As we bid farewell to 2024 and look ahead to the new year, we reflect on the many evolving compliance obligations that health and welfare plan sponsors tackle each year. Although this list is by no means exhaustive, it highlights four items and associated deadlines that have recently emerged on the health and welfare scene.
HIPAA
DOL Expands Fiduciary Obligations for Cybersecurity to Health and Welfare Plans
A little more than three years ago, the U.S. Department of Labor (DOL) posted cybersecurity guidance on its website for ERISA plan fiduciaries. That guidance extended only to ERISA-covered retirement plans, despite health and welfare plans facing similar risks to participant data.
Last Friday, the DOL’s Employee Benefits Security Administration (EBSA) issued Compliance Assistance Release…
HIPAA Final Rule For Reproductive Health Care Privacy with December 23, 2024, Compliance Deadline
On April 22, 2024, the federal Department of Health and Human Services’ Office for Civil Rights (OCR) announced a final rule enhancing privacy protections relating to reproductive health care. Specifically, the final rule amends the Privacy Rule under the Health Insurance Portability and Accountability Act (HIPAA) to, among other things, establish new limits on the…