Humana 2012 Annual Report Download - page 36

Download and view the complete annual report

Please find page 36 of the 2012 Humana annual report below. You can navigate through the pages in the report by either clicking on the pages listed below, or by using the keyword search tool below to find specific information within the annual report.

Page out of 164

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164

Legislation and related regulations, as well as future legislative changes, in the aggregate may have a material
adverse effect on our results of operations, including restricting revenue, enrollment and premium growth in
certain products and market segments, restricting our ability to expand into new markets, increasing our medical
and operating costs, lowering our Medicare payment rates and increasing our expenses associated with the non-
deductible federal premium tax and other assessments; our financial position, including our ability to maintain
the value of our goodwill; and our cash flows. If we fail to effectively implement our operational and strategic
initiatives with respect to the implementation of the Health Insurance Reform Legislation, our business may be
materially adversely affected. In addition, if the new non-deductible federal premium tax and other assessments,
including a three-year commercial reinsurance fee, were imposed as enacted, and if we are unable to adjust our
business model to address these new taxes and assessments, such as through the reduction of our operating costs
or adjustments to premium pricing or benefit design, there can be no assurance that the non-deductible federal
premium tax and other assessments would not have a material adverse effect on our results of operations,
financial position, and cash flows.
Our business activities are subject to substantial government regulation. New laws or regulations, or
changes in existing laws or regulations or their manner of application, including reductions in Medicare
Advantage payment rates, could increase our cost of doing business and may adversely affect our business,
profitability, financial condition, and cash flows.
In addition to the Health Insurance Reform Legislation, the health care industry in general and health
insurance are subject to substantial federal and state government regulation:
Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for
Economic and Clinical Health Act (HITECH Act)
The use of individually identifiable health data by our business is regulated at federal and state levels. These
laws and rules are changed frequently by legislation or administrative interpretation. Various state laws address
the use and maintenance of individually identifiable health data. Most are derived from the privacy provisions in
the federal Gramm-Leach-Bliley Act and the Health Insurance Portability and Accountability Act, or HIPAA.
HIPAA includes administrative provisions directed at simplifying electronic data interchange through
standardizing transactions, establishing uniform health care provider, payer, and employer identifiers, and
seeking protections for confidentiality and security of patient data. The rules do not provide for complete federal
preemption of state laws, but rather preempt all inconsistent state laws unless the state law is more stringent.
These regulations set standards for the security of electronic health information. Violations of these rules
could subject us to significant criminal and civil penalties, including significant monetary penalties. Compliance
with HIPAA regulations requires significant systems enhancements, training and administrative effort. HIPAA
can also expose us to additional liability for violations by our business associates (e.g., entities that provide
services to health plans).
The HITECH Act, one part of the American Recovery and Reinvestment Act of 2009, significantly
broadened the scope of the privacy and security regulations of HIPAA. Among other requirements, the HITECH
Act mandates individual notification in the event of a breach of unsecured, individually identifiable health
information, provides enhanced penalties for HIPAA violations, requires business associates to comply with
certain provisions of the HIPAA privacy and security rule, and grants enforcement authority to states’ Attorneys
General in addition to the HHS Office of Civil Rights. On January 17, 2013, HHS issued the omnibus final rule
on HIPAA privacy, security, breach notification requirements and enforcement requirements under the HITECH
Act, and a final regulation for required changes to the HIPAA Privacy Rule for the Genetic Information
Nondiscrimination Act, or GINA. The omnibus final rule becomes effective on March 26, 2013, with an
applicable compliance date of September 23, 2013.
In addition, there are numerous federal and state laws and regulations addressing patient and consumer
privacy concerns, including unauthorized access or theft of personal information. State statutes and regulations
26