According to Federal law under HIPAA, which of the following would the covered entity NOT have to report the breach to?

A covered entity suffers a ransomware attack that affects the personal health information (PHI) of more than 500 individuals. According to Federal law under HIPAA, which of the following would the covered entity NOT have to report the breach to? A. Department of Health and Human Services B. The affected...

May 18, 2025 No Comments READ MORE +

Which of the following describes the most likely risk for a company developing a privacy policy with standards that are much higher than its competitors?

Which of the following describes the most likely risk for a company developing a privacy policy with standards that are much higher than its competitors?A . Being more closely scrutinized for any breaches of policyB . Getting accused of discriminatory practicesC . Attracting skepticism from auditorsD . Having a security...

May 17, 2025 No Comments READ MORE +

Which of the following would be HealthCo’s best response to the attorney’s discovery request?

SCENARIO Please use the following to answer the next QUESTION: You are the chief privacy officer at HealthCo, a major hospital in a large U.S. city in state A. HealthCo is a HIPAA-covered entity that provides healthcare services to more than 100,000 patients. A third-party cloud computing service provider, CloudHealth,...

May 17, 2025 No Comments READ MORE +

Which venture would be subject to the requirements of Section 5 of the Federal Trade Commission Act?

Which venture would be subject to the requirements of Section 5 of the Federal Trade Commission Act?A . A local nonprofit charity’s fundraiserB . An online merchant’s free shipping offerC . A national bank’s no-fee checking promotionD . A city bus system’s frequent rider programView AnswerAnswer: B Explanation: Section 5...

May 15, 2025 No Comments READ MORE +

What do the Civil Rights Act, Pregnancy Discrimination Act, Americans with Disabilities Act, Age Discrimination Act, and Equal Pay Act all have in common?

What do the Civil Rights Act, Pregnancy Discrimination Act, Americans with Disabilities Act, Age Discrimination Act, and Equal Pay Act all have in common?A . They require employers not to discriminate against certain classes when employees use personal informationB . They require that employers provide reasonable accommodations to certain classes...

May 15, 2025 No Comments READ MORE +

Who has rulemaking authority for the Fair Credit Reporting Act (FCRA) and the Fair and Accurate Credit Transactions Act (FACTA)?

Who has rulemaking authority for the Fair Credit Reporting Act (FCRA) and the Fair and Accurate Credit Transactions Act (FACTA)? A. State Attorneys General B. The Federal Trade Commission C. The Department of Commerce D. The Consumer Financial Protection BureauView AnswerAnswer: D Explanation: The Consumer Financial Protection Bureau (CFPB) has...

May 13, 2025 No Comments READ MORE +

Which of the following federal agencies does NOT enforce the Disposal Rule under the Fair and Accurate Credit Transactions Act (FACTA)?

Which of the following federal agencies does NOT enforce the Disposal Rule under the Fair and Accurate Credit Transactions Act (FACTA)? A. The Office of the Comptroller of the Currency B. The Consumer Financial Protection Bureau C. The Department of Health and Human Services D. The Federal Trade CommissionView AnswerAnswer:...

May 12, 2025 No Comments READ MORE +

When may a financial institution share consumer information with non-affiliated third parties for marketing purposes?

When may a financial institution share consumer information with non-affiliated third parties for marketing purposes?A . After disclosing information-sharing practices to customers and after giving them an opportunity to opt in.B . After disclosing marketing practices to customers and after giving them an opportunity to opt in.C . After disclosing...

May 12, 2025 No Comments READ MORE +

Which entities must comply with the Telemarketing Sales Rule?

Which entities must comply with the Telemarketing Sales Rule?A . For-profit organizations and for-profit telefunders regarding charitable solicitationsB . Nonprofit organizations calling on their own behalfC . For-profit organizations calling businesses when a binding contract exists between themD . For-profit and not-for-profit organizations when selling additional services to establish customersView...

May 9, 2025 No Comments READ MORE +

What is the most likely risk of Fitness Coach, Inc. adopting Janice’s first draft of the privacy policy?

SCENARIO Please use the following to answer the next QUESTION: Cheryl is the sole owner of Fitness Coach, Inc., a medium-sized company that helps individuals realize their physical fitness goals through classes, individual instruction, and access to an extensive indoor gym. She has owned the company for ten years and...

May 7, 2025 No Comments READ MORE +