Podcast
Questions and Answers
A data breach is defined as the authorized acquisition, access, use, or disclosure of PHI.
A data breach is defined as the authorized acquisition, access, use, or disclosure of PHI.
False (B)
PHI stands for Personal Health Information.
PHI stands for Personal Health Information.
False (B)
The Breach Notification Rule under HIPAA does not require covered entities to notify affected individuals following a breach of unsecured PHI.
The Breach Notification Rule under HIPAA does not require covered entities to notify affected individuals following a breach of unsecured PHI.
False (B)
If a data breach involves more than 500 individuals in the same state or jurisdiction, the Company is required to provide media notification within 30 days.
If a data breach involves more than 500 individuals in the same state or jurisdiction, the Company is required to provide media notification within 30 days.
Annual training on data breach notification policies and procedures is not required for employees, contractors, and business associates who handle PHI.
Annual training on data breach notification policies and procedures is not required for employees, contractors, and business associates who handle PHI.
Non-compliance with the data breach notification policy may result in disciplinary action, but termination of employment or contract is not a possible consequence.
Non-compliance with the data breach notification policy may result in disciplinary action, but termination of employment or contract is not a possible consequence.
Data breaches only include the disclosure of financial information that compromises the security of individuals.
Data breaches only include the disclosure of financial information that compromises the security of individuals.
The Company is not required to document all reported potential data breaches and related investigations.
The Company is not required to document all reported potential data breaches and related investigations.
The Breach Notification Rule requires covered entities to notify affected individuals and the Secretary of Health and Human Services only if the breach involves secured PHI.
The Breach Notification Rule requires covered entities to notify affected individuals and the Secretary of Health and Human Services only if the breach involves secured PHI.
Flashcards are hidden until you start studying
