Humana 2015 Annual Report Download - page 31

Download and view the complete annual report

Please find page 31 of the 2015 Humana annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 166

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166

23
The costs to eliminate or address cybersecurity threats and vulnerabilities before or after an incident could be
substantial. Our remediation efforts may not be successful and could result in interruptions, delays, or cessation of
service, and loss of existing or potential members. In addition, breaches of our security measures and the unauthorized
dissemination of sensitive personal information or proprietary or confidential information about us or our members or
other third-parties, could expose our members’ private information and result in the risk of financial or medical identity
theft, or expose us or other third-parties to a risk of loss or misuse of this information, result in significant regulatory
fines or penalties, litigation and potential liability for us, damage our brand and reputation, or otherwise harm our
business.
Our business may be materially adversely impacted by the adoption of a new coding set for diagnoses.
Federal regulations related to the Health Insurance Portability and Accountability Act of 1996, as amended (HIPAA),
contain minimum standards for electronic transactions and code sets, and for the privacy and security of protected
health information. On October 1, 2015, ICD-10, the current system of assigning codes to diagnoses and procedures
associated with hospital utilization in the United States, replaced the prior set of codes. For dates of service on or after
October 1, 2015, health plans and providers are required to use ICD-10 codes for such diagnoses and procedures. While
we prepared for the transition to ICD-10, if unforeseen circumstances arise, it is possible that we could be exposed to
investigations and allegations of noncompliance, which could have a material adverse effect on our results of operations,
financial position and cash flows. In addition, if some providers continue to use ICD-9 codes on claims after October
1, 2015, including providers in our network who are employees, we will have to reject such claims, which may lead to
claim resubmissions, increased call volume and provider and customer dissatisfaction. Further, providers may use
ICD-10 codes differently than they used ICD-9 codes in the past, which could result in increased claim submissions
or lost revenues under risk adjustment. During the transition to ICD-10, certain claims processing and payment
information we have historically used to establish our reserves may not be reliable or available in a timely manner. If
we do not adequately implement the new ICD-10 coding set, or if providers in our network do not adequately transition
to the new ICD-10 coding set, our results of operations, financial position and cash flows may be materially adversely
affected.
We are involved in various legal actions and governmental and internal investigations, any of which, if resolved
unfavorably to us, could result in substantial monetary damages or changes in our business practices. Increased
litigation and negative publicity could increase our cost of doing business.
We are or may become a party to a variety of legal actions that affect our business, including breach of contract
actions, employment and employment discrimination-related suits, employee benefit claims, stockholder suits and other
securities laws claims, and tort claims.
In addition, because of the nature of the health care business, we are subject to a variety of legal actions relating
to our business operations, including the design, management, and offering of products and services. These include
and could include in the future:
claims relating to the methodologies for calculating premiums;
claims relating to the denial of health care benefit payments;
claims relating to the denial or rescission of insurance coverage;
challenges to the use of some software products used in administering claims;
claims relating to our administration of our Medicare Part D offerings;
medical malpractice actions based on our medical necessity decisions or brought against us on the theory
that we are liable for providers' alleged malpractice;
claims arising from any adverse medical consequences resulting from our recommendations about the
appropriateness of providers’ proposed medical treatment plans for patients;
allegations of anti-competitive and unfair business activities;