HIPAA Training Quiz Name Program Date MM slash DD slash YYYY 1. Examples of Protected Health Information (PHI) include:* A. Name, address, email address, birthdate, phone number B. Medical records, treatment, diagnosis, results of tests C. Social Security number, insurance number, billing records D. All of the above 2. According to HIPAA Privacy regulations, which types of patient information are protected?* A. Written B. Verbal or oral C. Electronic D. All of the above 3. You overhear several employees talking in the break room about a patient who was just admitted to the agency for services. They refer to her by name and are discussing some of the family dynamics. Is this a HIPAA Privacy violation?* A. No, it is not a HIPAA violation because they are only talking about her and her family. They are not discussing her treatment or her needs. B. Yes, it is a HIPAA Privacy violation. The discussion is occurring in a common area and includes PHI. 4. One of your patients is also receiving services from Agency XYZ, another healthcare provider. A staff member from Agency XYZ requests a copy of the patient's TB test results. What is the appropriate action?* A. Obtain written permission from the patient to share the test results. B. It is okay to share the results because both agencies are healthcare providers and treating the patient. 5. Because I have access to patient records as part of my job, it is okay for me to access any patient records as long as I do not share the information. </br> This statement is:* True False 6. You are at the copier and notice that patient information has been discarded in the wastebasket. What should you do?* A. Take the documents out of the wastebasket and shred them because they contain confidential information. B. Do nothing because you did not discard the documents. C. Remove the documents, bring them to your supervisor or Privacy Officer, and report what you found. 7. You were notified that Agency ABC received the evaluation results of a person not known to that agency. They agreed to fax the test results back to your agency. What should you do?* A. Wait for the fax of results and send it to the correct agency. B. Immediately report the error to your supervisor and Privacy Officer. C. No action is necessary. 8. Your laptop was locked in your car while you went to lunch. You returned to find your car was vandalized and your laptop was stolen. You immediately notified the police and are waiting for an officer to arrive. What should you do?* A. Wait for the police to investigate. They may recover the laptop. B. Report the missing laptop to IT immediately. C. No action is needed because the laptop is secure and requires your password to access it. 9. You received an email from an employee notifying you that the IT department needs to upgrade your computer. You are asked to provide your password. What should you do?* A. Email back with your password so the upgrade can occur. B. Take no action and wait to see if there is a second request. C. Notify your supervisor and IT department immediately. 10. Your co-worker goes on break and leaves the computer logged on to the confidential patient record system. You need to look up patient information using the same computer. What is the appropriate action?* A. Use the computer under your co-worker’s User-ID. B. Log out your co-worker and then log in under your own User ID and password. Δ
