[firm] blog logo

Guidance on Benefit Plan Cybersecurity Best Practices

Plan participants now enroll, change elections, review benefits, apply for plan loans and hardship distributions, and access account information through websites and cellphone apps. As electronic access to plan information has increased, so has the interest of hackers in obtaining the wealth of information stored electronically. Recently, the DOL?ÇÖs Employee Benefits Security Administration (the ?Ç£EBSA?Ç¥) issued the following cybersecurity guidance documents to help plan sponsors comply with their duties to protect plan information: Tips for Hiring a Service Provider with Strong Cybersecurity Practices: These tips are intended to help plan sponsors and plan fiduciaries meet their duties under ERISA to prudently select and monitor service providers. They include a list of questions to ask and considerations to make when evaluating potential service providers. Cybersecurity Program Best Practices: This guidance provides a list of 12 best practices intended to help plan fiduciaries mitigate cybersecurity risks and make prudent decisions when selecting… Continue Reading

Regulations Provide for More Cost Transparency in Health Coverage

The federal Departments of Health and Human Services, Labor, and the Treasury (collectively, the ?Ç£Departments?Ç¥) have jointly issued final regulations that are intended to provide for more transparency in health coverage (the ?Ç£Regulations?Ç¥). The Regulations have important implications for employer sponsors of certain group health plans (?Ç£Plans?Ç¥) and health insurers. The Regulations do not apply to health plans that are grandfathered under the Affordable Care Act, health reimbursement arrangements, certain other account-based group health plans, or short-term limited duration insurance. The Regulations require two key forms of disclosures (collectively, the ?Ç£Disclosures?Ç¥) in order to provide for this improved transparency: Self-Service Disclosure. First, the Regulations require Plans and insurers in the individual and group markets to disclose certain cost-sharing information upon request to a participant, beneficiary, or enrollee (or his or her authorized representative), including (a) an estimate of the individual?ÇÖs cost-sharing liability for covered items or services furnished by a… Continue Reading

The DOL Announces Final Rule for Electronic Delivery of ERISA-Required Retirement Plan Disclosures

The DOL recently announced a final rule which provides an additional ?Ç£Notice-and Access?Ç¥ safe harbor for plan administrators to electronically deliver ERISA-required notices and disclosures. The final rule is substantially similar to the proposed rule (which we discussed in a previous blog post here). Under the final rule, plan administrators may electronically deliver certain ?Ç£covered documents?Ç¥ to ?Ç£covered individuals?Ç¥ with electronic addresses by (i) posting the covered documents on a website and sending a notice of Internet availability (?Ç£NOIA?Ç¥) to the covered individual?ÇÖs electronic address or (ii) sending covered documents directly to a covered individual?ÇÖs electronic address. The NOIA may be sent on an annual basis, describing multiple covered documents, and must include (x) a description of the covered documents being posted, (y) the address of or hyperlink to the website where the covered documents are posted, and (iii) information about the covered individual?ÇÖs right to request covered documents in… Continue Reading

October 2021
S M T W T F S
 12
3456789
10111213141516
17181920212223
24252627282930
31  

Archives