← Back to exam page

HIO-201 Certified HIPAA Professional (CHP)

Loading demo links...

Showing 4–6 of 10 questions

Question 4

Select the FALSE statement regarding the administrative requirements of the HIPAA privacy rule.

Select an option, then click Submit answer.

  • A covered entity must mitigate, to the extent practicable, any harmful effect that it becomes aware of from the use or disclosure of PHI in violation of its policies and procedures or HIPAA regulations.

  • A covered must not in any way intimidate, retaliate, or discriminate against any individual or other entity, which files a complaint.

  • A covered entity may not require individuals to waive their rights as a condition for treatment, payment, enrollment in a health plan, or eligibility for benefits.

  • A covered entity must retain the documents required by the regulations for a period of six years.

  • A covered entity must change its policies and procedures to comply with HIPAA regulations no later than three years after the change in law.

Question 5

In terms of Security, the best definition of “Access Control” is:

Select an option, then click Submit answer.

  • A list of authorized entities, together with their access rights.

  • Corroborating your identity

  • The prevention of an unauthorized use of a resource.

  • Proving that nothing regarding your identity has been altered.

  • Being unable to deny you took part in a transaction.

Question 6

This transaction type is a “response” transaction that may include information such as accepted/rejected claim, approved claim(s) pre-payment, or approved claim(s) post-payment:

Select an option, then click Submit answer.

  • 270.

  • 820.

  • 837.

  • 277.

  • 278.