Threatpost reports that HHS is finally taking action against at least the most blatant violations of the Health Insurance Portability and Accountability Act’s privacy rules. Sort of:

The health care industry’s toothless tiger finally bared its teeth, as the U.S. Department of Health and Human Services issued a $4.3 m fine to a Maryland health care provider for violations of the HIPAA Privacy Rule. The action is the first monetary fine issued since the Act was passed in 1996.

via HIPAA Bares Its Teeth: $4.3m Fine For Privacy Violation | threatpost.

Perhaps the Obama administration can even further reduce the cost of the healthcare reform laws by really enforcing HIPAA, and using the rules as a revenue generator — like some small towns do with speeding tickets.