Aetna has settled two lawsuits related to a 2017 privacy breach involving HIV drug information. The health insurer is seeking at least $20 million in reimbursement from the company it says is responsible for the mailing of those envelopes. Experts say the case should be the “poster child” for good vendor management practices. The case offers early lessons to covered entities and business associates about the importance of good vendor practices, experts say. The privacy breach has already cost health insurers about $20M in legal settlements.”]
Source: https://www.cuinfosecurity.com/aetna-breach-case-gets-messier-a-10646