[firm] blog logo

Guidance on Benefit Plan Cybersecurity Best Practices

Plan participants now enroll, change elections, review benefits, apply for plan loans and hardship distributions, and access account information through websites and cellphone apps. As electronic access to plan information has increased, so has the interest of hackers in obtaining the wealth of information stored electronically. Recently, the DOL’s Employee Benefits Security Administration (the “EBSA”) issued the following cybersecurity guidance documents to help plan sponsors comply with their duties to protect plan information: Tips for Hiring a Service Provider with Strong Cybersecurity Practices: These tips are intended to help plan sponsors and plan fiduciaries meet their duties under ERISA to prudently select and monitor service providers. They include a list of questions to ask and considerations to make when evaluating potential service providers. Cybersecurity Program Best Practices: This guidance provides a list of 12 best practices intended to help plan fiduciaries mitigate cybersecurity risks and make prudent decisions when selecting… Continue Reading

BREAKING: One-Year Limit on Suspended COBRA and Other Deadlines Applies On An Individual Basis

The DOL issued guidance today stating that the one-year limit on the suspension of COBRA, special enrollment, and claims deadlines during the COVID-19 outbreak period applies on an individual basis.  This means those deadlines do not resume running as of March 1, 2021.  Instead, each individual has up to a one-year suspension as long as the COVID-19 national emergency continues.  As discussed in our prior blog post here, it was unclear whether those deadlines were to resume running as of March 1, 2021.  Employers should contact their service providers to ensure they are aware of this new guidance and to issue new participant communications as needed. Notice 2021-01 is available here.

Upcoming Compliance Deadlines

After February 28, 2021, the suspension of COBRA, special enrollment, and claims deadlines may be over. The government’s authority for suspending these deadlines is limited by statute to a period of one year. It is unclear whether the one-year limit applies on the individual level (i.e., each person gets up to a year disregarded if the national emergency is ongoing) or applies as a limit on the outbreak period itself (i.e., deadlines for all persons would resume being counted as of March 1, 2021). The DOL/IRS have not yet issued guidance on this question. Employers may want to contact their service providers to see how they intend to administer, and communicate to participants, the end of the suspension of deadlines.

Extension of Certain Timeframes for Employee Benefit Plans

On April 29, 2020, the U.S. Departments of Labor and the Treasury (together, the “Departments”) issued a notice (the “Notice”) requiring that all group health plans, disability and other types of employee welfare benefit plans, and employee pension benefit plans, subject to ERISA and the Internal Revenue Code, must disregard the period from March 1, 2020 until 60 days after the announced end of the COVID-19 National Emergency or such other date as announced by the Departments in a future notice (the “Outbreak Period”) for the following periods and dates: The 30-day period (or 60-day period, if applicable) to request HIPAA special enrollment; The 60-day election period for COBRA continuation coverage; The date for making COBRA premium payments; The date for individuals to notify the plan of a COBRA qualifying event or determination of disability; The date within which individuals may file a benefit claim under the plan’s claims procedures;… Continue Reading

June 2021
S M T W T F S
« May    
 12345
6789101112
13141516171819
20212223242526
27282930  

Archives