HIPAA Challenge Exam
(Answered) HIPAA and Privacy Act Training (CHALLENGE
EXAM) (DHA-US001)
contains 20 Questions
1) Which of the following are common causes of breaches?
Theft and intentional unauthorized access to PHI and personally identifiable
information (PII)
Human error (e.g. misdirected communication containing PHI or PII)
Lost or stolen electronic media devices or paper records containing PHI or PII
All of the above (correct)
2) A Privacy Impact Assessment (PIA) is an analysis of how information is handled:
To ensure handling conforms to applicable legal, regulatory, and policy requirements
regarding privacy
To determine the risks and effects of collecting, maintaining and disseminating
information in identifiable form in an electronic information system
To examine and evaluate protections and alternative processes for handling information
to mitigate potential privacy risks
All of the above (correct)
3) Under the Privacy Act, individuals have the right to request amendments of their
records contained in a system of records.
False
True (correct)
4) Under HIPAA, a covered entity (CE) is defined
as: A health plan
A health care clearinghouse
A health care provider engaged in standard electronic transactions covered by HIPAA
All of the above (correct)
5) The e-Government Act promotes the use of electronic government services by the
, HIPAA Challenge Exam
(Answered) HIPAA and Privacy Act Training (CHALLENGE
EXAM) (DHA-US001)
public and improves the use of information technology in the government.
False
(Answered) HIPAA and Privacy Act Training (CHALLENGE
EXAM) (DHA-US001)
contains 20 Questions
1) Which of the following are common causes of breaches?
Theft and intentional unauthorized access to PHI and personally identifiable
information (PII)
Human error (e.g. misdirected communication containing PHI or PII)
Lost or stolen electronic media devices or paper records containing PHI or PII
All of the above (correct)
2) A Privacy Impact Assessment (PIA) is an analysis of how information is handled:
To ensure handling conforms to applicable legal, regulatory, and policy requirements
regarding privacy
To determine the risks and effects of collecting, maintaining and disseminating
information in identifiable form in an electronic information system
To examine and evaluate protections and alternative processes for handling information
to mitigate potential privacy risks
All of the above (correct)
3) Under the Privacy Act, individuals have the right to request amendments of their
records contained in a system of records.
False
True (correct)
4) Under HIPAA, a covered entity (CE) is defined
as: A health plan
A health care clearinghouse
A health care provider engaged in standard electronic transactions covered by HIPAA
All of the above (correct)
5) The e-Government Act promotes the use of electronic government services by the
, HIPAA Challenge Exam
(Answered) HIPAA and Privacy Act Training (CHALLENGE
EXAM) (DHA-US001)
public and improves the use of information technology in the government.
False
