Free HIPAA compliance
quiz & training
Test and reinforce your team's HIPAA awareness. Answer ten multiple-choice questions covering the privacy and security basics behind 45 CFR §164.308(a)(5), see your score and an explanation for every question live, then download a training completion record as Word or PDF. Everything runs in your browser, so nothing you enter leaves your device.
The quiz
Participant
Questions
1. Which of the following is protected health information (PHI)?
2. What does the "minimum necessary" rule mean?
3. When may PHI be shared without the patient's written authorization?
4. What is the best practice for your account password and login?
5. An email urgently asks you to click a link and "verify your login" for the records system. What should you do?
6. What is the proper way to dispose of paper records containing PHI?
7. If you suspect a breach of PHI, who should you tell?
8. Which of these is a core patient right under HIPAA?
9. What is a Business Associate Agreement (BAA)?
10. Why should PHI on laptops and mobile devices be encrypted?
HIPAA AWARENESS TRAINING RECORD
HIPAA AWARENESS TRAINING RECORD
Score: 0/10 (0%)
Result: In progress
Question review
Q1. Which of the following is protected health information (PHI)? Not yet answered.
Q2. What does the "minimum necessary" rule mean? Not yet answered.
Q3. When may PHI be shared without the patient's written authorization? Not yet answered.
Q4. What is the best practice for your account password and login? Not yet answered.
Q5. An email urgently asks you to click a link and "verify your login" for the records system. What should you do? Not yet answered.
Q6. What is the proper way to dispose of paper records containing PHI? Not yet answered.
Q7. If you suspect a breach of PHI, who should you tell? Not yet answered.
Q8. Which of these is a core patient right under HIPAA? Not yet answered.
Q9. What is a Business Associate Agreement (BAA)? Not yet answered.
Q10. Why should PHI on laptops and mobile devices be encrypted? Not yet answered.
Training acknowledgement
The participant named above has reviewed the core HIPAA privacy and security basics covered in this quiz, including what protected health information is, the minimum necessary rule, permitted uses and disclosures, safeguarding logins and devices, recognizing phishing, secure disposal, breach reporting, and patient rights.
Organizations should keep a record of security awareness and training for each workforce member, in line with 45 CFR 164.308(a)(5).
Participant signature: __________________________ Date: ______________
Supervisor signature: __________________________ Date: ______________
Generated by BlockSurvey
How the HIPAA compliance quiz works
Answer the questions
Add your name, then work through ten multiple-choice questions on HIPAA privacy and security basics.
See your score and feedback
A live score banner and a per-question review show what you got right, the correct answer, and a short explanation.
Download the record
Export a training completion record as a PDF or an editable Word file. Nothing you enter ever leaves your device.
Free, secure, and HIPAA-standard by default
HIPAA expects you to train your workforce on privacy and security under 45 CFR §164.308(a)(5) and to keep a record that it happened. This quiz helps you do both without a paywall or an email wall:
100% in-browser
The quiz and the record are built on your device; nothing is uploaded.
No account required
No sign-up, no email wall, no tracking.
A real completion record
The full record as Word or PDF at no cost, with the score and a signature line.
What HIPAA training should cover
Good HIPAA awareness training gives every workforce member a working grasp of:
- What protected health information is, and how to recognize it.
- The minimum necessary standard, so staff reach only the PHI they need.
- Permitted uses and disclosures, such as treatment, payment, and health care operations.
- Safeguarding logins and devices with strong, private passwords and encryption.
- Spotting phishing and social-engineering attempts.
- Secure disposal of paper and electronic records that held PHI.
- How and to whom to report a suspected breach.
- Core patient rights, including access to their own records.
Built For Every Healthcare Organization
Whether you are onboarding a new hire or running an annual refresher, this quiz gives your team a quick, consistent way to check HIPAA awareness, and it works alongside HIPAA-compliant survey software when you collect health data through forms.
New-hire onboarding
Give every new team member a HIPAA grounding on day one.
Annual staff refresher
Run a yearly awareness check and keep the completion record.
Small practices without an LMS
Train staff without paying for a learning management system.
Business associates
Brief your own staff on the PHI you handle for healthcare clients.
Front-desk & clinical teams
Reinforce the everyday habits that keep patient data safe.
IT teams & MSPs
Roll out a quick awareness check across the practices you support.
Collecting PHI through forms or surveys?
HIPAA-compliant survey software from BlockSurvey signs a BAA with you, so the tool you use to gather health data is covered too.