Continued Psychology Phone: 866-688-6554


Exam Preview

HIPAA for Allied Health Professionals

View Course Details Please note: exam questions are subject to change.


1.  The following code sets must be utilized for documenting and billing all medical items and services per HIPAA:
  1. DSM, ICD-9
  2. HCPCS, ICD-10, CPT
  3. ICD-9, HHS
  4. CMS, ICD-10
2.  What are name, social security number, and insurance carrier identification number all considered to be?
  1. Visible health information
  2. Restricted health information
  3. Publicly accessible information
  4. Protected health information
3.  Which of the following is true about the HIPAA Security Rule?
  1. It does not go into effect until 2030
  2. It applies to electronic formats
  3. Providers do not have to safeguards in place as long as they have documentation that they are protecting patient information
  4. Providers must have common sense safeguards in place but do not need policies and procedures related to operations
4.  Limiting facility access and controlling physical access to workstations are what type of safeguards to protect personal health information (PHI)?
  1. Physical safeguards
  2. Technical safeguards
  3. Administrative safeguards
  4. Applicability safeguards
5.  HIPAA Privacy regulations do not include which format?
  1. Email
  2. Texting
  3. Paper
  4. Verbal
6.  Every practice needs to have ____________________________.
  1. Accessible patient information for family members, whether or not the patient has signed a disclosure statement
  2. An outline that specifies what type of treatment a patient will be receiving
  3. Both A & B
  4. Documentation of staff training and employee confidentiality form
7.  HIPAA Omnibus went into effect on:
  1. April 14, 2003
  2. April 20, 2005
  3. February 17, 2010
  4. September 23, 2013
8.  Which type of privacy disclosure does NOT require authorization?
  1. Public use of patient testimonial
  2. Marketing
  3. Both A & B only
  4. Health care operations
9.  HIPAA Privacy went into effect:
  1. April 14, 2003
  2. April 20, 2005
  3. February 17, 2010
  4. September 23, 2013
10.  Hitech-Breach Notification _________________.
  1. Went into effect on January 18, 2008
  2. Must occur within 30 days
  3. Is an "impermissible" or unauthorized use or disclosure of PHI
  4. Applies only to electronic formats

Our site uses cookies to improve your experience. By using our site, you agree to our Privacy Policy.