From principle-based reserving to the Department of Labor’s re-proposed fiduciary standard, life insurers and their agents and advisors face a host of regulatory threats. A new report from Deloitte Center for Regulatory Strategies, “Top regulatory trends for 2016 in insurance,” delves into the pitfalls and proposes solutions for tackling them.
Some of the changes may be more costly than others — in terms of capital outlay, technology, people and resources needed to stay in good graces with federal and state authorities. Beginning on the next page is a recap of five of the top regulatory challenges you and your carriers can expect to deal with in the year ahead. The full Deloitte report can be downloaded here.
1) Heightened oversight from multiple authorities
A growing number of federal, state and international regulators are imposing rules on insurers. Their collective impact, the Deloitte report warns, is “tremendous,” both in terms of mounting red tape and the “aggressive tone” with which the regulators seek to circumscribe company practices.
To ward off fines, excess spending on compliance and other potentially negative consequences, the report advises insurers to “closely monitor” state, federal and international regulatory developments. The recommendation applies also to small insurers that operate only in the U.S., given the “high degree of interplay” among regulatory jurisdictions.
2) The DOL’s draft fiduciary rule
The Department of Labor’s re-proposed fiduciary standard for retirement investment advisors may prompt insurers to limit, drop or revamp products and services sold through producers to reduce operational risks. Deloitte recommends that companies and advisors targeted by the rule “start planning now” by identifying business processes that could be impacted, and by formulating solutions (and attendant costs) to remain compliant.
“Organizations that don’t start planning until the rule is actually finalized may find themselves overwhelmed and short on time given the budget requirements and all of the compliance, operations, technology, and process changes that will likely be required,” the report warns.
3) Threats to insurers from cyber intrusions
The report notes that cybersecurity is “at or near the top” of the operational risks insurers face. The cyber threats are a danger not only to the companies’ earnings and reputations, but also to their customers, given the huge quantities of personal data the companies maintain.
To deal with problem, the National Association of Insurance Commissioners’ Cyber Security Task Force issued last year two documents that establish: (1) principles for effective cybersecurity; and (2) a cybersecurity “Bill of Rights” for consumers. The latter highlights data protections that consumers should expect from carriers and “implicitly instruct[s]” insurers to provide these safeguards.
The report cautions, however, that online security breaches undertaken by foreign governments, cyber activists or criminals “may be difficult to guard against.” Still more challenging may be dealing with lax cybersecurity practices among employees or contractors that enjoy access to corporate IT systems.
“Insurers looking for a holistic, principles-based approach to cybersecurity may want to consider using the NAIC’s principles for effective cybersecurity, which are based on the National Institute of Science and Technology’s standards,” the report states. “The NAIC’s principles include a very basic but sometimes misunderstood and overlooked concept: that cybersecurity transcends the information technology department and must include all facets of an organization and be a part of an enterprise-wide risk management process.”