Security and HIPAA Awareness Quiz

1

Did you configure your anti-virus to scan automatically?

1

Because UltraLinq is classified as a Business Associate, we are not required to comply with the Privacy Rule.

1

Which of the following are major tenets of HIPAA?

1

You received a CD containing some pirated software that you need. You should probably go ahead and install it, right?

1

You decide to take some time to clean out your desk drawers. You come across some CDs with X-Ray exams that a client was nice enough to send us, and pitch them in the trash without destroying them. What else could you have done to VIOLATE our HIPAA policy?

1

The "Security Rule" is comprised of three safeguards: Administrative, Physical and Technical.

1

A laptop has gone missing! You suspect it had a bunch of patient information on it, but can’t be sure. You know you are responsible for reporting any potential breaches immediately. What’s the best way to cover your butt?

1

You are working from home because of the big storm. So you log into the UltraLinq website and you store your login information in your browser. That’s ok, right?

1

A trial version of antivirus on your computer expired so you uninstalled it. Because you require a password to login to your operating system your computer is still secure.

1

Which policy does UltraLinq NOT employ to maintain HIPAA compliance?

1

The penalties for a breach of PHI are the same regardless of severity and negligence.

1

In what ways did the HITECH Act affect Business Associates like UltraLinq? (Choose all that apply)

1

HIPAA has many different facets, and protecting patient data is UltraLinq's primary focus. There are two Rules in HIPAA that provide guidance on how Covered Entities and their Business Associates must protect patient data. What are those rules?

1

While calling in to pay his bill, Vasant asks Brett to fax him a patient report. Because Client Service is busy playing darts; he decides to send the faxes. Which steps did Brett take to ensure all UltraLinq policies are followed? (Choose all that apply)

1

Protected Health Information (PHI) is specific information that can be used to identify an individual all by itself; or information pertaining to an individuals medical care; or billing information. If you want to ANONYMIZE a report, which piece(s) of information can remain without disclosing PHI (Choose all that apply)?

Edited 3/2016

Security and HIPAA Awareness Quiz

Did you configure your anti-virus to scan automatically?

Because UltraLinq is classified as a Business Associate, we are not required to comply with the Privacy Rule.

Which of the following are major tenets of HIPAA?

You received a CD containing some pirated software that you need. You should probably go ahead and install it, right?

You decide to take some time to clean out your desk drawers. You come across some CDs with X-Ray exams that a client was nice enough to send us, and pitch them in the trash without destroying them. What else could you have done to VIOLATE our HIPAA policy?

The "Security Rule" is comprised of three safeguards: Administrative, Physical and Technical.

A laptop has gone missing! You suspect it had a bunch of patient information on it, but can’t be sure. You know you are responsible for reporting any potential breaches immediately. What’s the best way to cover your butt?

You are working from home because of the big storm. So you log into the UltraLinq website and you store your login information in your browser. That’s ok, right?

A trial version of antivirus on your computer expired so you uninstalled it. Because you require a password to login to your operating system your computer is still secure.

Which policy does UltraLinq NOT employ to maintain HIPAA compliance?

The penalties for a breach of PHI are the same regardless of severity and negligence.

In what ways did the HITECH Act affect Business Associates like UltraLinq? (Choose all that apply)

HIPAA has many different facets, and protecting patient data is UltraLinq's primary focus. There are two Rules in HIPAA that provide guidance on how Covered Entities and their Business Associates must protect patient data. What are those rules?

While calling in to pay his bill, Vasant asks Brett to fax him a patient report. Because Client Service is busy playing darts; he decides to send the faxes. Which steps did Brett take to ensure all UltraLinq policies are followed? (Choose all that apply)