AFLAC (AFL) Risk Analysis

The Company and its insurance subsidiaries are subject to complex laws and regulations that are administered and enforced by a number of governmental authorities, that exercise a degree of interpretive latitude, including the FSA and Ministry of Finance (MOF) in Japan, state insurance regulators, the BMA in Bermuda, the SEC, the NAIC, the FIO, the U.S. Department of Justice, state attorneys general, the U.S. Commodity Futures Trading Commission, and the U.S. Department of the Treasury, including the Internal Revenue Service (IRS), in the U.S. The Company is subject to the risk that compliance with any particular regulator's or enforcement authority's interpretation of a legal or regulatory issue may result in non-compliance with another regulator's or enforcement authority's interpretation of the same issue, particularly when compliance is judged in hindsight. Further, regulatory authorities periodically re-examine existing laws and regulations applicable to insurance companies and their products. Changes in these laws and regulations, or in interpretations thereof, could have a material adverse effect on the Company's financial condition and results of operations. Additionally, changes in the overall legal or regulatory environment may, even absent any particular regulator's or enforcement authority's interpretation of an issue changing, cause the Company to change its views regarding the actions it needs to take from a legal or regulatory risk management perspective. This may necessitate changes to the Company's practices that may, in some cases, limit its ability to grow or otherwise negatively impact the profitability of the Company's business. If the Company's subsidiaries fail to meet the minimum capital or operational requirements established by its respective regulators, they could be subject to examination or corrective action, or the Company's financial strength ratings could be downgraded, or both. Compliance with applicable laws and regulations is time consuming and personnel-intensive, and changes in these laws and regulations may materially increase the Company's direct and indirect compliance and other expenses of doing business, thus having a material adverse effect on the Company's financial condition and results of operations. For additional information, see the Government Regulation subsections of Item 1. Business.

The Company is subject to taxation in Japan, and in the U.S. under federal and numerous state and local tax jurisdictions. In preparing the Company's financial statements, the Company estimates the amount of tax that will become payable, but the Company's effective tax rate may be different than estimates due to numerous factors including accounting for income taxes, the mix of earnings from Japan and the U.S., the results of tax audits, adjustments to the value of uncertain tax positions, changes to estimates and other factors. Further, changes in U.S. or Japan tax laws or interpretations of such laws could increase the Company's corporate taxes and reduce earnings. In addition, it remains difficult to predict the timing and effect that future tax law changes could have on the Company's earnings both in the U.S. and in foreign jurisdictions. Any of these factors could cause the Company to experience an effective tax rate significantly different from previous periods or the Company's current estimates. If the Company's effective tax rate were to increase, the Company's financial condition and results of operations could be adversely affected.

The collection, maintenance, use, protection, disclosure and disposal of individually identifiable data by the Company's businesses are regulated at the international, federal and state levels. These laws and rules are subject to change by legislation or administrative or judicial interpretation. With regard to personal information obtained from policyholders, the insured, or others, Aflac Japan is regulated in Japan by the APPI and guidelines issued by FSA and other governmental authorities. Various state laws in the U.S. address the unauthorized access and acquisition of personal information and the use and disclosure of individually identifiable health data. HIPAA requires the Company to impose privacy and security requirements on its business associates (as such term is defined in the HIPAA regulations). A number of states, including California and New York, have adopted and continue to expand their privacy and cybersecurity laws and regulations in recent years. Additionally, the U.S. Congress and many states are considering new privacy and security requirements that would apply to the Company's business. Compliance with new privacy and security laws, requirements, and new regulations may result in cost increases due to necessary systems changes, new limitations or constraints on the Company's business models, the development of new administrative processes, and the effects of potential noncompliance by the Company's business associates. They also may impose further restrictions on the Company's collection, disclosure and use of customer identifiable data that are housed in one or more of the Company's administrative databases. Noncompliance with any privacy laws or any security breach involving the misappropriation, loss, theft or other unauthorized disclosure of sensitive or confidential customer information, whether by the Company or by one of its third parties, could have a material adverse effect on the Company's business, reputation, brand and results of operations, including: material fines and penalties; compensatory, special, punitive and statutory damages; consent orders regarding the Company's privacy and security practices; adverse actions against the Company's licenses to do business; and injunctive relief. Under Japanese laws and regulations, including the APPI, if a leak or loss of personal information by Aflac Japan or its business associates should occur, depending on factors such as the volume of personal data involved and the likelihood of other secondary damage, Aflac Japan may be required to file reports to the FSA; issue public releases explaining such incident to the public; or become subject to an FSA business improvement order, which could pose a risk to the Company's reputation. Although the Company provides for appropriate protections through its contracts and performs information security risk assessments of its third-party service providers and business associates, the Company still has limited control over their actions and practices. In addition, despite the security measures the Company has in place to ensure compliance with applicable laws and rules, the Company's facilities and systems, and those of the Company's third-party providers and participants in its distribution channels may be vulnerable to security breaches, acts of vandalism or theft, computer viruses, misplaced or lost data, programming and/or human errors or other similar events. From time to time, the Company, its third-party providers and participants in the Company's distribution channels have experienced and will likely continue to experience such events. In such cases, notification to affected individuals, state and federal regulators, state attorneys general and media may be required, depending upon the number of affected individuals and whether personal information including health or financial data was subject to unauthorized access.

The Company's results of operations are materially affected by conditions in the global capital markets and the global economy generally, including in its two primary operating markets of the U.S. and Japan. Inflation globally remains elevated but continues to trend downwards after monetary tightening, recovery of supply chains, and phasing out of extraordinary fiscal support. In the U.S. and other regions, inflation rates reduced to a level that supported monetary loosening by central banks, but the risk of a return to increasing inflation remains alongside risks of weakening economic conditions. The Bank of Japan remains an exception to the major central bank loosening trends, ending a prolonged period of negative interest rates on bank reserves in March 2024. Continuing geopolitical tensions, including armed conflicts and regime changes, exacerbate uncertainty and can contribute to volatility across both physical and financial asset classes. Economic uncertainty is also impacted by potential policy changes in the U.S., including proposed domestic regulations focused on consumer pricing, trade tariffs and increasing trade restrictions driven by security concerns and broader geopolitical tensions. Continuing higher interest rates and softer economic conditions could impact the creditworthiness and value of the Company's existing investment portfolio, influence opportunities for new investments and have a negative impact on the Company's results of operations and financial positions. The Company's investments are vulnerable to adverse market developments such as asset price volatility, lack of market liquidity, credit rating downgrades, payment defaults, asset restructurings, increased losses, and other risks. The Company has evaluated its holdings and identified investments in areas such as commercial real estate and highly leveraged companies as the most exposed to continued high interest rates and an economic downturn. These investments are experiencing and may continue to experience higher credit losses, credit rating downgrades and/or defaults and a deterioration in the value of collateral in the case of secured investments. The Company has examined in each case whether a reduction in size of the holdings is appropriate. The Company has identified assets impacted or expected to be impacted by continued high interest rates and economic contraction, but other investments not identified to date may also be impacted. The availability of new investments in certain private market asset classes has been and may continue to be limited. The Company may need to adjust its investment strategy and/or be forced to liquidate investments to pay claims. The continuing difference between U.S. dollar and Japanese yen interest rates also contributes to costs of hedging foreign currency exchange risk of U.S. dollar-denominated investments held by Aflac Japan. The Company is not able to predict the ultimate impact of inflation, interest rate changes, interest rate differences and other changing market conditions on the Company's investments and hedging programs. See the risk factor below entitled, "The Company is exposed to significant interest rate risk, which may adversely affect its results of operations, financial condition and liquidity" for additional information. See the Investments and Results of Operations by Segment sections of Item 7. MD&A, for additional information. As the Company holds a significant amount of fixed maturity securities issued by borrowers located in many different parts of the world, its financial results are directly influenced by global financial markets. Potential weakness in global capital markets could adversely affect the Company's financial condition, including its capital position and overall profitability. Market volatility and recessionary pressures could result in significant realized or unrealized losses due to severe price declines driven by high interest rates or increases in credit spreads, defaults in payment of principal or interest, or credit rating downgrades. Japan is the largest market for the Company's insurance products, and the Company owns substantial holdings in Japan Government Bonds (JGBs). Government actions to stimulate the economy affect the value of the Company's existing holdings, its reinvestment rate on new investments in JGBs or other Japanese yen-denominated assets, and consumer behavior relative to the Company's suite of insurance products. The additional government debt from fiscal stimulus actions could adversely impact the Japan sovereign credit profile, which could in turn lead to volatility in Japanese capital and currency markets. The Bank of Japan ended its policy of negative interest rates in March 2024, and uncertainty about future Japan interest rate changes and the impact of increased rates on the Japanese economy could also contribute to volatility in Japanese markets. Should investors become concerned with any of the Company's investment holdings, including the concentration in JGBs, its access to market sources of funding could be negatively impacted. It is possible that lenders or debt investors may also become concerned if the Company incurs large investment losses or if the level of the Company's business activity decreases due to a market downturn or there are further adverse economic trends in the U.S. or Japan, specifically, or generally in developed markets. The Company needs liquidity to pay its operating expenses, dividends on its common stock, interest on its debt, and liabilities. See the Liquidity and Capital Resources section of Item 7. MD&A, for additional information. In the event the Company's current resources do not meet its needs, the Company may need to seek additional financing. The Company's access to additional financing will depend on a variety of factors such as market conditions, the general availability of credit within the financial services industry and its credit rating. See the risk factor below entitled, "Any decrease in the Company's financial strength or debt ratings may have an adverse effect on its competitive position and access to liquidity and capital" for additional information. Broad economic factors such as consumer spending, business investment, government spending, the volatility and strength of the capital markets and inflation, as well as ongoing central bank responses to these factors, all affect the business and economic environment and, indirectly, the amount and profitability of the Company's business. In an economic downturn characterized by higher unemployment, lower family income, lower corporate earnings, lower business investment and lower consumer spending, the demand for financial and insurance products could be adversely affected. This adverse effect could be particularly significant for companies such as Aflac that distribute supplemental, discretionary insurance products primarily through the worksite in the event that economic conditions result in a decrease in the number of new hires and total employees. Adverse changes in the economy could potentially lead the Company's customers to be less inclined to purchase supplemental insurance coverage or to decide to cancel or modify existing insurance coverage. Further, Aflac U.S. may experience higher rates of policy lapses during periods of increased job turnover and workforce mobility within the U.S. economy. The above factors could adversely affect the Company's net earned premiums, results of operations and financial condition. The Company is unable to predict the course of the global financial markets or the recurrence, duration or severity of disruptions in such markets.

Aflac Japan's adjusted revenues accounted for 53% of the Company's total adjusted revenues in 2025, compared with 55% in 2024 and 60% in 2023. The percentage of the Company's total assets attributable to Aflac Japan was 76% at December 31, 2025, compared with 77% at December 31, 2024. See Note 2 of the Notes to the Consolidated Financial Statements for additional information. Any potential deterioration in Japan's credit quality or access to markets, the overall economy of Japan, or an increase in Japanese market volatility could adversely impact Aflac Japan's operations and its financial condition and thereby Aflac's overall financial performance. Further, because of the concentration of the Company's business in Japan and its need for long-dated Japanese yen-denominated assets, the Company has a substantial concentration of JGBs in its investment portfolio exposing the Company to credit deterioration and potential downgrades of JGBs. See the risk factor entitled "Any decrease in the Company's financial strength or debt ratings may have an adverse effect on its competitive position and access to liquidity and capital" for additional information. The Company seeks to match investment currency and interest rate risk to its Japanese yen liabilities. The low interest rates on Japanese yen-denominated securities has a negative effect on overall net investment income. A large portion of the cash available for reinvestment each year is deployed in Japanese yen-denominated instruments and subject to the low level of Japanese yen interest rates.

Due to the size of Aflac Japan, where functional currency is the Japanese yen, fluctuations in the foreign exchange rate between the Japanese yen and the U.S. dollar have had, and may continue to have, a significant effect on the Company's reported financial position and results of operations. Aflac Japan's premiums and a significant portion of its investment income are received in Japanese yen, and its claims and almost all expenses are paid in Japanese yen. In accordance with U.S. GAAP, the Company translates its Japanese yen-denominated financial statement accounts into U.S. dollars for financial reporting purposes with the resulting foreign currency translation adjustments included in equity. Japanese yen weakening has the effect of suppressing current year results in relation to the prior year, including the resulting negative impact on equity. Japanese yen strengthening has the effect of magnifying current year results in relation to the prior year, including the resulting positive impact on equity. Also in accordance with U.S. GAAP, U.S. dollar denominated assets and liabilities held by Aflac Japan are remeasured to Japanese yen and Japanese yen-denominated assets and liabilities held by Aflac Re are remeasured to U.S. dollar with the resulting foreign currency remeasurement for certain of these assets and liabilities included in earnings. Consequently, fluctuations in the yen/dollar exchange rate have resulted and could continue to result in significant earnings volatility. Japanese yen weakening in relation to the U.S. dollar increases the Japanese yen value on U.S. dollar denominated asset, while Japanese yen strengthening decreases the Japanese yen value of the U.S. dollar denominated assets. In addition, differences between interest rates in Japan and the U.S. can lead to weakening of the Japanese yen relative to the U.S. dollar and could suppress the Company's reported financial position and results of operations relative to the comparable prior period. For regulatory accounting purposes, there are certain requirements for realizing impairments that could be triggered by changes in the yen/dollar exchange rate and could negatively impact Aflac Japan's earnings and the corresponding dividends and capital deployment. The Company engages in certain foreign currency hedging activities to hedge the exposure to Japanese yen from its net investment in Japanese operations. Aflac Japan purchases Japanese yen-denominated assets and U.S. dollar-denominated assets, which may be hedged to Japanese yen, to support Japanese yen-denominated policy liabilities. However, an increase in the difference between short-term U.S. and Japan interest rates would increase the cost of hedging a portion of the U.S. dollar-denominated assets held by Aflac Japan into Japanese yen, which could have a material adverse effect on the Company's business, results of operations or financial condition. As indicated in MD&A, the Company has determined that the unhedged U.S. dollar-denominated investment portfolio acts as a natural economic currency hedge of a portion of the Company's investment in Aflac Japan against erosion of economic value. At the same time, the unhedged U.S. dollar-denominated investment portfolio creates an unmatched foreign currency exposure and subjects Aflac Japan to volatility in regulatory capital and earnings, which may adversely impact Aflac Japan's ability to pay dividends to the Parent Company. The Company has historically maintained and currently maintains the size of the unhedged portfolio at levels below the economic equity surplus in Aflac Japan, but this strategy may not be successful. Additionally, the Parent Company utilizes forward contracts as part of its Enterprise Corporate Hedging Program to protect the economic value of Aflac Japan in U.S. dollar terms by hedging foreign currency exchange risk related to dividend payments by Aflac Japan. The Company is exposed to currency risk when Japanese yen cash flows are converted into U.S. dollars, resulting in changes in the Company's U.S. dollar-denominated cash flows and earnings when foreign currency exchange gains or losses, respectively, are realized. This primarily occurs when Aflac Japan pays dividends in Japanese yen to the Parent Company, but it also has an impact when cash in the form of Japanese yen is converted to U.S. dollars for investment into U.S. dollar-denominated assets. The foreign exchange rates prevailing at the time of dividend payment may differ from the foreign exchange rates prevailing at the time the Japanese yen profits were earned. If the markets experience a significant strengthening of Japanese yen, this could cause cash strain at the Parent Company as a result of cash collateral and potentially cash settlement requirements. Based on the timing and severity of foreign exchange rate fluctuations combined with the level of outstanding activity in this program, the cash strain at the Parent Company could be significant. These hedging activities are limited in scope and the strategies may not be successful. For additional information regarding unhedged U.S. dollar-denominated securities, see the risk factor above entitled, "Lack of availability of acceptable Japanese yen-denominated investments could adversely affect the Company's results of operations, financial position or liquidity". See the Currency Risk subsection of Item 7A. Quantitative and Qualitative Disclosures about Market Risk for additional information.

The Company's board of directors maintains an information security policy directing management to establish and operate a global information security program with the goals of identifying, assessing and monitoring existing and emerging cybersecurity threats and ensuring that the Company's information assets and data, and the data of its customers, are appropriately protected from loss or theft. The Board has delegated oversight of the Company's information security program to the Audit and Risk Committee. The Company's senior officers, including its Global Chief Information Security Officer (GCISO), are responsible for the operation of the global information security program and communicate quarterly with the Audit and Risk Committee on the program, including with respect to the state of the program, compliance with applicable regulations, risks associated with current and evolving threats, and recommendations for changes in the information security program. The global information security program includes a cybersecurity incident response plan that is designed to provide a management framework across Company functions for a coordinated assessment and response to cybersecurity incidents. This framework establishes a protocol to report certain incidents to the GCISO and other senior officers, with the goal of timely assessing such incidents, determining applicable disclosure requirements, and communicating with the Board of Directors as appropriate. The incident response plan directs the executive officers to report certain incidents immediately and directly to the Lead Non-Management Director and/or the Chair of the Audit and Risk Committee. The above framework tracks and allows team members to monitor each incident throughout its lifecycle to help ensure the Company is informed about cybersecurity incidents as they are mitigated and remediated. Post-incident reviews are also performed as appropriate to identify potential additional controls that may feasibly be implemented to help prevent recurrence.As a part of the global information security program, an enterprise cybersecurity risk assessment is performed annually in coordination with the GCISO to identify and assess cybersecurity risks and mitigating controls. The assessment results are incorporated into a risk register managed by the Company's overall enterprise risk management group to integrate the risks into the overall risk management processes. The Company engages with independent firms to conduct operational control assessments, which cover information protection. Periodically, the Company engages independent consultants to review certain aspects of the cyber program. Additionally, the Company performs third-party risk assessments to evaluate security controls and identify inherent and residual risks associated with third-party engagements. Issues identified during third-party risk assessments are documented and escalated to Company management through an established committee structure based on the risk ratings associated with each issue. The Company also utilizes professionals from the Company's legal team and GCISO's leadership team, a majority of whom have specialized skills and knowledge in cybersecurity risk management based on their prior work experience and relevant industry certifications, such as Certified Information Systems Security Professional and Certified Information Security Manager, to assist in employee awareness and training, as well as assessing cybersecurity risks, materiality of cybersecurity incidents and disclosures of the same. Specifically, the GCISO has security experience in the public sector and private sector financial services industry holding positions in areas such as business continuity, information assurance, and technology risk management as well as being a Certified Information Systems Security Professional, Certified Information Security Manager and Certified Project Manager as well as being certified in Risk and Information

The Company's success depends to a significant extent on the efforts and abilities of its key management personnel. The loss of the services of one or more of the Company's senior executives could significantly undermine its management expertise, and the Company's business could be adversely affected.

The Company utilizes third-party vendors to provide certain business support services and functions, which exposes the Company to risks outside the control of the Company that may lead to business disruptions. The reliance on these third-party vendors creates a number of business risks, such as the risk that the Company may not maintain service quality, control or effective management of the outsourced business operations and that the Company cannot control the information systems, facilities or networks of such third-party vendors. Additionally, the Company is at risk of being unable to meet legal, regulatory, financial or customer obligations if the information systems, facilities or networks of a third-party vendor are disrupted, damaged or fail, whether due to physical disruptions, such as fire, natural disaster, pandemic or power outage, or due to cybersecurity incidents, ransomware or other impacts to vendors, including labor strikes, political unrest and terrorist attacks. Since certain third-party vendors conduct operations for the Company outside the U.S., the political and military events in foreign jurisdictions could have an adverse impact on the Company's outsourced operations. The Company may be adversely affected by a third-party vendor who operates in a poorly controlled manner or fails to deliver contracted services, which could lower revenues, increase costs, reduce profits, disrupt business, or damage the Company's reputation.

The Company operates in a competitive environment and in an industry that is subject to ongoing changes from market pressures brought about by customer demands, legislative reform, marketing practices and changes to health care and health insurance delivery. These factors require the Company to anticipate market trends and make changes to differentiate the Company's products and services from those of its competitors. The Company also faces potential competition from existing or new companies in the U.S. and Japan that have not historically been active in the supplemental health insurance industry, but some of which have greater financial, marketing and management resources than the Company. Further, some of these potential competitors could introduce new means of product development and delivery that disrupt the Company's business model. Failure to anticipate market trends and/or to differentiate the Company's products and services can affect the Company's ability to retain or grow profitable lines of business. Further, as employers and brokers are increasingly requesting a full suite of products from one insurance provider, a failure to react and adapt to these demands could result in decreased sales or market share. The Company's future success will depend, in part, on its ability to keep pace with rapid technological changes and to use technology to satisfy and grow customer demand for the Company's products and services and to create additional efficiencies in its operations. The Company may not be able to effectively implement new technology-driven products and services or be successful in marketing these products and services to its customers. A failure to meet evolving customer demands through innovative product development, effective distribution channels, and continuous investment in the Company's technology could adversely affect the Company's operating results. Further, the evolving fragmentation of media and marketing channels that has developed over recent years could weaken the impact of the Company's advertising efforts over time. As a result, the Company's ability to effectively compete to retain or acquire new business may be impaired, and its business, financial condition or results of operations may be adversely affected.

The Company's sales, results of operations and financial condition could be materially adversely affected if its sales networks deteriorate or if the Company does not adequately provide support, training and education for its existing network of sales associates, brokers, other distribution partners and employees. In the U.S., competition exists for sales associates and brokers with demonstrated ability. Further, low rates of unemployment, such as those currently reflected in the U.S. employment market, tend to make it more difficult for Aflac U.S. to maintain its network of sales associates. In Japan, the Company's sales results are dependent upon its relationship with sales associates and other distribution partners, such as Japan Post Group, which in recent periods has accounted for a significant portion of Aflac Japan's total sales. The Company competes with other insurers and financial institutions primarily on the basis of its products, compensation, support services and financial rating. The Company's sales associates, brokers and other distribution partners are independent contractors and may sell products of its competitors. If the Company's competitors offer products that are more attractive, or pay more competitive commissions than the Company does, any or all of these distribution partners may concentrate their efforts on selling the Company's competitors' products instead of the Company's. In addition to the Company's commissioned sales force in the U.S., Aflac has expanded its sales leadership team to include a salaried sales force of over 200 market directors and broker sales professionals. The Company's inability to attract and retain qualified sales associates, brokers and other distribution partners, including its alliance partners in Japan, could have a material adverse effect on the Company's sales, results of operations and financial condition. Additionally, as the Japan and U.S. employment markets continue to evolve, there is risk that the Company's practices regarding attracting, developing, and retaining employees may not be fully effective. Employees may leave the Company or choose other employers over the Company due to various factors, including a competitive labor market. Although Aflac U.S. has not experienced any material labor shortage to date, it has experienced elevated levels of workforce turnover and there has been an overall tightening of, and increased competition within, the U.S. labor market. These conditions, together with higher levels of inflation may result in increased operating expenses. A sustained labor shortage or continuing elevated turnover rates within the Aflac U.S. workforce, due to labor market factors or the state of the U.S. economy, could lead to increased costs of the day-to-day operation of the Aflac U.S. business, the inability to hire and retain employees, or the outsourcing of certain operations. Failure to successfully meet and maintain sufficient levels of employees may diminish the Company's ability to achieve its financial and compliance objectives, both of which are time consuming and personnel-intensive.