As Prior Authorization Eases, Medicare’s History Offers Guidance for Payers and Providers 

The central lesson: when front-end utilization controls relax, financial pressure migrates to the back end of the claims cycle.  

The current wave of prior authorization (PA) reform is real, significant — and, for those of us who have worked inside Medicare and commercial payment integrity for years, strikingly familiar. 

Last June, several dozen of the nation’s largest health insurers — including UnitedHealthcare, Aetna, Cigna, Humana, Elevance Health, and Blue Cross Blue Shield — committed to standardizing and streamlining PA across commercial, Medicare Advantage, and Medicaid plans. Under the voluntary agreement, participating plans pledged to expand real-time approvals to 80 percent of PA and reduce the number of services requiring authorization by 2027. Most recently, UnitedHealthcare announced it is eliminating PA requirements for 30 percent of services that previously required approval. 

The pressure driving these changes is legitimate. According to a 2024 AMA survey, the average physician’s practice completed 43 PAs per week, with staff spending roughly 12 hours weekly on related paperwork. That burden is real, and the reform effort reflects genuine recognition of it. 

However, as a Medicare and commercial payment integrity specialist, FHAS has seen this cycle before in the Medicare program. Payers and providers would do well to use that history as a guide for effective change.   

The key lesson to be learned from Medicare: Payment integrity oversight will continue.  Reduced PA changes the timing of that oversight, not the intensity of it.    

When Front-End Controls Ease, Back-End Scrutiny Grows 

Long before PA became a defining feature of commercial insurance, traditional fee-for-service Medicare operated largely on a pay-and-chase model. Claims were paid quickly, with limited prospective review. As Medicare spending accelerated in the late 1990s and early 2000s, Congress responded by authorizing what eventually became the Recovery Audit Contractor (RAC) program — a retrospective review system designed to identify and recover improper payments after the fact. 

Medicare’s response included expanded post-payment audits, predictive analytics, data-mining programs, and documentation validation initiatives. The commercial market may now be following a recognizable trajectory. 

Health insurers today are investing heavily in AI-driven tools that operate across the health care financial journey — before care is provided, while care is underway, and after the claim is paid. According to a Health Affairs analysis published in June 2025, post-payment audit tools now represent a major and growing category of insurer AI investment, used specifically to search for fraud, errors, and billing anomalies after reimbursement has occurred. 

Tensions are likely to continue over how humans remain in the loop as AI use expands. However, URAC-certified Health Utilization Management experts like those at FHAS bolster integrity throughout the entire pre-service to post-payment cycle. Our support for plans with pre- or post-payment medical reviews and providers with claim pre-audits assures all parties that the administrative and financial backbone of health care is trustworthy — a goal shared by all.  

What Payers Should Keep in Mind 

As payers look to the future of utilization management, or oversight efforts shift focus to post-payment audits, Medicare’s RAC program demonstrated that retrospective review should avoid broad, indiscriminate criteria and improper incentives or it risks exploding appeals volume and administrative costs. 

The stronger path is to design review systems that are transparent, proportionate, and focused on genuine outliers rather than broad, indiscriminate scrutiny. 

UnitedHealthcare’s Gold Card Program offers an encouraging model. In 2025, it reduced PA volumes by an average of 30 percent for eligible provider groups by exempting physicians with strong compliance track records from routine review requirements. That kind of targeted, performance-based oversight preserves credibility while meaningfully reducing friction for compliant providers — exactly the balance Medicare worked years to establish. 

What Providers Should Do Now 

Healthcare utilization management is a permanent feature of the healthcare landscape.  

The goal and responsibility for Medicare and for commercial payers is to ensure that payment reflects services that are actually rendered, medically necessary, and appropriately documented.  Providers who align their documentation and billing practices with that standard are best positioned to withstand audit scrutiny, minimize administrative burden, and participate effectively in whatever review environment emerges next. 

Remember: strong documentation and accurate coding will always matter. Some details to keep in mind:  

1. Documentation remains your primary protection. Medical necessity must be evident in the record — not assumed from the treating clinician’s knowledge. Each note should clearly connect the patient’s condition, functional status, and clinical findings to the coverage criteria for the service provided. Phrases like “medically necessary” without supporting detail are rarely sufficient. 

2. Know the coverage criteria before you bill. Medicare coverage is governed by National Coverage Determinations (NCDs), Local Coverage Determinations (LCDs), and CMS program memoranda. RAC auditors — and commercial payers — assess claims against these published standards. Providers who are unfamiliar with the applicable LCD for a service they frequently bill are at elevated audit risk. Reviewing LCDs periodically and incorporating coverage criteria language directly into documentation templates is one of the most practical steps a practice can take. 

3. Understand your appeal rights and use them. Appeals processes exist precisely because mistakes can happen. Providers should track their denial and appeal patterns, identify recurring issues, and address root causes through documentation improvement rather than absorbing denials as a cost of doing business. 

4. Treat audit activity as a quality signal. When a practice receives audit requests for a particular service or code, that is a signal worth investigating — even before a denial is issued. Proactive internal review of flagged claim types, conducted with compliance counsel or a qualified coder, can identify and correct vulnerabilities before they become systemic problems. 

The Bigger Picture 

The payers and providers that most successfully navigate this transition to faster PA and reduced PA requirements will be those that treat payment integrity not as an adversarial process, but as a shared standard of high quality, timely and cost-effective care.