ExamTopics Logo
Mail Us[email protected]
Menu
Comptia Discussions
exam questions

Exam SY0-601 All Questions

View all questions & answers for the SY0-601 exam
Go to Exam

Exam SY0-601 topic 1 question 164 discussion

Actual exam question from CompTIA's SY0-601
Question #: 164
Topic #: 1
[All SY0-601 Questions]

Two hospitals merged into a single organization. The privacy officer requested a review of all records to ensure encryption was used during record storage, in compliance with regulations. During the review, the officer discovered that medical diagnosis codes and patient names were left unsecured. Which of the following types of data does this combination BEST represent?

  • A. Personal health information
  • B. Personally identifiable information
  • C. Tokenized data
  • D. Proprietary data
Show Suggested Answer Hide Answer
Suggested Answer: A 🗳️
by Joe1984 at Aug. 31, 2022, 7:37 p.m.

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
Submit Cancel
stoneface
Highly Voted 2 years, 10 months ago
Selected Answer: A
This is PHI -> Personal Health Information
upvoted 27 times
assfedassfinished
2 years, 2 months ago
Sorry, it's PII. The medical codes are just that. The question doesn't indicate that any of the medical codes are associated with the unsecured names. We have unsecured names and we have a list of diagnosis codes, not necessarily correlated in any way.
upvoted 8 times
RamnathKM
1 year, 3 months ago
Diagnoses look like thisA00.0 ‑ B99.9 1. Certain infectious and parasitic diseases (A00-B99) C00.0 ‑ D49.9 2. Neoplasms (C00-D49) D50.0 ‑ D89.9 3. Diseases of the blood and blood-forming organs and certain disorders involving the immune mechanism (D50-D89) E00.0 ‑ E89.89 4. Endocrine, nutritional and metabolic diseases (E00-E89) F01.50 ‑ F99 5. Mental, Behavioral and Neurodevelopmental disorders (F01-F99) G00.0 ‑ G99.8 6. Diseases of the nervous system (G00-G99) H00.011 ‑ H59.89 7. Diseases of the eye and adnexa (H00-H59) H60.00 ‑ H95.89 8. Diseases of the ear and mastoid process (H60-H95)
upvoted 1 times
...
[Removed]
1 year, 10 months ago
The keyword here is combination. The combination of the two creates PHI. Medical codes on their own are not PII. Back to Lumby you go.
upvoted 5 times
...
RevolutionaryAct
1 year, 10 months ago
a medical code in and of itself is data, but when combined with patient names it transforms into information, specifically personal health information, therefore it is PHI
upvoted 1 times
...
...
...
Dapsie
Most Recent 1 year, 1 month ago
A combination of PII and Dx codes is PHI. The key word in the question is "combination". Don't over think the finer detail that separate DX codes as existing separately from PII. Focus on the word, "combination".
upvoted 1 times
...
klinkklonk
1 year, 5 months ago
Selected Answer: A
Another poorly worded question. I've learned that the best way to answer is to not overthink and if two possible answers exist, go with the answer that has keywords connected to one of the answers. Hospitals / Medical, so we would go with PHI, even though it could also be PII.
upvoted 3 times
...
Comicbookman
1 year, 7 months ago
While both PHI and PII are crucial and require protection, PHI carries additional sensitivity due to its direct association with an individual's health condition, diagnosis, treatment, and medical history. Healthcare regulations like HIPAA (Health Insurance Portability and Accountability Act) specifically focus on protecting PHI to ensure patient privacy and confidentiality. Therefore, in a healthcare setting where patient records are involved, securing PHI takes precedence due to the critical nature of health-related data and the stringent regulations governing its protection.
upvoted 2 times
...
IrunNYnLA
1 year, 7 months ago
It is PII, medical diagnosis code doesn't rep PHI, pt name is PII
upvoted 1 times
...
Darkside_
1 year, 8 months ago
PHI (Personal Health Information)is PII (Personal Identifiable Information) that includes health informaiton. So both PHI and PII it is, but PHI is the better choice.
upvoted 2 times
...
ola235
1 year, 10 months ago
PROTECTED HEALTH INFORMATION.This is the correct term , Personal Health Information is incorrect ,therefore PII is correct Personally Identifiable Information (PII). any information that can identify an individual (name, SSN, birthdate/place, biometric records, etc)
upvoted 4 times
klinkklonk
1 year, 5 months ago
Personal / Protected health information are used interchangeably.
upvoted 1 times
...
...
MyBJ
1 year, 11 months ago
The correct answer is B. Medical diagnosis code(s) is not the same thing as patients' medical diagnosis. Only personal identifiable information were left out. The diagnosis codes are a general information for medical personnel and not patients' medical records.
upvoted 1 times
...
Aie_7
1 year, 11 months ago
Selected Answer: A
No need explaination, just "medical diagnosis codes" has to be clear. PHI is the only answere possible here. If no medical stuffs were mentioned = PII. Names and other IDs are obviously included in PHI files...
upvoted 1 times
...
101martin101
2 years, 1 month ago
Selected Answer: B
This is a real catch-22 question. I will say B. Explation? its in the comments section below.
upvoted 1 times
...
user82
2 years, 2 months ago
PII - Names, SSN, DOB, phone number, street address (anything to locate/identify and individual) PHI - medical or insurance records, hospital and laboratory test results. Cannot be changed and consequently the reputational damage by PHI data breach would be huge. Comptia study guide topic 16A
upvoted 4 times
...
KnifeClown1
2 years, 2 months ago
Selected Answer: A
MEDICAL diagnosis codes
upvoted 1 times
...
fouserd
2 years, 2 months ago
This should be PHI, not PII.
upvoted 2 times
...
assfedassfinished
2 years, 2 months ago
Selected Answer: B
The question states that medical diagnosis codes were left unsecured. Were these codes tied to patients? It is not explicitly stated. If the codes were not stated, then that can be viewed as internal information that was unsecured rather than constituting PHI. PII best fits here.
upvoted 1 times
RamnathKM
1 year, 3 months ago
Diagnoses code looks like this A00.0 ‑ B99.9 1. Certain infectious and parasitic diseases (A00-B99) C00.0 ‑ D49.9 2. Neoplasms (C00-D49) D50.0 ‑ D89.9 3. Diseases of the blood and blood-forming organs and certain disorders involving the immune mechanism (D50-D89) E00.0 ‑ E89.89 4. Endocrine, nutritional and metabolic diseases (E00-E89) F01.50 ‑ F99 5. Mental, Behavioral and Neurodevelopmental disorders (F01-F99) G00.0 ‑ G99.8 6. Diseases of the nervous system (G00-G99) H00.011 ‑ H59.89 7. Diseases of the eye and adnexa (H00-H59)
upvoted 1 times
...
assfedassfinished
2 years, 2 months ago
The definition that I work with for PII and PHI are as follows: Protected Health Information (PHI): Any information, whether oral or recorded in any form or medium that is created or received by a health care provider, health plan, public health authority, employer, life insurer, school or university, or health care clearinghouse and relates to the past, present, or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present, or future payment for the provision of health care to an individual. Personally Identifiable Information (PII): One or more of the following elements of information about an individual: First and last name, personal address, personal telephone number, personal email address, instant messaging username, or other online contact information, business email address (to the extent it incorporates an individual’s name), social security number, date of birth, home address, account number, disability code.
upvoted 4 times
...
...
P_man
2 years, 3 months ago
Selected Answer: A
HOSPITALS = PHI
upvoted 1 times
...
gladtam
2 years, 3 months ago
Diagnosis=health!
upvoted 4 times
...
whoami_808
2 years, 3 months ago
Correct is B: EXAM TIP PII refers to information that can be used to distinguish or trace an individual’s identity, either alone or when combined with other personal or identifying information that is linked or linkable to a specific individual.
upvoted 1 times
...
Load full discussion...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel