Career Employer

FREE RHIT Study Guide 2026: All 6 Domains

The most important things the RHIT tests — an interactive study guide with built-in quizzes and flashcards, organized by all 6 AHIMA knowledge domains.

Check sections to boost your score

Don't know where to start?

To find us again, just search “Career Employer RHIT

By

This free RHIT study guide walks through every knowledge domain the AHIMA Registered Health Information Technician exam tests, organized to the current AHIMA content outline.[2]

It’s interactive, not a wall of text: every module has built-in checkpoint quizzes, flashcards, and practice questions, so you learn by doing — not just reading.

The RHIT is AHIMA’s technician-level credential, so it leans into the operational, hands-on work of health information management: building and protecting the legal health record, running the MPI, coding and abstracting, computing healthcare statistics, and releasing information correctly.

We teach all six official domains as six study modules and lead with the heaviest-weighted content. (Studying the baccalaureate-level administrator credential instead? See our RHIA study guide for the management and governance emphasis.)

Read a module, test yourself at each checkpoint, then drill gaps with our free practice test and flashcards. This is a high-yield overview mapped to the official content — not a full HIM textbook.

RHIT Exam Snapshot

RHIT exam at a glance
DetailRHIT Exam
Questions150 total (130 scored + 20 unscored pretest)
FormatMultiple choice, computer-based
Time3 hours 30 minutes
Passing scoreScaled score of 300 (scale 100–400); pass/fail
Administered byAHIMA via Pearson VUE (test center)
EligibilityCAHIIM-accredited HIM associate degree (or approved foreign program)
Cost229 dollars AHIMA members / 299 dollars non-members
CredentialRegistered Health Information Technician (technician level)

The RHIT covers six domains under the AHIMA content outline.[2] Study by weight — Data Content, Structure & Governance alone is roughly a quarter of the exam:

RHIT weighting by knowledge domain (AHIMA content outline)
Data Content, Structure & Governance26% · 24–28%
Data Analytics and Use16% · 14–18%
Revenue Cycle Management16% · 14–18%
Compliance15% · 13–17%
Access, Disclosure, Privacy & Security14% · 12–16%
Leadership13% · 11–15%

The RHIT is a multiple-choice exam, but the questions are applied — most give a short workplace scenario (a record-completion problem, a release-of-information request, a statistic to calculate, a coding or query decision) and ask what an HIM technician should do. So practicing real HIM tasks — not just memorizing definitions — is what moves your score.[2]

Module 1 · Data Content, Structure & Governance

The single largest domain — 24–28% of the exam. This is the foundation of HIM: defining and protecting the legal health record, keeping patient identity clean through the MPI, applying standardized data sets, and analyzing records for completeness. Master it first — it underpins everything else. The record moves through a predictable lifecycle the RHIT manages at every stage:

1.1 The Legal Health Record

The is the documentation an organization formally declares as its official business record — the version it would produce in court or in response to a subpoena. Each organization defines it in policy and a legal-health-record matrix that lists every source system and whether its output belongs to the record.[2] It is often narrower than the , the broader HIPAA group of records used to make decisions about a patient.

A frequent exam point: patient-generated data (say, a home blood-pressure log on a flash drive) is generally notpart of the legal health record, because the provider organization did not generate and maintain it during treatment. The RHIT’s job is to maintain the record’s integrity and validate its content.

Legal health record vs designated record set
ConceptWhat it is
Legal health recordThe official record the organization discloses for legal purposes
Designated record setBroader — all records used to make decisions about the patient (HIPAA)
Legal-health-record matrixThe tool listing each source system and whether it's in the record
Patient-generated dataUsually outside the legal health record (not created/maintained by the provider)

1.2 The MPI & Patient Identification

The (MPI) links every patient to one unique enterprise identifier across all encounters and systems — the backbone of an accurate, longitudinal record. Maintaining it is an explicit RHIT task.[2]

Two integrity errors dominate the exam: a (two records for one patient) and an (one record holding two patients’ data). The overlay is the more dangerous because it can place one person’s information in another’s chart — a patient-safety and privacy risk.

Common MPI integrity errors
ErrorWhat happenedRisk
DuplicateTwo records created for one patientFragmented history; missed information
OverlayOne record holds two patients' dataWrong patient's data — safety & privacy
OverlapOne patient has different IDs in two systemsRecords don't link across the enterprise

1.3 Data Sets: UHDDS & UACDS

Standardized data sets make data comparable across facilities. The (Uniform Hospital Discharge Data Set) defines the data elements collected for every inpatient discharge — including the official definition of the : the condition established after study to be chiefly responsible for the admission.[3] Its outpatient counterpart is the (Uniform Ambulatory Care Data Set).

Key healthcare data sets
Data setSettingWhat it standardizes
UHDDSHospital inpatientDischarge data elements; defines the principal diagnosis
UACDSAmbulatory / outpatientRecommended data elements for outpatient encounters
MDSLong-term careResident assessment data for nursing facilities
OASISHome healthOutcome and assessment data for home-health patients

1.4 Record Analysis & Document Control

HIM checks every record two ways. confirms completeness— that all required reports, signatures, and entries are present; a record still incomplete after the allowed time becomes a .

reviews the content for quality and consistency. The RHIT also handles (creating, revising, and standardizing forms) and builds s such as disease, operation, and physician indexes from the primary record.

Quantitative vs qualitative record analysis
AnalysisQuestion it answersFinds
QuantitativeIs everything present?Missing reports, signatures, entries (deficiencies)
QualitativeIs the content sound?Inadequate or contradictory documentation

Checkpoint · Data Content, Structure & Governance

Question 1 of 10

A health information department is mapping which electronic source systems feed the legal health record after an EHR upgrade. Which document is the appropriate tool for recording each source system and whether its output is part of the legal health record?

Module 2 · Access, Disclosure, Privacy & Security

12–16% of the exam. HIM is the gatekeeper of protected health information. This module is about releasing the right information to the right requester — and nothing more — under HIPAA, and about retaining, disposing of, and auditing access to records correctly.

2.1 HIPAA & Protected Health Information

protects through its Privacy and Security Rules.[4] The central operating principle for the RHIT is : use, request, or disclose only the least PHI needed for the purpose. A crucial exception — treatment disclosures are exempt from minimum necessary, so clinicians get the full picture they need to care for the patient.

When does the minimum necessary rule apply?
DisclosureMinimum necessary applies?
For treatment (provider to provider)No — exempt
To the patient (their own PHI)No — exempt
With the patient's authorizationNo — limited by the authorization
For payment or operationsYes
To a third party by requestYes

2.2 Release of Information & Patient Rights

(ROI) is core HIM work: verify a valid authorization or permitted purpose and the requester’s identity, apply minimum necessary, release the legal health record (handling super-protected data such as psychotherapy notes or substance-use records specially), and log the disclosure. Patients hold rights the RHIT must honor — the to inspect and copy their own PHI (generally within 30 days), and the .[5]

2.3 Record Disposition & Security Audits

Records follow a that sets how long each type is kept; when the period ends, decides whether to retain, archive, or destroy — and destruction of PHI must be secure and irreversible. The RHIT also conducts privacy and s, reviewing access logs to detect inappropriate access to electronic PHI.

Checkpoint · Access, Disclosure, Privacy & Security

Question 1 of 10

Under the HIPAA Security Rule, the safeguards that include workforce security, security awareness training, and a sanction policy are classified as which type of safeguard?

Module 3 · Data Analytics and Use

14–18% of the exam. HIM turns the record into data the organization can use: abstracting elements into registries, computing healthcare statistics, and analyzing case mix and productivity. This domain rewards knowing the standard formulas cold.

3.1 Abstracting, Registries & Reporting

is pulling the relevant data elements — diagnoses, procedures, demographics, indicators — from the record into a database.[2] That data feeds s (cancer, trauma) and reporting. Accurate abstracting depends on accurate coding and complete documentation, so it sits downstream of coding.

3.2 Healthcare Statistics & Formulas

The RHIT computes standard hospital statistics. Learn which measures use discharges in the denominator (death, autopsy, infection rates) versus census measures (average daily census). The is inpatient deaths ÷ total discharges (including deaths) × 100; the excludes deaths occurring less than 48 hours after admission.

Common hospital statistics and their formulas
StatisticFormula
Gross death rate(Inpatient deaths ÷ total discharges) × 100
Net death rate(Deaths ≥ 48 hrs after admission ÷ (discharges − deaths < 48 hrs)) × 100
Average length of stayTotal discharge days ÷ number of discharges
Average daily censusTotal inpatient service days ÷ number of days in the period
Nosocomial infection rate(Hospital-acquired infections ÷ discharges) × 100

3.3 Case Mix & Productivity Measures

The (CMI) is the average DRG relative weight for a group of inpatients — total relative weights ÷ number of discharges.[6] A higher CMI reflects higher acuity and resource use, and it is sensitive to coding completeness, so capturing every complication and comorbidity matters. HIM also tracks productivity (records coded per hour, delinquency rates, turnaround time) to manage the department.

Checkpoint · Data Analytics and Use

Question 1 of 10

A 320-discharge medical service accumulated diagnosis-related group relative weights totaling 480.0 for the month. What case mix index should the analyst report, rounded to two decimals?

Module 4 · Revenue Cycle Management

14–18% of the exam. The RHIT works the middle of the revenue cycle — where documentation becomes codes and codes become revenue. This module covers coding and queries, the DNFB and denials that hold up cash, and the audits that protect coding integrity.

4.1 Coding & Clinician Queries

Coders assign ICD-10-CM diagnoses in every setting, ICD-10-PCS for inpatient procedures, and CPT/HCPCS for outpatient and physician procedures. When documentation is ambiguous, incomplete, conflicting, or clinically inconsistent, the coder issues a — a compliant, non-leading request supported by clinical indicators, never one that steers toward a higher-paying answer.[2] This supports .

Which code set, by setting
SettingDiagnosesProcedures
Inpatient hospitalICD-10-CMICD-10-PCS
Hospital outpatientICD-10-CMCPT / HCPCS
Physician / professionalICD-10-CMCPT / HCPCS

4.2 DNFB, Denials & Utilization Review

(Discharged Not Final Billed) tracks discharged accounts whose claims have not yet been sent — often because coding or documentation is incomplete. A high DNFB ties up cash, so HIM watches coding turnaround closely. works payer denials to recover revenue and fix the root cause, and checks that care is medically necessary and at the right level.

Key revenue-cycle metrics and functions
TermWhat it means for HIM
DNFBDischarged accounts not yet billed — usually awaiting coding/documentation
Denial managementIdentify, appeal, and correct payer claim denials
Utilization reviewConfirm medical necessity and the appropriate level of care
Coding turnaround timeHow fast records are coded after discharge — drives DNFB

4.3 Coding Audits & Case Mix

A reviews assigned codes against the documentation to verify accuracy and compliance — catching upcoding, unbundling, and unsupported codes. Coding quality flows straight into the and into reimbursement, which is why audits, the , and complete CC/MCC capture all matter to the revenue cycle.

Checkpoint · Revenue Cycle Management

Question 1 of 10

Under the Medicare hospital outpatient prospective payment system, which classification method groups outpatient services into payment categories based on clinical and resource similarity?

Module 5 · Compliance

13–17% of the exam. HIM keeps the organization within the rules — assessing risk and quality, monitoring regulatory change, and maintaining standards for chart completion, coding accuracy, and turnaround. Compliance is proactive: prevent problems, don’t just react.

5.1 Quality, Risk & PSIs/HACs

A identifies and ranks where HIM could fail to meet requirements, so resources target the biggest risks; reviews processes and outcomes against standards. Two coded-data measures matter here: s (AHRQ Patient Safety Indicators) screen for potentially preventable in-hospital complications,[8] and s (Hospital-Acquired Conditions) — if not present on admission — can reduce Medicare payment, which is exactly why POA accuracy is critical.

Compliance measures built on coded data
MeasureWhat it isWhy HIM cares
PSIs (AHRQ)Screens for preventable complicationsBuilt from coded data — coding accuracy affects them
HACs (CMS)Preventable conditions acquired in the stayIf not POA, can reduce payment
POA indicatorWas the condition present at admission?Separates HACs from pre-existing conditions

5.2 HIM Standards & Regulatory Monitoring

HIM maintains standards for its functions — chart-completion timeframes, coding accuracy, ROI turnaround, and departmental workflow — and continuously monitors regulatory changes (CMS rules, Joint Commission standards, coding-guideline updates) so they are implemented accurately and on time. Refining procedures and reporting noncompliance close the loop.

Checkpoint · Compliance

Question 1 of 10

What is the primary purpose of the federal False Claims Act as it applies to healthcare billing?

Module 6 · Leadership

11–15% of the exam. Even at the technician level, the RHIT contributes to leading the HIM function — writing and revising policies and procedures, educating staff and clinicians, setting standards, and supporting interoperability across departments.

6.1 Policies, Procedures & Education

A states what the organization will do and why; a is the step-by-step how. RHITs create and modify both, and they provide education — on HIM laws and regulations, documentation, and content — to clinicians, staff, and students.[2]

Policy vs procedure
DocumentAnswersExample
PolicyWhat and whyDisclosures follow HIPAA and the minimum-necessary rule
ProcedureHow (step by step)Verify the authorization, apply minimum necessary, release, log it

6.2 Standards & Interoperability

HIM establishes standards for its functions and collaborates across departments to support — the ability of systems to exchange and use health data cohesively. Federal programs (formerly Meaningful Use) push EHR adoption and standards-based exchange,[9] all of which depend on the standardized data, code sets, and identifiers HIM owns.

Checkpoint · Leadership

Question 1 of 10

From an HIM leadership perspective, what is the primary purpose of creating a formal departmental policy?

How to Use This RHIT Study Guide

This guide is built to be worked, not just read. The most efficient path to a pass:

  • Study by weight. Data Content, Structure & Governance (24–28%) is the largest domain — start there, then Data Analytics and Revenue Cycle (each 14–18%).
  • Drill the formulas. The statistics questions (death rates, length of stay, case mix index) are quick points once the formulas are automatic — practice them until they are.
  • Check off as you go. Use the Study Guide Contents to mark each section done; it raises your exam-readiness score.
  • Take every checkpoint. The end-of-module quizzes show you exactly which domains need another pass.
  • Drill the weak domain. Send your weak area into the flashcards and a practice test until the score climbs.

RHIT Concept Questions

Common RHIT health-information concepts candidates search while studying — each answered briefly and backed by an official source. Test yourself, then drill them as flashcards.

RHIT Glossary

The high-yield RHIT terms in one place — hover any dotted term in the guide, or flip the whole deck here as a self-grading flashcard set.

Abstracting
Extracting and recording relevant data elements (diagnoses, procedures, demographics, indicators) from the health record into a database or registry.
Accounting of disclosures
A patient's right under HIPAA to receive a list of certain disclosures of their PHI, with the date, recipient, description, and purpose.
APC
Ambulatory Payment Classification — the unit of payment under Medicare's hospital Outpatient Prospective Payment System.
Average length of stay
The total discharge days for a group of patients divided by the number of discharges in the period.
Case mix index
The CMI — the average DRG relative weight for a group of inpatients; higher CMI reflects higher acuity and resource use.
Clinical documentation integrity
CDI — efforts to ensure the health record accurately and completely reflects the patient's clinical status to support correct coding.
Clinician query
A communication asking a provider to clarify ambiguous, incomplete, conflicting, or clinically inconsistent documentation so the correct code can be assigned.
Coding audit
A review of assigned codes against the documentation to verify accuracy and compliance and to catch upcoding, unbundling, or unsupported codes.
Core measures
Standardized, evidence-based quality measures (e.g., Joint Commission/CMS) reported from coded and abstracted data.
Delinquent record
An incomplete health record that has not been finished within the time frame set by medical-staff rules and the Joint Commission.
Denial management
Working payer claim denials — identifying the cause, appealing where appropriate, and correcting the root issue to recover revenue.
Designated record set
Under HIPAA, the group of records a covered entity uses to make decisions about an individual — broader than the legal health record.
DNFB
Discharged Not Final Billed — accounts for discharged patients whose claims have not yet been billed, often awaiting coding or documentation.
Duplicate
Two or more separate records created for the same patient — an MPI integrity error that fragments the patient's history.
Forms / document control
The HIM process of creating, revising, and standardizing the forms and document templates used to capture data.
Gross death rate
Inpatient deaths divided by total discharges (including deaths) in a period, times 100.
HAC
Hospital-Acquired Condition — a reasonably preventable condition acquired during the stay; if not present on admission, it can reduce Medicare payment.
HIPAA
The Health Insurance Portability and Accountability Act, which protects health information through its Privacy and Security Rules.
Interoperability
The ability of different information systems to exchange health data and use it cohesively across organizations.
Legal health record
The documentation a provider organization formally declares as its official business record, produced in response to a legal request; defined in policy and a legal-health-record matrix.
Master Patient Index
The MPI — the permanent database that links every patient to one unique enterprise identifier across all encounters and systems.
Minimum necessary
The HIPAA principle of using, requesting, or disclosing only the least PHI needed for the purpose; treatment disclosures are exempt.
MS-DRG
Medicare Severity Diagnosis-Related Group — the inpatient classification that pays a fixed amount per admission based on diagnoses and procedures.
Net death rate
The death rate excluding deaths occurring less than 48 hours after admission.
Overlay
One record that holds two different patients' data — the most dangerous MPI error because it mixes patients' information.
POA indicator
Present on Admission indicator — a value (Y, N, U, W) reported with each inpatient diagnosis showing whether it was present at admission.
Policy
A high-level statement of what an organization will do and why — its rule or position on an issue.
Principal diagnosis
The condition established after study to be chiefly responsible for the patient's admission to the hospital (UHDDS definition); sequenced first for inpatients.
Procedure
The step-by-step actions staff follow to carry out a policy.
Promoting Interoperability
The federal program (formerly Meaningful Use) that encourages EHR adoption and standards-based health-data exchange.
Protected health information
Individually identifiable health information (PHI) protected under HIPAA in any form — paper, electronic, or oral.
PSI
Patient Safety Indicator — an AHRQ measure that screens coded data for potentially preventable in-hospital complications.
Qualitative analysis
A review of the content of the record for quality and consistency — whether documentation supports the care and is internally consistent.
Quality assessment
The systematic review of HIM processes and outcomes against standards to find and correct performance gaps.
Quantitative analysis
A review of the health record for completeness — confirming that all required reports, signatures, and entries are present (a deficiency check).
Record disposition
The decision and action to retain, archive, or destroy a health record once its retention period and uses are satisfied.
Registry
A collection of secondary data about patients with a particular diagnosis or procedure (e.g., a cancer or trauma registry) used to track outcomes and report.
Release of information
The HIM function of disclosing PHI in response to a valid authorization or permitted request, following HIPAA and the minimum-necessary rule.
Retention schedule
The policy that sets how long each type of health record is kept before it may be archived or destroyed.
Right of access
The HIPAA right of individuals to inspect and obtain a copy of their PHI in a designated record set, generally within 30 days.
Risk assessment
A systematic identification and ranking of where an operation could fail to meet legal, regulatory, or organizational requirements.
Secondary data source
Data drawn from the primary health record into another resource — an index, registry, or database — for a defined purpose.
Security audit
A review of system access logs and controls to detect inappropriate access to electronic PHI.
UACDS
Uniform Ambulatory Care Data Set — the standardized data elements recommended for ambulatory (outpatient) care encounters.
UHDDS
Uniform Hospital Discharge Data Set — standardized data elements collected for every inpatient discharge, including the definition of principal diagnosis.
Utilization review
Evaluating the medical necessity, appropriateness, and level of care of services so patients receive the right care in the right setting.

RHIT Study Guide FAQ

The RHIT exam has 150 questions total — 130 scored items and 20 unscored pretest items, all multiple choice. You have 3 hours and 30 minutes to complete it. Answer everything, since the pretest items are indistinguishable from the scored ones.

References

  1. 1.American Health Information Management Association. “Registered Health Information Technician (RHIT) Certification.” ahima.org.
  2. 2.American Health Information Management Association. “RHIT Exam Content Outline.” ahima.org.
  3. 3.CDC / National Center for Health Statistics. “ICD-10-CM Official Guidelines for Coding and Reporting (UHDDS definitions).” cms.gov.
  4. 4.U.S. Department of Health & Human Services. “HIPAA for Professionals: The Privacy Rule.” hhs.gov.
  5. 5.U.S. Department of Health & Human Services. “Individuals' Right under HIPAA to Access their Health Information.” hhs.gov.
  6. 6.Centers for Medicare & Medicaid Services. “Acute Inpatient Prospective Payment System (MS-DRGs).” cms.gov.
  7. 7.Centers for Medicare & Medicaid Services. “Hospital Outpatient Prospective Payment System (APCs).” cms.gov.
  8. 8.Agency for Healthcare Research and Quality. “Patient Safety Indicators (PSI) Resources.” ahrq.gov.
  9. 9.Centers for Medicare & Medicaid Services. “Promoting Interoperability Programs.” cms.gov.
  10. 101.CDC / National Center for Health Statistics (NCHS). “Health, United States — definitions of hospital utilization statistics.” cdc.gov, accessed 19 June 2026.
Career Employer

Career Employer is the ultimate resource to help you get started working the job of your dreams. We cover topics from general career information, career searching, exam preparation with free study materials, career interviewing, and becoming successful in your career of choice.

Follow Us:

All Posts

Career Employer’s Editorial Process

Here at Career Employer, we focus a lot on providing factually accurate information that is always up to date. We strive to provide correct information using strict editorial processes, article editing, and fact-checking for all of the information found on our website. We only utilize trustworthy and relevant resources. To find out more, make sure to read our full editorial process page here.