New Year Special 70% Discount Offer - Ends in 0d 00h 00m 00s - Coupon code: best70

HIO-201 Certified HIPAA Professional Questions and Answers

Questions 4

The objective of this document is to safeguard the premises and building from unauthorized physical access and to safeguard the equipment therein from unauthorized physical access, tampering and theft

Options:

A.

Contingency Plan

B.

Facility Security Plan

C.

Emergency Mode Operation Plan

D.

Accountability

E.

Device and Media Controls

Buy Now
Questions 5

Within the context of a transaction set, the fields that comprise a hierarchical level are referred to as a(n):

Options:

A.

Loop.

B.

Enumerator.

C.

Identifier

D.

Data segment.

E.

Code set.

Buy Now
Questions 6

This requires records of the movement of hardware and electronic media that contain PHI.

Options:

A.

Business Associate Contract

B.

Data Backup Plan

C.

Media Re-use

D.

Disposal

E.

Accountability

Buy Now
Questions 7

The Health Care Claim Status Response (277) can be used in a number of ways. Select the correct usage.

Options:

A.

As a response to a health care claim status request

B.

As a health care claim payment advice

C.

Electronic funds transfer

D.

As a request for health care claims status

E.

Request for the psychotherapy notes of a patient

Buy Now
Questions 8

Which one of the following security standards is part of Technical Safeguards?

Options:

A.

Access Control

B.

Security Management Process

C.

Facility Access Controls

D.

Workstation Use

E.

Device and Media Controls

Buy Now
Questions 9

Which of the following is NOT a HIPAA national health care identifier?

Options:

A.

National Provider Identifier (NPI)

B.

Social Security Number (SSN)

C.

National Health Plan Identifier (PlanID)

D.

National Employer Identifier for Health Care (EIN)

E.

National Health Identifier for Individuals (NHII)

Buy Now
Questions 10

The Integrity security standard has one addressable implementation standard which is:

Options:

A.

Encryption

B.

Authorization and/or Supervision

C.

Mechanism to Authenticate Electronic PHI

D.

Applications and Data Critically Analysis

E.

Isolating Health care Clearing House Functions

Buy Now
Questions 11

Which of the following is primarily concerned with implementing security measures that are sufficient to reduce risks and vulnerabilities to a reasonable and appropriate level.

Options:

A.

Access Establishment and Modification

B.

Isolating Health care Clearinghouse Functions

C.

Information System Activity Review

D.

Risk Management

E.

Risk Analysis

Buy Now
Questions 12

ANSI X12 specifies the use of a (an):

Options:

A.

Simple flat file structure for transactions.

B.

Envelope structure for transactions.

C.

Employer identifier.

D.

Health plan identifier

E.

Provider identifier.

Buy Now
Questions 13

Select the correct statement regarding code sets and identifiers.

Options:

A.

A covered entity must use the applicable code set that is valid at the time the transaction is initiated.

B.

April 14, 2003 is the compliance date for implementation of the National Provider Identifier.

C.

CMS is responsible for updating the CPT-4 code set.

D.

An organization that assigns NPIs is referred to as National Provider for Identifiers.

E.

HHS assigns the Employer Identification Number (EIN), which has been selected as the National Provider Identifier for Health Care.

Buy Now
Questions 14

Ensuring that physical access to electronic information systems and the facilities in which they are housed is limited, is addressed under which security rule standard?

Options:

A.

Security Management Process

B.

Transmission Security

C.

Person or Entity Authentication

D.

Facility Access Controls

E.

Information Access Management

Buy Now
Questions 15

As defined in the HIPAA regulations, a group of logically related data in units is called a:

Options:

A.

Data group

B.

Segment

C.

Transaction set

D.

Functional group

E.

Interchange envelope

Buy Now
Questions 16

The National Provider File (NPF) includes information such as:

Options:

A.

Effective date.

B.

CPT-4.

C.

CDT.

D.

ICD-9-CM.

E.

Enrollment date.

Buy Now
Questions 17

This is a documented and routinely updated plan to create and maintain, for a specific period of time, retrievable copies of information:

Options:

A.

Disaster Recovery Plan

B.

Data Backup Plan

C.

Facility Access Controls

D.

Security Incident Procedures

E.

Emergency Mode Operations Plan

Buy Now
Questions 18

Once a year, a team at ABC Hospital reviews environmental and operational changes that may have had an impact on the security of electronic PHI. This is an example of:

Options:

A.

Transmission Security

B.

Evaluation

C.

Audit Controls

D.

Integrity

E.

Security Management Process

Buy Now
Questions 19

Select the correct statement regarding the administrative requirements of the HIPAA privacy rule.

Options:

A.

A covered entity must designate, and document, a privacy official, security officer and a HIPAAcompliance officer

B.

A covered entity must designate, and document, the same person to be both privacyofficial and as the contact person responsible for receiving complaints and providing further information about the notice required by the regulations.

C.

A covered entity must implement and maintain written or electronic policies and procedures with respect to PHI that are designed to comply with HIPM standards, implementation specifications and other requirements.

D.

A covered entity must train, and document the training of, at least one member of its workforce on the policies and procedures with regard to PHI as necessary and appropriate for them to carry out their function within the covered entity no later than the privacy rule compliance date

E.

A covered entity must retain the document required by the regulations for a period often years from the time of it's creation or the time it was last in effect, which ever is later.

Buy Now
Questions 20

One mandatory requirement for the Notice of Privacy Practices set by HIPAA regulations is:

Options:

A.

If the notice must state that the covered entity reserves the right to disclose PHI without obtaining the individuals authorization.

B.

The notice must prominently include an expiration date.

C.

The notice must describe every potential use of PHI

D.

The notice must describe an individual's rights under the rule such as to inspect, copy and amend PHI and to obtain an accounting of disclosures of PHI

E.

The notice must clearly identify that the covered entity is in compliance with HIPAA regulations as of April 16,2003

Buy Now
Questions 21

Under the Privacy Rule, an individual may request a covered provider to restrict routine use or disclosure beyond what exists in the provider's Notice of Privacy Practices. Upon that request, the provider.

Options:

A.

Must store the information in an encrypted formal.

B.

May refuse the request but still offer treatment.

C.

Must comply within seventy-five (75) days.

D.

Must only transfer the information using the ASC XI2 format specification.

E.

Can request binding arbitration.

Buy Now
Questions 22

The Stale of Nebraska's Medicaid Program has decided to implement an EDI solution to comply with the HIPAA transaction rule Select the transaction or code set that would not apply to them.

Options:

A.

270

B.

835

C.

837 - Professional

D.

CPT-4

E.

UB-92

Buy Now
Questions 23

The code set that must be used to describe or identify outpatient physician services and procedures is:

Options:

A.

ICD-9-CM, Volumes 1 and 2

B.

CPT-4

C.

CDT

D.

ICD-9-CM, Volume 3

E.

NDC

Buy Now
Questions 24

Security reminders, using an anti-virus program on workstations, keeping track of when users log-in and out, and password management are all part of:

Options:

A.

Security Incident Procedures

B.

Information Access Management

C.

Security Awareness and Training

D.

Workforce Security

E.

Security Management Process

Buy Now
Exam Code: HIO-201
Exam Name: Certified HIPAA Professional
Last Update: Dec 22, 2024
Questions: 160

PDF + Testing Engine

$134.99

Testing Engine

$99.99

PDF (Q&A)

$84.99