#120 - The Rookie S4E17 “Coding”: HIPAA, Security, and Patient Safety in a Crisis
Thu Feb 05 2026
The Rookie S4E17 "Coding: HIPAA, Security, and Patient Safety in a Crisis is a reminder that emergency response is not just a clinical function; it is one of the fastest moments for compliance risk to escalate if teams are not prepared. When a facility becomes unstable, and information is moving quickly, unclear disclosure rules, weak access control, and poor documentation can create preventable exposure. The question auditors and leadership ask later is always the same: "Show what was shared, why it was shared, with whom, and when."
In this session, we use The Rookie S4E17 "Coding" as a real-world crisis study to help healthcare organizations build a repeatable, defensible response workflow that protects patients without slowing critical operations. Ray Walters (EPICompliance) and Jose Delgado Jr. (Taino Consultants) break down common emergency-response gaps, including over-disclosure to law enforcement or media, failure to apply minimum necessary in real time, uncontrolled visitor access, hallway conversations, and weak incident documentation, then translate them into practical controls teams can implement immediately.
Key Topics:
How to protect safety and reduce compliance risk during emergencies by establishing clear disclosure boundaries, command ownership, and rapid decision pathways.How to apply HIPAA and Security Rule expectations in real time, including minimum necessary, role-based information sharing, and access control under pressure.How to build an audit-ready evidence trail during and after a crisis, including incident logs, disclosure rationale, response timelines, escalation triggers, and a practical "first 60 minutes" checklist.Resources:
Learn more about healthcare compliance systems: epicompliance.comExplore healthcare compliance training and weekly webinars: epicompliance.com/training-in...Originally Recorded: February 3, 2026.
More
The Rookie S4E17 "Coding: HIPAA, Security, and Patient Safety in a Crisis is a reminder that emergency response is not just a clinical function; it is one of the fastest moments for compliance risk to escalate if teams are not prepared. When a facility becomes unstable, and information is moving quickly, unclear disclosure rules, weak access control, and poor documentation can create preventable exposure. The question auditors and leadership ask later is always the same: "Show what was shared, why it was shared, with whom, and when." In this session, we use The Rookie S4E17 "Coding" as a real-world crisis study to help healthcare organizations build a repeatable, defensible response workflow that protects patients without slowing critical operations. Ray Walters (EPICompliance) and Jose Delgado Jr. (Taino Consultants) break down common emergency-response gaps, including over-disclosure to law enforcement or media, failure to apply minimum necessary in real time, uncontrolled visitor access, hallway conversations, and weak incident documentation, then translate them into practical controls teams can implement immediately. Key Topics: How to protect safety and reduce compliance risk during emergencies by establishing clear disclosure boundaries, command ownership, and rapid decision pathways.How to apply HIPAA and Security Rule expectations in real time, including minimum necessary, role-based information sharing, and access control under pressure.How to build an audit-ready evidence trail during and after a crisis, including incident logs, disclosure rationale, response timelines, escalation triggers, and a practical "first 60 minutes" checklist.Resources: Learn more about healthcare compliance systems: epicompliance.comExplore healthcare compliance training and weekly webinars: epicompliance.com/training-in...Originally Recorded: February 3, 2026.