Which procedures no longer require prior authorization in 2026, and how do you stay current?

Last reviewed: May 2026.

Your team is probably still requesting authorizations for procedures that no longer need them. That is the quiet cost of 2026: the largest payers in the country have dropped prior authorization on hundreds of services, and most front-line staff have not been told which ones. The old habit, check authorization on everything because staff time is cheaper than a denied claim, now burns money on work that no longer exists.

The risk has flipped. The waste is no longer just in the authorizations you miss. It is also in the authorizations you keep chasing for procedures that no longer need them. Here is what changed, payer by payer, and how to build a process that keeps your list current as it keeps moving.

The short version

• In 2026 the largest payers dropped prior authorization on hundreds of services: UnitedHealthcare on 231 procedures, Cigna on nearly 100, Humana on about a third of outpatient authorizations.
• No authorization required is payer-and-plan specific and does not remove medical-necessity review, so verify each exemption before you stop authorizing.
• Treat any no-auth list as a snapshot and re-audit quarterly, because payers are publishing rolling changes through 2026.

Why did the no-auth landscape change in 2026?

The shift came from sustained pressure and a coordinated industry response. After years of physician surveys documenting care delays, and after federal action through the CMS Interoperability and Prior Authorization Final Rule, roughly 50 health plans, including all six of the largest insurers, signed onto a public commitment to simplify prior authorization. They pledged to cut the number of services requiring authorization, to honor existing authorizations for 90 days when a patient changes insurers mid-treatment, and to move toward a standardized electronic submission framework by January 1, 2027.

The commitments are real but uneven. Industry reporting in early 2026 found that plans had eliminated roughly 11 percent of authorizations under the pledge so far, which means progress is happening and is also far from finished. That gap is exactly why a tracking process matters more than a one-time list.

What does “no auth required” mean, and how can it still go wrong?

“No authorization required” does not mean “no rules apply.” Three things can still trip you up.

A payer can still conduct retroactive review and challenge medical necessity after the fact, even on a service that did not need authorization up front. Coverage can carry conditions, such as site-of-service or frequency limits, that function like a quiet authorization requirement. And payer-specific carve-outs mean a procedure freed by one plan may still require authorization under another plan from the same insurer, or under a different state's Medicaid managed care contract.

The practical rule: removing a procedure from your authorization workflow is a payer-and-plan-specific decision, not a blanket one. Verify, then trust.

Which procedures did each major payer free in 2026?

Here is the verified, payer-by-payer picture as of this review. Treat it as a snapshot, because these lists are being updated through 2026.

Sources: UnitedHealth Group newsroom, Humana company announcement, and industry reporting from Fierce Healthcare on the AHIP-aligned commitments.

Two figures worth keeping in view. UnitedHealthcare reports that prior authorization currently applies to about 2 percent of its medical services, with roughly 92 percent of submitted authorizations approved in under 24 hours. Humana committed to deciding at least 95 percent of complete electronic authorization requests within one business day. The direction is clear: fewer authorizations, and faster decisions on the ones that remain.

Where gold carding fits

Beyond the across-the-board cuts, gold carding offers a path to ongoing exemption for high-performing practices. UnitedHealthcare reports that its Gold Card program reduced authorization volume by an average of 30 percent for eligible provider groups in 2025. If your practice consistently meets evidence-based criteria for a given service, qualifying for gold card status can take that service off your authorization workload for the payers that offer it. We cover the mechanics in detail in our guide to gold carding for prior authorization.

How do you build a no-auth tracking workflow?

A static list goes stale within a quarter. A process does not. Build four habits.

Run a quarterly no-auth audit. Pull your highest-volume authorized procedures, cross-check them against each payer's current published requirements, and remove anything that has been freed. Assign one owner. The audit fails when it is everyone's job, which means it is no one's. Give it to a named authorization lead. Document every exemption with the date, the payer, the plan, and the source, so that when a claim is questioned you can show why you skipped authorization. And re-check after payer updates, since the major insurers are publishing rolling changes through 2026 rather than one annual update.

For multi-location and PE-backed groups, the leverage is standardization. One audit process, one documented exemption log, one source of truth across every site. Letting each location maintain its own list is how a portfolio ends up authorizing the same freed procedure in five different ways. A shared prior authorization cheat sheet is a good place to start.

What do you do when a payer says auth is required but your records say it is not?

Disputes happen, especially during a period of rolling change. When a payer flags a service your records show as exempt, document the specific payer policy and effective date you relied on, reference the payer's own published change, and escalate through the provider relations channel rather than re-submitting an unnecessary authorization. The new public reporting requirements under CMS-0057-F, which require impacted payers to post authorization metrics, give you more leverage here than you had a year ago. A clean exemption log is your evidence.

Where this guidance fits, and where it does not

This approach pays off most for practices with high procedural and imaging volume across Medicare Advantage, Medicaid managed care, and the large commercial payers that signed the simplification pledge. If that describes your book, the savings from pruning your authorization workload are immediate.

It helps less if your volume concentrates in smaller regional payers or self-funded employer plans that have not adopted the commitments. Those plans change on their own schedules, and some have not changed at all. For that mix, the honest answer is that you still need an authorization workflow that handles the payers who kept their requirements, alongside the audit process that captures the ones who dropped them.

How automation keeps your list current

Linear Health automates the authorization workflow end to end, and that includes the requirement check itself. Rather than relying on a coordinator's memory of which procedures still need authorization, the platform checks current payer requirements at the point of order, flags services that have been freed, and routes only the requests that still need authorization into the queue. Where payers expose electronic requirement lookups, it uses them. The customers running this see up to 80 percent less manual authorization time, in part because they stop working authorizations that no longer exist.

“Half of cutting our authorization burden was not faster submissions. It was finally knowing which procedures we could stop authorizing. We were chasing approvals on things the payer had already dropped, and nobody had told the front line.”

Frequently asked questions

Do I still need to check eligibility even if a procedure is on the no-auth list?

Yes. Eligibility and authorization are separate. A procedure can be exempt from authorization while the patient still needs to be confirmed as eligible, in network, and covered for that service. Skipping eligibility is how an exempt procedure still ends in a denied claim.

How often do payers update their no-auth lists?

Through 2026, the major payers are publishing rolling updates rather than a single annual change. Treat any no-auth list as a snapshot and re-verify quarterly, and after any announced payer change.

Can a payer retroactively deny a claim for a procedure that did not require authorization?

Yes, on medical-necessity or coverage grounds. Removing the authorization requirement does not remove the payer's ability to review the claim. Keep documentation that supports medical necessity even when no authorization was needed.

Which payers cut the most authorizations in 2026?

UnitedHealthcare dropped 231 procedures in December 2025 with more cuts committed through 2026, Cigna eliminated nearly 100 services, and Humana removed roughly one-third of outpatient authorizations effective January 1, 2026.

Does the CMS rule require these cuts?

The CMS Interoperability and Prior Authorization Final Rule drives faster decisions, specific denial reasons, and public reporting, and it set the stage for the electronic submission framework. The procedure cuts themselves came largely through the payers' own commitments alongside that rule.