Health Information Management – Records & Documentation Practice Exam
Updated 2026 🩺 | Complete Study Guide with Verified Questions and Detailed
Rationales Covering Electronic Health Records (EHR) Systems, Medical
Documentation Standards, Health Data Governance, Privacy and Confidentiality
(HIPAA Compliance), Data Accuracy and Integrity, Coding and Classification
Systems, Release of Information (ROI) Procedures, Legal and Ethical
Considerations, Health Information Exchange (HIE), and Scenario-Based Questions
for Health Information Management Certification Exam Success
Question 1: Which of the following best defines the legal health record?
A. Any document created by a healthcare provider during patient care
B. The designated set of records that serves as the official business record of a
healthcare organization
C. All notes, emails, and informal communications regarding a patient
D. The patient's personal copy of their medical documentation
CORRECT ANSWER: B. The designated set of records that serves as the official
business record of a healthcare organization
EXPLANATION:The legal health record is the officially designated collection of
documentation that constitutes the business record of a healthcare organization and is
admissible in legal proceedings. It is distinct from the designated record set (which may
include additional records for HIPAA access requests) and excludes informal or non-
official communications.
Question 2: Under HIPAA, what is the maximum timeframe allowed for a covered
entity to respond to a patient's request for access to their protected health
information?
A. 15 calendar days
B. 30 calendar days
C. 45 calendar days
D. 60 calendar days
CORRECT ANSWER: B. 30 calendar days
EXPLANATION:HIPAA's Privacy Rule requires covered entities to respond to a patient's
request for access to their protected health information within 30 calendar days of
receipt. A one-time extension of up to 30 additional days is permitted if the entity
provides a written statement of the reason for the delay and the date by which it will
provide the records.
Question 3: What is the primary purpose of clinical documentation improvement
(CDI) programs?
A. To reduce the number of pages in a patient's medical record
B. To ensure accurate and complete documentation that supports appropriate coding,
,billing, and quality reporting
C. To eliminate the need for physician signatures on progress notes
D. To expedite the release of information to third-party payers
CORRECT ANSWER: B. To ensure accurate and complete documentation that
supports appropriate coding, billing, and quality reporting
EXPLANATION:CDI programs focus on enhancing the quality, specificity, and
completeness of clinical documentation to ensure it accurately reflects patient severity
of illness, risk of mortality, and care provided. This supports accurate code assignment,
appropriate reimbursement, quality metrics, and legal defensibility.
Question 4: Which documentation format structures notes by Subjective,
Objective, Assessment, and Plan components?
A. DAR format
B. SOAP format
C. PIE format
D. Focus charting
CORRECT ANSWER: B. SOAP format
EXPLANATION:SOAP (Subjective, Objective, Assessment, Plan) is a widely used
documentation format that organizes clinical notes into four distinct sections to
promote comprehensive, logical, and problem-oriented record keeping. Subjective
includes patient-reported information; Objective includes measurable data;
Assessment is the provider's clinical judgment; Plan outlines interventions.
Question 5: What is the minimum retention period for adult patient health records
recommended by AHIMA in the absence of specific state laws?
A. 5 years after the last encounter
B. 10 years after the last encounter
C. Until the patient reaches age 21 plus the statute of limitations
D. Permanently
CORRECT ANSWER: B. 10 years after the last encounter
EXPLANATION:AHIMA recommends retaining adult health records for at least 10 years
after the most recent encounter. For minors, records should be kept until the patient
reaches the age of majority (usually 18 or 21) plus the statute of limitations period.
However, organizations must always comply with applicable state and federal
regulations, which may require longer retention.
Question 6: Which of the following is a required element for authentication of a
health record entry?
A. Use of blue ink only
B. Inclusion of the patient's full name on every page
,C. Signature (electronic or handwritten) with date and time
D. Notarization by a legal representative
CORRECT ANSWER: C. Signature (electronic or handwritten) with date and time
EXPLANATION:Authentication requires that each entry in the health record be signed by
the author with identification of the date and time of the entry. This may be
accomplished via handwritten signature, electronic signature, or other secure
authentication method that uniquely identifies the author and ensures integrity of the
documentation.
Question 7: What is the primary function of a Master Patient Index (MPI)?
A. To track billing codes assigned to each patient encounter
B. To serve as a permanent, alphabetical listing of all patients treated within a
healthcare facility
C. To store scanned images of paper medical records
D. To generate statistical reports on disease prevalence
CORRECT ANSWER: B. To serve as a permanent, alphabetical listing of all patients
treated within a healthcare facility
EXPLANATION:The Master Patient Index (MPI) is a foundational health information tool
that provides a permanent, alphabetical or numerical listing of all patients who have
received care in a facility. It includes key identifiers (name, medical record number, date
of birth) to facilitate accurate record retrieval and prevent duplicate records.
Question 8: Which type of record filing system assigns a new number to a patient at
each encounter and files records by encounter number?
A. Unit numbering system
B. Serial numbering system
C. Serial-unit numbering system
D. Alphabetical filing system
CORRECT ANSWER: B. Serial numbering system
EXPLANATION:In a serial numbering system, a new medical record number is assigned
at each patient encounter, and records are filed under that encounter-specific number.
This contrasts with unit numbering (one number for all encounters) and serial-unit (new
number per encounter but prior records are merged under the latest number).
Question 9: What does the term "chart deficiency" refer to in health information
management?
A. A missing page in a paper medical record
B. An incomplete or unsigned documentation element that fails to meet organizational
or regulatory standards
C. A coding error in the billing department
D. A discrepancy between the EHR and paper backup records
, CORRECT ANSWER: B. An incomplete or unsigned documentation element that
fails to meet organizational or regulatory standards
EXPLANATION:A chart deficiency occurs when required documentation elements—
such as histories, physicals, operative reports, or authentication signatures—are
missing, incomplete, or unsigned beyond the timeframe specified by policy or
regulation. HIM departments track and manage deficiencies to ensure record
completeness and compliance.
Question 10: Which of the following best describes the "designated record set"
under HIPAA?
A. Only the documents used for billing purposes
B. The legal health record as defined by state law
C. A group of records that includes medical and billing records used to make decisions
about an individual
D. Any document that contains a patient's name
CORRECT ANSWER: C. A group of records that includes medical and billing records
used to make decisions about an individual
EXPLANATION:Under HIPAA, the designated record set includes medical and billing
records, as well as other records used by or for the covered entity to make decisions
about an individual. It is broader than the legal health record and determines what
records a patient has the right to access and request amendments to.
Question 11: What is the primary purpose of an audit trail in an electronic health
record system?
A. To reduce storage costs by compressing historical data
B. To provide a chronological record of who accessed or modified a patient's record and
when
C. To automatically correct documentation errors
D. To generate patient satisfaction surveys
CORRECT ANSWER: B. To provide a chronological record of who accessed or
modified a patient's record and when
EXPLANATION:An audit trail is a security and compliance feature that logs all access
and modifications to electronic health records, including user identity, timestamp, and
action performed. This supports accountability, deters inappropriate access, and
facilitates investigations of privacy breaches or documentation disputes.
Question 12: Which documentation principle requires that entries be made at or
near the time of the event?
A. Legibility
B. Timeliness
Updated 2026 🩺 | Complete Study Guide with Verified Questions and Detailed
Rationales Covering Electronic Health Records (EHR) Systems, Medical
Documentation Standards, Health Data Governance, Privacy and Confidentiality
(HIPAA Compliance), Data Accuracy and Integrity, Coding and Classification
Systems, Release of Information (ROI) Procedures, Legal and Ethical
Considerations, Health Information Exchange (HIE), and Scenario-Based Questions
for Health Information Management Certification Exam Success
Question 1: Which of the following best defines the legal health record?
A. Any document created by a healthcare provider during patient care
B. The designated set of records that serves as the official business record of a
healthcare organization
C. All notes, emails, and informal communications regarding a patient
D. The patient's personal copy of their medical documentation
CORRECT ANSWER: B. The designated set of records that serves as the official
business record of a healthcare organization
EXPLANATION:The legal health record is the officially designated collection of
documentation that constitutes the business record of a healthcare organization and is
admissible in legal proceedings. It is distinct from the designated record set (which may
include additional records for HIPAA access requests) and excludes informal or non-
official communications.
Question 2: Under HIPAA, what is the maximum timeframe allowed for a covered
entity to respond to a patient's request for access to their protected health
information?
A. 15 calendar days
B. 30 calendar days
C. 45 calendar days
D. 60 calendar days
CORRECT ANSWER: B. 30 calendar days
EXPLANATION:HIPAA's Privacy Rule requires covered entities to respond to a patient's
request for access to their protected health information within 30 calendar days of
receipt. A one-time extension of up to 30 additional days is permitted if the entity
provides a written statement of the reason for the delay and the date by which it will
provide the records.
Question 3: What is the primary purpose of clinical documentation improvement
(CDI) programs?
A. To reduce the number of pages in a patient's medical record
B. To ensure accurate and complete documentation that supports appropriate coding,
,billing, and quality reporting
C. To eliminate the need for physician signatures on progress notes
D. To expedite the release of information to third-party payers
CORRECT ANSWER: B. To ensure accurate and complete documentation that
supports appropriate coding, billing, and quality reporting
EXPLANATION:CDI programs focus on enhancing the quality, specificity, and
completeness of clinical documentation to ensure it accurately reflects patient severity
of illness, risk of mortality, and care provided. This supports accurate code assignment,
appropriate reimbursement, quality metrics, and legal defensibility.
Question 4: Which documentation format structures notes by Subjective,
Objective, Assessment, and Plan components?
A. DAR format
B. SOAP format
C. PIE format
D. Focus charting
CORRECT ANSWER: B. SOAP format
EXPLANATION:SOAP (Subjective, Objective, Assessment, Plan) is a widely used
documentation format that organizes clinical notes into four distinct sections to
promote comprehensive, logical, and problem-oriented record keeping. Subjective
includes patient-reported information; Objective includes measurable data;
Assessment is the provider's clinical judgment; Plan outlines interventions.
Question 5: What is the minimum retention period for adult patient health records
recommended by AHIMA in the absence of specific state laws?
A. 5 years after the last encounter
B. 10 years after the last encounter
C. Until the patient reaches age 21 plus the statute of limitations
D. Permanently
CORRECT ANSWER: B. 10 years after the last encounter
EXPLANATION:AHIMA recommends retaining adult health records for at least 10 years
after the most recent encounter. For minors, records should be kept until the patient
reaches the age of majority (usually 18 or 21) plus the statute of limitations period.
However, organizations must always comply with applicable state and federal
regulations, which may require longer retention.
Question 6: Which of the following is a required element for authentication of a
health record entry?
A. Use of blue ink only
B. Inclusion of the patient's full name on every page
,C. Signature (electronic or handwritten) with date and time
D. Notarization by a legal representative
CORRECT ANSWER: C. Signature (electronic or handwritten) with date and time
EXPLANATION:Authentication requires that each entry in the health record be signed by
the author with identification of the date and time of the entry. This may be
accomplished via handwritten signature, electronic signature, or other secure
authentication method that uniquely identifies the author and ensures integrity of the
documentation.
Question 7: What is the primary function of a Master Patient Index (MPI)?
A. To track billing codes assigned to each patient encounter
B. To serve as a permanent, alphabetical listing of all patients treated within a
healthcare facility
C. To store scanned images of paper medical records
D. To generate statistical reports on disease prevalence
CORRECT ANSWER: B. To serve as a permanent, alphabetical listing of all patients
treated within a healthcare facility
EXPLANATION:The Master Patient Index (MPI) is a foundational health information tool
that provides a permanent, alphabetical or numerical listing of all patients who have
received care in a facility. It includes key identifiers (name, medical record number, date
of birth) to facilitate accurate record retrieval and prevent duplicate records.
Question 8: Which type of record filing system assigns a new number to a patient at
each encounter and files records by encounter number?
A. Unit numbering system
B. Serial numbering system
C. Serial-unit numbering system
D. Alphabetical filing system
CORRECT ANSWER: B. Serial numbering system
EXPLANATION:In a serial numbering system, a new medical record number is assigned
at each patient encounter, and records are filed under that encounter-specific number.
This contrasts with unit numbering (one number for all encounters) and serial-unit (new
number per encounter but prior records are merged under the latest number).
Question 9: What does the term "chart deficiency" refer to in health information
management?
A. A missing page in a paper medical record
B. An incomplete or unsigned documentation element that fails to meet organizational
or regulatory standards
C. A coding error in the billing department
D. A discrepancy between the EHR and paper backup records
, CORRECT ANSWER: B. An incomplete or unsigned documentation element that
fails to meet organizational or regulatory standards
EXPLANATION:A chart deficiency occurs when required documentation elements—
such as histories, physicals, operative reports, or authentication signatures—are
missing, incomplete, or unsigned beyond the timeframe specified by policy or
regulation. HIM departments track and manage deficiencies to ensure record
completeness and compliance.
Question 10: Which of the following best describes the "designated record set"
under HIPAA?
A. Only the documents used for billing purposes
B. The legal health record as defined by state law
C. A group of records that includes medical and billing records used to make decisions
about an individual
D. Any document that contains a patient's name
CORRECT ANSWER: C. A group of records that includes medical and billing records
used to make decisions about an individual
EXPLANATION:Under HIPAA, the designated record set includes medical and billing
records, as well as other records used by or for the covered entity to make decisions
about an individual. It is broader than the legal health record and determines what
records a patient has the right to access and request amendments to.
Question 11: What is the primary purpose of an audit trail in an electronic health
record system?
A. To reduce storage costs by compressing historical data
B. To provide a chronological record of who accessed or modified a patient's record and
when
C. To automatically correct documentation errors
D. To generate patient satisfaction surveys
CORRECT ANSWER: B. To provide a chronological record of who accessed or
modified a patient's record and when
EXPLANATION:An audit trail is a security and compliance feature that logs all access
and modifications to electronic health records, including user identity, timestamp, and
action performed. This supports accountability, deters inappropriate access, and
facilitates investigations of privacy breaches or documentation disputes.
Question 12: Which documentation principle requires that entries be made at or
near the time of the event?
A. Legibility
B. Timeliness
