Brief

$475,000 fine marks first HIPAA enforcement action over breach notification timing