First Name

    Last Name



    1.) What does HIPAA stand for? *

    2.) What are the two major rules of HIPAA?

    a) Privacy Ruleb) Protection Rulec) Portability Ruled) Security Rulee) A & D

    3.) To ensure security of protected health information, choose which actions should be taken by an employee of a covered entity or business associate?

    a) Encrypt e-PHIb) Utilize passwords on computer system devicesc) Utilize confidentiality statements on email and faxesd) Properly dispose of paper or digital recordse) All of the Above

    4.) During a breach or security incident, it is important to notify everyone you can as soon as possible.

    a) Trueb) False

    5.) Choose the items that could be considered PHI and e-PHI items.

    a) Nameb) Addressc) Phone Numberd) Laboratory Resultse) Insurance Payment Informationf) All of the Above

    6.) It is OK to share your username or password with office co-workers if they need access to the system.

    a) Trueb) False

    7.) Mobile devices such as smart phones and tablets are not as critical as office computers when it comes to HIPAA and PHI, and therefore don’t have to be secured or protected.

    a) Trueb) False

    8.) HIPAA/HITECH violations are very serious and can mean serious financial or civil penalties to covered entities and business associates.

    a) Trueb) False

    9.) If you believe that protected health information has been compromised, or your system has been infected, whom should you notify?

    a) Your Co-workersb) The Office of Civil Servicesc) Your security teamd) Your uncle

    10.) Once you have completed this training and exam, you do not have to worry about HIPAA or HITECH anymore, because the rules and regulations never change.

    a) Trueb) False

    Questions and Feedback that you may have about HIPAA - HITECH compliance...