Domain 6

Question 1

Which of the following statements is true about requested restrictions?
A. ARRA states that a CE noes not have to agree to a requested restriction
B. ARRA mandates that a CE must comply with a requested restriction unless it meets one of the exceptions
C. ARRA mandates that a CE must comply with a requested restriction
D. ARRA does not address restrictions to PHI

Answer 1

B ARRA mandates that a CE must comply with a requested restriction unless it meets one of the exceptions

Question 2

You have been assigned the responsibility of performing an audit to confirm that all of the workforce’s access is appropriate for their role in the organization.  This process is called\_\_\_\_\_\_\_\_\_\_\_\_
A. Information access management 
B. Risk management
C. Information system activity review 
D. Workforce clearance procedure

Answer 2

D. Workforce clearance procedure

Question 3

A patient has submitted an authorization to release information to a physician office for continued care. The release of information clerk want to limit the information provided because of the minimum necessary rule. What should the supervisor tell the clerk?
A. The minimum necessary rule was eliminated with ARRA
B. Good call
C. The patient is an exception to the minimum necessary rule so process the request as written
D. The minimum necessary rule only applied to attorneyse

Answer 3

C. The patient is an exception to the minimum necessary rule so process the request as written

Question 4

An HIM Educator speaks on department design and the legislative act or agency that was created to ensure that workers have a safe and healthy work environment.  Which of the following topics will be discussed?
A. OSH Act
B. Wagner Act
C. Labor Management Relations Act
D. Taft-Hartley law

Answer 4

A. Osh Act
Under the OSH Act, employers are responsible for providing a safe and healthful workplace. Occupational Safety and Health Administration’s (OSHA) mission is to assure safe and healthful workplaces by setting and enforcing standards, and by providing training, outreach, education and assistance

Question 5

A patient asked to view her medical record.  The record is stored offsite.  How long does the facility have to provide this record to him?
A. 60 days
B. 30 days
C. 14 days
D. 10 days

Answer 5

B. 30 days

The facility has 30 days to comply with the request

Question 6

One of the responsibilities of a Chief Privacy Officer for a hospital is to _____________
A. Develop a plan for privacy complaints
B. Back up data
C. Writing policies on protecting hardware
D. Writing policies on encryption standards

Answer 6

A. Develop a plan for privacy complaints

The other options would be the responsibility of the Chief Security Officer

Question 7

Employers may be able to demonstrate that age is a reasonable requirement for a position.  Such an exception to the Age Discrimination employment Act (ADEA) is called\_\_\_\_\_\_\_\_\_\_\_\_\_\_\_?
A. Bona fide occupational qualification
B. Job description essential
C. Essential element for employment
D. There is no such exception to ADEA

Answer 7

A. Bona fide occupational qualification
Title VII permits you to discriminate on the basis of “religion, sex, or national origin in those instances where religion, sex or national origin is a bona fide occupational, qualification reasonably necessary to the normal operation of the particular business or enterprise

Question 8

Laws that limits the time period during which legal action may be brought against another party are known as \_\_\_\_\_\_\_\_\_\_\_\_
A case law
B. Summons
C. Common law
D. Statues of limitation

Answer 8

D. Statues of limitation
A statute of limitation is a law which forbids prosecutors from charging someone with a crime that was committed more than a specified number of years ago. The general purpose of statutes of limitation is to make sure convictions occur only upon evidence (physical or eyewitness) that has not deteriorated with time.

Question 9

Which of the following HIPAA components would the general New Employee Orientation training most likely cover?
A. Physical/workstation security
B. Job-specific training(e.g. patient’s right to amend record)
C. Business associate agreements
D. Marketing issues

Answer 9

A. Physical/workstation security

Question 10

A surgeon comes out to speak to a patient’s family.  He tells them the patient came through the surgery fine.  The mass was benign and they could see the patient in an hour. He talks low so that the other people in the waiting room will not hear but someone walked by and heard.  This is called a(n)
A. Violation of policy
B. Privacy breach
C. Incidental disclosure
D. Privacy incident

Answer 10

C. Incidental disclosure
An incidental disclosure occur when people see or hear protected health information (PHI) when they do not have a “need to know” that specific information. The privacy rule permits certain incidental disclosures that occur as a by-product of another permissible or required use of the information

Question 11

A manager just identified that an employee looked up his own medical record. Which of the following actions should be taken?
A. Follow the incident response procedure
B. Terminate the employee on the spot
C. Notify OCR
D. Notify his or her supervisor because this is a minor incident and therefore not subject to the incident response procedure

Answer 11

A. Follow the incident response procedure
An incident response is an organized approach to addressing and managing the aftermath of a security breach or attack (also known as an incident)

Question 12

What is the difference between an Institutional Review Board (IRB) and a hospital’s Ethics Committee?
A. The IRB deals with the ethical treatment of human research subjects, and the Ethics Committee covers a wide range of issues
B. The IRB focuses on patient care only, and the Ethics Committee addresses both patient care and business practices
C. The Ethics Committee reviews ethics complaints, and the IRB focuses on developing policies and procedures
D. The IRB is made up entirely of patient care providers, and the Ethics Committee is multidisciplinary

Answer 12

A. The IRB (Institutional Review Board) deals with the ethical treatment of human research subjects. The Ethics Committee cover a wide range of issues

Question 13

When developing a record retention policy, the HIM professionals should consider all of the following EXCEPT______________
A. All applicable statues and regulations
B. The thickness of the records
C. Uses of and need for information
D. Current storage space

Answer 13

B, the thickness of the records

Question 14

In general, which of the following statements is correct?
A. When federal and state laws conflict, valid corporate policies supersede federal and state laws
B. When federal and state laws conflict, valid federal laws supersede state laws
C. When federal and state laws conflict, valid state laws supersede federal laws
D. When federal and state laws conflict, valid local laws supersede federal and state laws

Answer 14

B. When federal and state laws conflict, valid federal laws supersede state laws

Question 15

Which of the following would be an inappropriate procedure for the custodian of the medical record to perform prior to taking a medical record from a health care facility to court?
A. Document in the file folder the total number of pages in the record
B. Prepare an itemized list of sheets contained in the medical record
C. Number each page of the record in ink
D. Remove any information that might prove detrimental to the hospital or physician

Answer 15

D. Remove any information that might prove detrimental to the hospital or physician