HCISPP exam

Home ยป HCISPP exam

___________ is one of the main objectives of HIPAA.

Leave a comment

___________ is one of the main objectives of HIPAA.

A. Secrecy

B. Accountability

C. Anonymity

D. Complexity

Answer: B

Explanation:

The main objectives of HIPAA are Accountability (reduce waste, fraud, and abuse; new penalties will be imposed), Insurance Reform (continuity and portability of health insurance, providing limits on pre-

existing provisions), and Administrative simplification (standards on electronic data transactions in a confidential and secure manner).

What is impact of the HITECH Act in relation to HIPAA requirements and maintaining client records electronically?

Leave a comment

What is impact of the HITECH Act in relation to HIPAA requirements and maintaining client records electronically?
A . There is a push toward paper records to prevent the hacking and electronic violation of electronic records, which is easily done without detection
B. Providers must now maintain client records electronically, but may continue to provide clients a paper copy when access is requested
C. There is no requirement to maintain client records electronically, but clients have the right to insist on electronic access to an electronic health record, if it exists
D. Electronic records now face intensified scrutiny, requiring practitioners to implement more sophisticated software and detailed accounting of records
Your

Answer: C

Explanation:

The impact of the HITECH Act in relation to HIPAA requirements and maintaining client records electronically is that there is no requirement yet to maintain client records electronically, but clients have the right to insist on electronic access to an electronic health record, if it exists.

Which of the following is the MOST significant benefit to implementing a third-party federated identity architecture?

Leave a comment

Which of the following is the MOST significant benefit to implementing a third-party federated identity architecture?
A . Attribute assertions as agencies can request a larger set of attributes to fulfill service delivery
B. Data decrease related to storing personal information
C. Reduction in operational costs to the agency
D. Enable business objectives so departments can focus on mission rather than the business of identity management

Answer: C

The HIPPA task force must first

Leave a comment

The HIPPA task force must first
A . inventory the organization’s systems, processes, policies, procedures and data to determine which elements are critical to patient care and central to the organization’s business
B. inventory the organization’s systems, processes, policies, procedures and data to determine which elements are non critical to patient care and central to the organization’s business
C. inventory the organization’s systems, processes, policies, procedures and data to determine which elements are critical to patient complaints and central to the organization’s peripheral businesses
D. modify the organization’s systems, processes, policies, procedures and data to determine which elements are critical to patient care and central to the organization’s business

Answer: A

Which element is NOT part of risk analysis?

Leave a comment

Marcus is responsible for security management within a HIPAA-covered entity. He is reviewing administrative safeguards and examining the organization’s risk analysis.

Which element is NOT part of risk analysis?
A . Developing adequate communication with all contractors, interns, and staff in relation to the agency’s security policies
B. Assessing vulnerabilities of integrity and availability of electronic personal health information
C. Determining how client electronic personal health information confidentiality may be compromised
D. Determining barriers in existence to needed client electronic personal health information

Answer: A

Explanation:

Developing communication is not a function of risk analysis.