The Employee Retirement Income Security Act of 1974, as amended protects plan participant benefits and account balances by imposing high standards of care on the plan’s fiduciaries. Fiduciaries who do not follow these standards—most notably, the protection of participant personal and plan information—may be personally liable to restore losses to the plan.
Recent technological advancements, especially in the area of cybersecurity, however, have only now become the focus of most ERISA fiduciaries. Due to the increasing frequency and sophistication of cyber-related threats to employee benefit plans, their trustees and third-party plan administrators and the potential financial repercussions, compliance with ERISA fiduciary standards will require implementation of a prudent cyber risk management strategy.
Click Here To find out moreHHS has updated its model Notice of Privacy Practices (NPP) materials to help covered entities and business associates comply with the Part 2 related NPP requirements that became enforceable on February 16, 2026.
02/26/2026
Many federal laws create mandates that may apply to your group health plan.
12/18/2025
The IRS has announced that it intends to issue proposed regulations regarding Trump Accounts (TAs)
12/11/2025
QUESTION: We are reviewing the SPD procedures for our ERISA health and welfare plans and need some guidance. Who must receive SPDs for these plans?
12/02/2025
QUESTION: We understand there is a small employer exception to COBRA for employers with fewer than 20 employees. What employees should we count for purposes of this exception?
12/02/2025