HIPAA Certified HIPAA Professional - HIO-201 FREE EXAM DUMPS QUESTIONS & ANSWERS

A. Insurance Company. B. HHS C. A community health management information system. D. Government agency. E. Health statistics collection agency.

A. The guides may be downloaded free from WPC's Website. B. HHS has adopted the
Implementation
Guides as standards for
HIPAA transactions. C. The guides are intended to be instructive and need not be followed strictly. D. The Washington Publishing Company has the exclusive rights to publish the X12N Implementation Guides. E. The guides explain the usage of the transaction set segments and data elements.

A. Facility Access Controls B. Security Management Process C. Access control D. Assigned Security Responsibility E. Security incident Procedures

A. Health Care Claim. B. First Report of Injury. C. Health Care Claim Payment/Advice. D. Premium Payment. E. Accident Report.

A. CPT-4 B. 270 C. 837 - Professional D. U8-92 E. 835

A. Health plan identifier. B. Provider identifier C. Envelope structure for transactions. D. Simple flat file structure for transactions. E. Employer identifier

A. Non-Covered entities need to redesign their facility to meet the requirement for minimum necessary uses. B. The privacy rule prohibits use, disclosure, or requests for an entire medical record, C. In some circumstances a covered entity is permitted, but not required, to rely on the judgment of the party requesting the disclosure as to the minimum amount of information necessary for the intended purpose. Some examples of these requesting parties are: another covered entity or a public official. D. If there is a request for more than the minimum necessary PHI, the privacy rule requires a covered entity to deny the disclosure of information after recording the event in the individual's case file. E. The minimum necessary standard requires covered entities to prohibit maintenance of medical charts at bedside and to require that X-ray light boards be totally isolated.

A. If the marketing is expected to result in direct or indirect remuneration to the covered entity from a third party, the authorization must state that such remuneration is expected. B. Disclosure of PHI for marketing purposes is limited to disclosure to business associates (which could be a telemarketer) that undertakes marketing activities on behalf of the covered entity. C. A promotional gift of nominal value provided by the covered entity is NOT allowed by the regulations without an authorization. D. A face-to-face communication made by a covered entity to an individual is allowed by the regulations without an authorization. E. A covered entity must obtain an authorization for any use or disclosure of protected health information for marketing, except if the communication is in the form allowed by the regulations.

A. Covered entities are prohibited from marketing through oral communications. D.
The Privacy
Rule requires
covered entities
to document any
information, including oral communications, which is used or disclosed for TPO purposes. B. The Privacy Rule will often
require major structural changes, such as soundproof rooms
and encryption
of telephone systems,
to provide the "reasonable safeguards" of oral communications required by the regulations. C. Covered entities must reasonably safeguard PHI, including oral communications, from any intentional or unintentional use or disclosure that is in violation of the Privacy Rule. D. Covered entities must have in place appropriate administrative, technical, and physical safeguards to protect the privacy of de-Identified data

A. Facility Access Controls B. Assigned Security Responsibility C. Security incident Procedures D. Response and Reporting E. Termination Procedures

A. Risk Management B. Applications and Data Criticality Analysis C. Risk analysis D. Encryption E. integrity Controls

A. Security Management Process B. Facility Access Control C. Security Incident Procedures D. Assigned Security Responsibility E. Access Control