ISC HCISPP Practice Test - Questions Answers, Page 18
List of questions
Related questions
Question 171
Part of Administrative Safeguards under HIPAA is Workforce Security measures. Which is NOT a key element of a Workforce Security Element?
Explanation:
Identification of barriers to client electronic Personal Health Information is more indicative of Risk Assessment, not Workforce Security.
Explanation:
Question 172
What is impact of the HITECH Act in relation to HIPAA requirements and maintaining client records electronically?
Explanation:
The impact of the HITECH Act in relation to HIPAA requirements and maintaining client records electronically is that there is no requirement yet to maintain client records electronically, but clients have the right to insist on electronic access to an electronic health record, if it exists.
Explanation:
Question 173
Which is NOT one of the three major categories of Security Safeguards identified by HIPAA in the regulations?
Explanation:
The three identified major categories of Security Safeguards are administrative, physical, and technical.
Explanation:
Question 174
A therapist's client requests an accounting of disclosures of their medical record. What should that therapist do?
Question 175
Which is NOT consistent with Personnel Clearance Procedures needed to comply with HIPAA Administrative Safeguards?
Explanation:
Appropriate exit interviews for outgoing personnel is least consistent with personnel clearance procedures needed to comply with Administrative Safeguards.
Explanation:
Question 176
Marcus is responsible for security management within a HIPAA-covered entity. He is reviewing administrative safeguards and examining the organization's risk analysis. Which element is NOT part of risk analysis?
Explanation:
Developing communication is not a function of risk analysis.
Explanation:
Question 177
Under the HIPAA Privacy Rule, who is NOT considered a covered entity?
Explanation:
A health care provider, health plan, and a clearinghouse are all considered covered entities. HIPAA compliance is required of all covered entities.
Explanation:
Question 178
Which is NOT an element of Security Awareness Training?
Explanation:
Procedural issues of who will terminate user access in not an element of Security Awareness Training.
Explanation:
Question 179
Under HIPAA Administrative Simplification, what must covered entities do in relation to submission of claims?
Explanation:
Under HIPAA Administrative Simplification, covered entities must provide standardized electronic claims`
Explanation:
Question 180
As of 2010, what is different with regard to business associates and HIPAA protections?
Explanation:
As of 2010, business associates must notify clients directly of privacy breaches, as if they were a covered entity.
Explanation:
Question