Apd Hipaa
20 community-sourced questions and answers. Free — no login.
What does HIPAA stand for?
Health Insurance Portability and Accountability Act of 1996
If you work for a physician's office and you bill Medicare and Medicaid you have to follow HIPAA rules.
True
What are 2 main parts of HIPAA?
Privacy and Security
When stepping away from your computer to get a drink from the drinking fountain down the hall and around the corner, what should you do before leaving?
Lock your computer
Which of the following is NOT a patient right?
Not pay their bill
Scenario: You work in a clinic and a patient is pestering you to look up his spouses information. What is the BEST course of action?
Refer him to the Medical Records department where they could fill our the required form to gain access to patient information.
Which Congressional Act broadened HIPAA to include Business Associates and subcontractors in the same way it applies to Covered Entities?
HITECH - Heath Information Technology for Economic and Clinical Health Act
What is the best definition of a HIPAA Breach?
Someone intentionally accesses PHI that is not part of her job duties.
Scenario: You work in a clinic and you see someone you don't recognize back in a restrcited area without an ID badge. What is your best course of action?
Politely ask the individual if he is looking for someone or something and escort him to a non- restricted area if needed.
With whom is it okay to share your password?
No one
From the list, please select the Buisness Associate. Remember, a Buisness Associate is a person or entity that has access to PHI and performs a service for or on behalf of OSU.
Healthcare Software Vendor
You realize that your co-worker has been writing names and SSN's on sticky notes and keeping them. She does that a few times every day. Who must you report this to as soon as possible?
The Compliance Office
Protected Health Information contains two parts, what are those two parts?
Patient Identifying Information and Health Information.
Scenario: You see your neighbor Jane from down the street at the clinic where you work, but she doesn't see you. You don't know her very well so you just go about your way and act like you don't see her. When you get home your other neighbor Fred, is out watering flowers and you go say hi. It is a good idea to bring up the face that you saw Jane at the clinic today in your conversation with Fred.
False
Which of the following is NOT considered Patient Identifiable Information?
Country
It is not just your responsibility, but everyone's responsibility to be compliant.
True
Scenario: You work in a clinic and have access to the Electronic Medical Rcords system. You are considering searching to see if your Senator is a patient at OSU because you heard he was taking a leave of absence for health reasons. What is likely to occur if you do search for this person and find he is a patient at OSU?
You tell your co-workers the health condition you found and one of them reports you to the Compliance Office for inappropriately accessing and disclosing PHI which may result in termination of employment.
If you wanted to talk to your spouse/significant other's Doctor regarding his care, under what circumstance would that be allowed?
After the patient has either given verbal or written authorization for you to discuss his health with the doctor.
When planning or conducting research it is permissible to access, use, or disclose PHI when:
After obtaining the appropriate approvals from the Compliance Office or OSU's IRB.
It is a good idea to bring software from home and install it on an OSU computer.
False
Looking for a different version?
CBTs get updated every year. Search for the exact version you're taking (e.g. "cyber awareness 2025").
Search all study materials