• about us
  • mission/
    Vision
  • alliances and affiliations
    • global partners
  • community
  • contact us
• careers
  • working at BMF
• news and publications
  • news
    • breaking news and alerts
    • archive
    • BMF in the news
    • media contacts
  • publications
    • InfoLetter
    • Benefit Plan Advisor
    • Building Value
    • Client Advisor
    • Construction Advisor
    • Manufacturing/
      Distribution Advisor
    • Nonprofit Advisor
    • Tax Advisor
    • Valuation Report
• tools and resources
  • secure file upload (NEW - Sharefile)
  • secure portal (NEW - Sharefile)
  • secure file upload and portal instructions (NEW)
  • secure file exchange (LeapFile)
  • secure file exchange instructions (LeapFile)
  • financial calculators
  • tax tools and updates
  • records retention guidelines
  • important links
  • third-party site disclaimer
  • disclaimers
• contact us
  • management team
  • media relations
  • how can we help you?

In today’s competitive market, it is common for companies to consider outsourcing for much of the
administration of their employee benefit plans (EBPs). The advantages are obvious – using a capable,
experienced third party administrator (TPA) can greatly reduce the plan sponsor’s daily duties and time spent on EBPs, so they can concentrate on other areas of managing the business. On the other hand, outsourcing to an ineffective TPA, without adequate oversight by management, may expose the company to substantial risk. To be sure, if you outsource, it is imperative that you not lose sight of the continued importance of monitoring the plan activity and the plan’s TPA.

This is where a SAS 70 report can help. Many TPAs subject their operations to an independent examination of their internal control and procedures. This review, when performed, would be documented in a comprehensive report titled, “Report on Controls Placed in Operation and Tests of Operating Effectiveness,” also known as the SAS 70.

Many business owners mistakenly assume this is a report to be used solely by their plan auditors, but it can
also serve as a real key to management’s monitoring process. Essentially, it provides a comprehensive
narrative describing the control framework and system procedures. Further, if you opt for a Type II SAS 70
report, you will receive the results of the testing that is performed.

One section of the SAS 70 that is especially beneficial outlines user control considerations – key areas that are often not subject to controls at TPAs; in other words, in which the TPA is not assuming responsibility. The company needs to ensure that they have controls in place to address these areas. Some of these areas relate to participant eligibility, vesting, timeliness and completeness of contributions and loans in default status.

Another misconception is that all SAS 70 reports are the same. This isn’t true. Because the scope of the
report is determined by the TPA, they can limit the independent auditor’s testing to only those areas where they maintain strong controls, excluding testing that could identify weaknesses. By carefully reading the SAS 70, a plan sponsor should be able to identify areas where they are relying on their TPA, but the control descriptions are inadequate or missing.

That said, monitoring is not an easy task. It should be the responsibility of knowledgeable individuals at the company who can ensure that your employee benefit plans are being properly maintained.

The current environment finds the federal government actively enforcing compliance with complex rules,
regulations and penalties. As well, class action litigation suits are becoming the norm. Careful planning and
establishing strong controls over the administration of your employee benefit plans will not only safeguard your employees’ retirement assets, but will help you and your legal counsel mitigate your company’s fiduciary exposure.

Benefit Plan Advisor is produced quarterly by Bober, Markey, Fedorovich & Company’s Employee Benefits Group. If you would like more information about the topic discussed above or the services we provide, please contact James E. Merklin, CPA, CFE, M.Acc., at 330-762-9785 or by email.

For more information:
Employee benefit plans services

For the latest news and updates:
Subscribe

BMF Akron
3421 Ridgewood Road Suite 300
Akron, OH 44333-3119
P 330.762.9785

BMF Cleveland
515 Euclid Avenue Suite 150
Cleveland, Ohio 44114-2116
P 216.453.5940