When the privacy regulations were first adopted back in 2003, there was considerable anxiety among the provider community, and particularly physicians, with regard to the administrative burden of compliance and intrusion in the doctor-patient relationship that would come from the empowerment of patients to complain to the Office of Civil Rights regarding violation of their right to privacy. The OCR has now published data regarding enforcement of HIPAA privacy complaints and there can be no doubt that the number of complaints has indeed gone up substantially. In 2004, the first full year of the program, there were 6500 complaints filed. By 2007, that number had increased to more than 8100. But this is the grand total of all complaints received from all sources throughout the United States of America! Hardly a tsunami of privacy violations. The data on the website reports complaints filed by state and their resolutions. Although the ratios have changed slightly, more cases are determined to have no violation today, than four years ago. By far, most of the complaints are resolved on investigation and review and do not proceed further (69%). Of the cases that proceeded to investigation, last year produced almost 1500 ‘corrective actions’ (type unspecified) and a larger number (750) than before were found to have no violations.