AidentifiesAtheAlawAwhich
AfocusesAonAprotectingAstudent'sAprivacy?
a.AAEPA
b.AFERPA
c.AGDPR
