The Healthcare Compliance Step-By-Step Podcast

EPICompliance

We understand that compliance can feel overwhelming, but it doesn't have to be. Our weekly podcast breaks down one key aspect of healthcare compliance at a time, making it easier to stay informed and take actionable steps. These episodes aren't just for physicians; they're valuable for anyone involved in a healthcare-related business. Each week, we feature interviews with leading voices in the field, including healthcare executives, compliance experts, and innovators who share real-world insights and practical guidance.

  1. 4d ago

    #140 - OSHA 2026: Connecting SDS Requirements to SOPs and Daily Compliance

    OSHA 2026: Connecting SDS Requirements to SOPs and Daily Compliance highlights why Safety Data Sheets are more than a binder requirement and why healthcare organizations must connect chemical safety information to real workplace procedures, employee training, and daily compliance practices. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss how SDS requirements support OSHA's Hazard Communication expectations and how healthcare organizations can use SDS records to identify chemical hazards, train employees, follow manufacturer instructions, store products properly, label containers, and respond to exposure or spills. Key Topics: Why Safety Data Sheets must be part of daily operations, not just stored in a binder.How SDS requirements connect to SOPs, training, labeling, storage, and exposure response.How to keep SDS records accessible and ensure staff know how to use them.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: June 30, 2026.

    45 min
  2. 5d ago

    #139 - HIPAA 2026: Small Business Adjustments Healthcare Practices Need to Make Now

    HIPAA 2026: Small Business Adjustments Healthcare Practices Need to Make Now highlights why small healthcare organizations should prepare for anticipated changes to the HIPAA Security Rule and stronger cybersecurity expectations. The session focuses on practical safeguards such as asset inventories, ePHI data mapping, multifactor authentication, encryption, vulnerability management, contingency planning, access control, and vendor oversight. In this session, Jose Delgado (Taino Consultants) sits down with Mr. Jose Carbia, owner and president of TeamLogic IT, to discuss what small healthcare businesses should be doing now for HIPAA 2026. The conversation translates technical and regulatory expectations into practical steps that owners, administrators, compliance officers, office managers, and healthcare leaders can understand and begin implementing. Key Topics: Why small healthcare organizations should begin preparing for HIPAA 2026 now.How expected HIPAA Security Rule updates may affect daily operations.Why asset inventories, ePHI data mapping, MFA, encryption, and access controls matter.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: June 23, 2026.

    53 min
  3. Jun 17

    #138 - Microsoft’s 2026 Phishing Warning: Why Healthcare Organizations Remain a Prime Target

    Microsoft’s 2026 Phishing Warning: Why Healthcare Organizations Remain a Prime Target highlights why healthcare continues to be one of the most targeted industries for cyberattacks and why phishing remains a major threat to patient data, systems, and organizational security. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss Microsoft's 2026 phishing warning, the campaign that reached more than 35,000 users across 13,000 organizations, and why healthcare organizations must stay alert to modern phishing tactics, credential theft, and token compromise. Key Topics: Why healthcare remains a prime target for phishing attacks.How modern phishing has evolved beyond simple fake emails.How adversary-in-the-middle attacks can bypass traditional multifactor authentication.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: June 16, 2026.

    46 min
  4. Jun 10

    #137 - HIPAA or FERPA? Understanding Which Privacy Rule Applies

    HIPAA or FERPA? Understanding Which Privacy Rule Applies highlights the important differences between two major privacy laws and why organizations must understand which rule applies before handling student, medical, counseling, athletic, or academic records. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss how HIPAA and FERPA apply in different settings, where confusion often occurs, and why proper record handling is essential for healthcare organizations, schools, colleges, universities, and organizations that work at the intersection of healthcare and education. Key Topics: How HIPAA and FERPA differ and why the distinction matters.When HIPAA applies to medical and healthcare records.When FERPA applies to student education, academic, and certain student health records.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: June 9, 2026.

    45 min
  5. Jun 4

    #136 - Compliance, Cybersecurity, AI, Medicare Scrutiny, and the Operational Pressures Facing Medical Practices in 2026

    Compliance, Cybersecurity, AI, Medicare Scrutiny, and the Operational Pressures Facing Medical Practices in 2026 highlights the growing compliance, cybersecurity, AI, Medicare, documentation, training, and operational risks facing medical practices as healthcare organizations prepare for a more demanding regulatory environment. In this session, Dr. Jose Delgado, CEO of Taino Consultants and EPICompliance, discusses the current trends affecting medical practices in 2026, including increased cybersecurity expectations, the use of AI tools in daily workflows, stronger Medicare scrutiny, and the growing pressure on office managers, administrators, compliance leads, and practice owners to manage more responsibilities with fewer resources. Key Topics: How cybersecurity expectations are changing for medical practices.Why AI tools create new risks for privacy, security, documentation, and oversight.How Medicare scrutiny, fraud and abuse concerns, and billing compliance pressures affect daily operations.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: June 2, 2026.

    1h 9m
  6. May 29

    #135 - Hospice, Home Health, and Medicare Fraud: Why CMS Is Taking Action

    Hospice, Home Health, and Medicare Fraud: Why CMS Is Taking Action highlights the growing compliance, billing, enrollment, and audit risks facing hospice and home health organizations as CMS increases scrutiny across these sectors. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss CMS's recent six-month nationwide freeze on new Medicare enrollments for hospice and home health agencies as part of a broader effort to address fraud, waste, and abuse. The discussion explains why these areas are under increased review and what legitimate healthcare organizations should do now to strengthen their compliance programs, documentation practices, and audit readiness. Key Topics: How CMS's enrollment freeze affects hospice and home health agencies.Why hospice and home health organizations are facing increased scrutiny related to fraud, waste, and abuse.Why audit readiness, internal monitoring, and strong compliance systems are critical in today's enforcement environment.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: May 26, 2026.

    53 min
  7. May 21

    #134 - No Surprises, Big Disputes: Lessons from the Aetna and Radiology Partners Case

    No Surprises, Big Disputes: Lessons from the Aetna and Radiology Partners Case highlights the operational, billing, and compliance challenges healthcare organizations may face when payer reimbursement disputes escalate under the No Surprises Act. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss the recent Aetna and Radiology Partners dispute as a real-world example. The discussion explains how reimbursement disagreements, billing practices, documentation gaps, and the Independent Dispute Resolution process can create compliance and operational concerns for healthcare providers, payers, and billing teams. Key Topics: How the No Surprises Act affects healthcare billing operations and out-of-network payment disputes.Why clear documentation, payer contract awareness, billing transparency, and internal review processes matter.How healthcare organizations can identify when payment disputes may become compliance risks.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: May 19, 2026.

    34 min
  8. May 13

    #133 - A Breach Is More Than an IT Problem: HIPAA, Ransomware, and Patient Trust

    A Breach Is More Than an IT Problem: HIPAA, Ransomware, and Patient Trust highlights the serious compliance and operational risks healthcare organizations face when a ransomware attack exposes patient information or disrupts patient care. In this session, Ray Walters (EPICompliance) and Mr. Jose Delgado (Taino Consultants) discuss the recent Hospital Caribbean Medical Center data breach as a real-world example. The discussion explains why ransomware must be treated as more than an IT issue, since it can affect HIPAA compliance, breach notification, patient trust, documentation, operations, and leadership response. Key Topics: How ransomware can disrupt patient care and expose protected health information.Why healthcare organizations must prepare with risk assessments, training, access controls, and incident response planning.How strong documentation and clear communication can help protect patient trust after a cyber incident.Resources: Learn more about healthcare compliance systems: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Explore healthcare compliance training and weekly webinars: ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠epicompliance.com/training-in...⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Originally Recorded: May 12, 2026.

    38 min

About

We understand that compliance can feel overwhelming, but it doesn't have to be. Our weekly podcast breaks down one key aspect of healthcare compliance at a time, making it easier to stay informed and take actionable steps. These episodes aren't just for physicians; they're valuable for anyone involved in a healthcare-related business. Each week, we feature interviews with leading voices in the field, including healthcare executives, compliance experts, and innovators who share real-world insights and practical guidance.

You Might Also Like