The Healthcare Compliance Step-By-Step Podcast

#137 - HIPAA or FERPA? Understanding Which Privacy Rule Applies

44 min · 10 de jun de 2026
Portada del episodio #137 - HIPAA or FERPA? Understanding Which Privacy Rule Applies

Descripción

HIPAA or FERPA? Understanding Which Privacy Rule Applies highlights the important differences between two major privacy laws and why organizations must understand which rule applies before handling student, medical, counseling, athletic, or academic records. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss how HIPAA and FERPA apply in different settings, where confusion often occurs, and why proper record handling is essential for healthcare organizations, schools, colleges, universities, and organizations that work at the intersection of healthcare and education. Key Topics: * How HIPAA and FERPA differ and why the distinction matters. * When HIPAA applies to medical and healthcare records. * When FERPA applies to student education, academic, and certain student health records. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 9, 2026.

Comentarios

0

Sé la primera persona en comentar

¡Regístrate ahora y únete a la comunidad de The Healthcare Compliance Step-By-Step Podcast!

Prueba gratis

Empieza 7 días de prueba

$99 / mes después de la prueba. · Cancela cuando quieras.

  • Podcasts solo en Podimo
  • 20 horas de audiolibros al mes
  • Podcast gratuitos

Todos los episodios

140 episodios

episode #140 - OSHA 2026: Connecting SDS Requirements to SOPs and Daily Compliance artwork

#140 - OSHA 2026: Connecting SDS Requirements to SOPs and Daily Compliance

OSHA 2026: Connecting SDS Requirements to SOPs and Daily Compliance highlights why Safety Data Sheets are more than a binder requirement and why healthcare organizations must connect chemical safety information to real workplace procedures, employee training, and daily compliance practices. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss how SDS requirements support OSHA's Hazard Communication expectations and how healthcare organizations can use SDS records to identify chemical hazards, train employees, follow manufacturer instructions, store products properly, label containers, and respond to exposure or spills. Key Topics: * Why Safety Data Sheets must be part of daily operations, not just stored in a binder. * How SDS requirements connect to SOPs, training, labeling, storage, and exposure response. * How to keep SDS records accessible and ensure staff know how to use them. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 30, 2026.

1 de jul de 202645 min
episode #139 - HIPAA 2026: Small Business Adjustments Healthcare Practices Need to Make Now artwork

#139 - HIPAA 2026: Small Business Adjustments Healthcare Practices Need to Make Now

HIPAA 2026: Small Business Adjustments Healthcare Practices Need to Make Now highlights why small healthcare organizations should prepare for anticipated changes to the HIPAA Security Rule and stronger cybersecurity expectations. The session focuses on practical safeguards such as asset inventories, ePHI data mapping, multifactor authentication, encryption, vulnerability management, contingency planning, access control, and vendor oversight. In this session, Jose Delgado (Taino Consultants) sits down with Mr. Jose Carbia, owner and president of TeamLogic IT, to discuss what small healthcare businesses should be doing now for HIPAA 2026. The conversation translates technical and regulatory expectations into practical steps that owners, administrators, compliance officers, office managers, and healthcare leaders can understand and begin implementing. Key Topics: * Why small healthcare organizations should begin preparing for HIPAA 2026 now. * How expected HIPAA Security Rule updates may affect daily operations. * Why asset inventories, ePHI data mapping, MFA, encryption, and access controls matter. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 23, 2026.

30 de jun de 202652 min
episode #138 - Microsoft’s 2026 Phishing Warning: Why Healthcare Organizations Remain a Prime Target artwork

#138 - Microsoft’s 2026 Phishing Warning: Why Healthcare Organizations Remain a Prime Target

Microsoft’s 2026 Phishing Warning: Why Healthcare Organizations Remain a Prime Target highlights why healthcare continues to be one of the most targeted industries for cyberattacks and why phishing remains a major threat to patient data, systems, and organizational security. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss Microsoft's 2026 phishing warning, the campaign that reached more than 35,000 users across 13,000 organizations, and why healthcare organizations must stay alert to modern phishing tactics, credential theft, and token compromise. Key Topics: * Why healthcare remains a prime target for phishing attacks. * How modern phishing has evolved beyond simple fake emails. * How adversary-in-the-middle attacks can bypass traditional multifactor authentication. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 16, 2026.

17 de jun de 202646 min
episode #137 - HIPAA or FERPA? Understanding Which Privacy Rule Applies artwork

#137 - HIPAA or FERPA? Understanding Which Privacy Rule Applies

HIPAA or FERPA? Understanding Which Privacy Rule Applies highlights the important differences between two major privacy laws and why organizations must understand which rule applies before handling student, medical, counseling, athletic, or academic records. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss how HIPAA and FERPA apply in different settings, where confusion often occurs, and why proper record handling is essential for healthcare organizations, schools, colleges, universities, and organizations that work at the intersection of healthcare and education. Key Topics: * How HIPAA and FERPA differ and why the distinction matters. * When HIPAA applies to medical and healthcare records. * When FERPA applies to student education, academic, and certain student health records. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 9, 2026.

10 de jun de 202644 min
episode #136 - Compliance, Cybersecurity, AI, Medicare Scrutiny, and the Operational Pressures Facing Medical Practices in 2026 artwork

#136 - Compliance, Cybersecurity, AI, Medicare Scrutiny, and the Operational Pressures Facing Medical Practices in 2026

Compliance, Cybersecurity, AI, Medicare Scrutiny, and the Operational Pressures Facing Medical Practices in 2026 highlights the growing compliance, cybersecurity, AI, Medicare, documentation, training, and operational risks facing medical practices as healthcare organizations prepare for a more demanding regulatory environment. In this session, Dr. Jose Delgado, CEO of Taino Consultants and EPICompliance, discusses the current trends affecting medical practices in 2026, including increased cybersecurity expectations, the use of AI tools in daily workflows, stronger Medicare scrutiny, and the growing pressure on office managers, administrators, compliance leads, and practice owners to manage more responsibilities with fewer resources. Key Topics: * How cybersecurity expectations are changing for medical practices. * Why AI tools create new risks for privacy, security, documentation, and oversight. * How Medicare scrutiny, fraud and abuse concerns, and billing compliance pressures affect daily operations. Resources: * Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/] * Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ [https://epicompliance.com/training-information-webinars] Originally Recorded: June 2, 2026.

4 de jun de 20261 h 8 min