STS HIPAA/Omnibus Training Quiz

Approved & Edited by ProProfs Editorial Team
The editorial team at ProProfs Quizzes consists of a select group of subject experts, trivia writers, and quiz masters who have authored over 10,000 quizzes taken by more than 100 million users. This team includes our in-house seasoned quiz moderators and subject matter experts. Our editorial experts, spread across the world, are rigorously trained using our comprehensive guidelines to ensure that you receive the highest quality quizzes.
Learn about Our Editorial Process
| By STSTrainee
S
STSTrainee
Community Contributor
Quizzes Created: 1 | Total Attempts: 124
Questions: 15 | Attempts: 124
SettingsSettingsSettings
Please wait...
Create your own Quiz
STS HIPAA/Omnibus Training Quiz - Quiz

The questions below reflect some of the training information you should have reviewed within the HIPAA training video and/or employee training packet. Please read all the questions carefully, answer them to the best of your abilities, and return to your HIPAA compliance officer.

Questions and Answers
  • 1. 

    EHR or "Electronic HIPAA Records" refers to patient records that can be transmitted or copied and shared by electronic means: digital, fax, text, phone transmission or via internet.

    • A.

      True

    • B.

      False

    Correct Answer
    B. False
    Explanation
    Electronic HEALTH Records

    Rate this question:

  • 2. 

    What does the acronym "HIPAA" stand for?

    Correct Answer
    Health Insurance Portability and Accountability Act
    The Health Insurance Portability and Accountability Act
    Explanation
    The correct answer is "Health Insurance Portability and Accountability Act." HIPAA stands for Health Insurance Portability and Accountability Act. This act was passed by the US Congress in 1996 and is designed to protect the privacy and security of individuals' health information. It sets standards for the electronic exchange, privacy, and security of health information. The act also includes provisions for the portability of health insurance coverage for individuals who change or lose their jobs.

    Rate this question:

  • 3. 

    What does the acronym PHI mean?

    Correct Answer
    Protected Health Information
    protected health information
    Protected health information
    Protected Health information
    protectedhealthinformation
    Explanation
    The correct answer is "Protected Health Information" (PHI) which refers to any individually identifiable health information that is created or received by a healthcare provider, health plan, employer, or healthcare clearinghouse. This includes information about a person's past, present, or future physical or mental health, as well as any healthcare services provided to them. The term "protected health information" is typically used in the context of privacy and security regulations, such as the Health Insurance Portability and Accountability Act (HIPAA), which aim to protect the confidentiality and integrity of individuals' health information.

    Rate this question:

  • 4. 

    PHI is any identifiable information which relates to an individual's past, present, or future physical health or condition for which there is a reasonable cause to believe it can be used to identify that individual.

    • A.

      True

    • B.

      False

    Correct Answer
    A. True
    Explanation
    The given statement is true. PHI stands for Protected Health Information and refers to any identifiable information related to an individual's physical health or condition. This information can include medical records, test results, diagnoses, treatments, and any other health-related data. The statement correctly states that PHI can be used to identify an individual, and therefore, it is important to protect this information to ensure privacy and confidentiality.

    Rate this question:

  • 5. 

    An entity (non-employee) that in the course of their work will directly or indirectly create, receive, maintain, or transmit PHI on behalf of a Covered Entity is considered under the Omnibus Rule to be a/an:

    • A.

      Healthcare Provider

    • B.

      Health Care Clearinghouse

    • C.

      Health Care Consultant

    • D.

      Business Associate

    Correct Answer
    D. Business Associate
    Explanation
    An entity that is not an employee but handles PHI on behalf of a Covered Entity is considered a Business Associate under the Omnibus Rule. This means that they have a legal obligation to protect the privacy and security of PHI and comply with HIPAA regulations. They may include entities such as IT companies, billing companies, or transcription services that have access to PHI.

    Rate this question:

  • 6. 

    Within the context, HHS refers to The U.S. Department of Health and Human Services.

    • A.

      True

    • B.

      False

    Correct Answer
    A. True
    Explanation
    The given statement is true because within the context provided, HHS is indeed referring to The U.S. Department of Health and Human Services.

    Rate this question:

  • 7. 

    What is the largest monetary penalty that may be incurred for HIPAA violation in a year under the new Omnibus Rule?

    • A.

      $50,000

    • B.

      $500,000

    • C.

      $1.5 million

    • D.

      $750,000

    Correct Answer
    C. $1.5 million
    Explanation
    Under the new Omnibus Rule, the largest monetary penalty that may be incurred for HIPAA violation in a year is $1.5 million. This means that if an organization fails to comply with HIPAA regulations and violates patient privacy and security, they can be fined up to $1.5 million in a single year. This significant penalty highlights the importance of protecting patient information and ensuring compliance with HIPAA regulations.

    Rate this question:

  • 8. 

    The Health Insurance Portability and Accountability Act or HIPAA was enacted by congress on October 16th, 2002.

    • A.

      True

    • B.

      False

    Correct Answer
    B. False
    Explanation
    1996 - page 11 of manual

    Rate this question:

  • 9. 

    Regarding to the Omnibus Rule on HI TECH Law, who is held directly responsible for any malicious posting on social networks?

    • A.

      The CEO or Business Owner

    • B.

      HIPAA Compliance Officer

    • C.

      The Employee

    • D.

      The Business Associate

    Correct Answer
    C. The Employee
    Explanation
    According to the Omnibus Rule on HI TECH Law, the employee is held directly responsible for any malicious posting on social networks. This means that if an employee posts something malicious on a social network, they will be held accountable for their actions. This emphasizes the importance of training and educating employees on the proper use of social media and the potential consequences of their actions. It also highlights the need for businesses to have clear policies and guidelines in place to prevent such incidents from occurring.

    Rate this question:

  • 10. 

    Regarding to the Omnibus Rule on HI TECH Law for any malicious posting on social networks; what is the potential penalty to the person or persons held directly responsible? [Be specific]

    Correct Answer
    civil and criminal penalties including jail time
    jail time
    civil and criminal penalties
    civil or criminal penalties
    civil or criminal penalties including jail time
    Explanation
    Social Media and HIPAA on page 16 of manual.

    Rate this question:

  • 11. 

    If you were to receive a CHS consultation request form from downrange with specific PHI of a patient in the name which is the best option below?

    • A.

      Forward the form to on-call trauma doctor.

    • B.

      Decide that it is inappropriate to forward the form and verbalize the information to the doctor.

    • C.

      Call downrange and ask them to change how they named the form.

    • D.

      Change the name of the form to something more appropriate then send to on-call doctor.

    Correct Answer
    D. Change the name of the form to something more appropriate then send to on-call doctor.
    Explanation
    The best option is to change the name of the form to something more appropriate and then send it to the on-call doctor. This ensures that the patient's specific PHI is protected and the form is handled in a professional manner. Forwarding the form without changing the name may compromise patient confidentiality. Verbalizing the information to the doctor could also breach patient privacy. Calling downrange to request a change in the form's name may not be efficient or necessary, as it can be resolved internally by making the appropriate changes before sending it to the doctor.

    Rate this question:

  • 12. 

    Under the Omnibus Rule, what three communication permissions are directly permissible and considered the course-of-doing business? [Check all three that apply] 

    • A.

      Appointment Reminders

    • B.

      Patient Names

    • C.

      Treatment Information

    • D.

      Patient Home Address

    • E.

      Benefit Notifications

    • F.

      Patient Social Security Number

    Correct Answer(s)
    A. Appointment Reminders
    C. Treatment Information
    E. Benefit Notifications
    Explanation
    Under the Omnibus Rule, three communication permissions that are directly permissible and considered the course-of-doing business include appointment reminders, treatment information, and benefit notifications. These types of communication are essential for the proper functioning of healthcare services and are allowed under the rule to ensure effective patient care and communication. Patient names, patient home address, and patient social security number are not directly permissible and may require additional consent or authorization.

    Rate this question:

  • 13. 

    How long do we currently keep patient consent forms at Specialty Telehealth Services?

    • A.

      0 days

    • B.

      30 days

    • C.

      60 days

    • D.

      90 days

    • E.

      A minimum of two years

    Correct Answer
    A. 0 days
    Explanation
    Specialty Telehealth Services DOES NOT have patient consent forms.

    Under the OMNIBUS RULE - Doctors offices are required by law to keep patient consent forms for 50 years. (This is not a doctor's office or hospital).

    Rate this question:

  • 14. 

    It is okay to share PHI with trauma docs as long as the information is verbalized and does not leave a record.

    • A.

      True

    • B.

      False

    Correct Answer
    B. False
    Explanation
    Sharing PHI (Protected Health Information) with trauma docs, even if it is verbalized and not recorded, is not okay. PHI should only be shared with authorized individuals who have a legitimate need to know, and it should be done through secure and appropriate channels to ensure patient privacy and confidentiality. Verbalizing PHI without proper authorization and documentation can still lead to breaches of patient privacy and is not in compliance with HIPAA regulations.

    Rate this question:

  • 15. 

    NOPP stands for Notices of Privacy Protocols.

    • A.

      True

    • B.

      False

    Correct Answer
    B. False
    Explanation
    NOPP = Notices of Privacy Practices - page 22 in manual

    Rate this question:

Quiz Review Timeline +

Our quizzes are rigorously reviewed, monitored and continuously updated by our expert board to maintain accuracy, relevance, and timeliness.

  • Current Version
  • Mar 21, 2023
    Quiz Edited by
    ProProfs Editorial Team
  • Jul 23, 2014
    Quiz Created by
    STSTrainee

Related Topics

Recent Quizzes

Basic HIPAA Quiz: Test! Basic HIPAA Quiz: Test!
HIPAA Test OCT - 2020 HIPAA Test OCT - 2020
Test your Basics of HIPAA : Trivia Questions Quiz Test your Basics of HIPAA : Trivia Questions Quiz
Nurse Next Door-HIPAA quiz Nurse Next Door-HIPAA quiz
HIPAA Competency Test 2018 HIPAA Competency Test 2018
Snow City Arts HIPAA Quiz Snow City Arts HIPAA Quiz
HIPAA Competency Test 2020 Trivia Quiz HIPAA Competency Test 2020 Trivia Quiz
Test Your HIPAA Compliance Knowledge Quiz Test Your HIPAA Compliance Knowledge Quiz
Knack HIPAA Awareness Training Program Knack HIPAA Awareness Training Program

Featured Quizzes

Pottermore House Sorting Quiz Pottermore House Sorting Quiz
What Type Of Girl Are You? Quiz What Type Of Girl Are You? Quiz
Fun Literary Devices Quiz for Students Fun Literary Devices Quiz for Students
Maladaptive Daydreaming Test: Am I A Maladaptive Daydreamer? Maladaptive Daydreaming Test: Am I A Maladaptive Daydreamer?
Gavin and Stacey TV Series Quiz! Gavin and Stacey TV Series Quiz!
What Should I Get For Christmas? Take the Quiz Now What Should I Get For Christmas? Take the Quiz Now

Popular Topics

+ Show more
Advertisement
×

Wait!
Here's an interesting quiz for you.

We have other quizzes matching your interest.