401(k) Plan Sponsor Fiduciary Liability: What CFOs Need to Know

As a 401(k) plan sponsor, you’re a fiduciary under ERISA with personal liability exposure. Mid-market companies managing employee retirement plans face litigation risks from investment selection, fee structures, and administrative failures. Comprehensive protection requires understanding fiduciary duties and securing proper insurance coverage.

Key Takeaways

• CFOs, HR Directors, and committee members serving as 401(k) plan sponsors are ERISA fiduciaries with personal liability exposure for plan management decisions
• Fiduciary breaches include excessive fees, imprudent investment selections, failure to monitor plan providers, inadequate participant communication, and administrative errors
• Mid-market companies ($20M-$200M revenue) managing 401(k) plans with $5M-$50M in assets face elevated litigation risk but often lack the compliance infrastructure of larger enterprises
• Average fiduciary breach settlements range from $500K-$5M, with defense costs adding $200K-$800K regardless of outcome
• Fiduciary Liability insurance provides both defense cost coverage and indemnification for fiduciary breach claims, complementing D&O and EPLI policies

Understanding Plan Sponsor Fiduciary Status

When your company established its 401(k) plan, you accepted fiduciary responsibility under ERISA that creates personal liability exposure for everyone who manages the plan. ERISA doesn’t care about job titles—it cares about function, meaning if you exercise discretionary authority over plan management, assets, or administration, you’re a fiduciary with personal liability.

• CFOs typically chair the investment committee and make final decisions on plan investments, fees, and service providers
• HR Directors manage day-to-day plan administration, participant communications, and compliance with plan documents
• Investment Committee Members share collective responsibility for all fiduciary decisions regardless of their specific role
• Controllers often handle contribution processing, participant account reconciliation, and financial reporting for the plan
• Board Members at smaller companies sometimes serve as named fiduciaries, creating direct liability exposure for governance failures

Most mid-market companies designate fiduciary responsibilities through committee appointments that include the CFO, HR Director, Controller, and sometimes outside advisors. Your company manages substantial plan assets—$5M to $50M isn’t unusual for companies with 100-500 employees—but you lack the dedicated benefits specialists and negotiating leverage of Fortune 500 companies, creating enterprise-scale fiduciary duties without enterprise-scale resources.

• Companies with $20M-$200M revenue typically maintain 401(k) plans holding $5M-$50M in assets across 100-500 participants
• Plan assets generate meaningful fee revenue for service providers, creating economic incentives that sometimes conflict with participant interests
• Mid-market fiduciaries manage the same ERISA compliance requirements as Fortune 500 companies despite having smaller HR teams and limited benefits expertise
• Quarterly committee meetings become the primary mechanism for documenting fiduciary oversight and demonstrating prudent process
• Reliance on recordkeeper guidance doesn’t satisfy ERISA’s prudent person standard, as one Houston manufacturing client discovered when facing $425,000 in settlement costs

The Four Core Fiduciary Duties Under ERISA

ERISA imposes specific fiduciary duties that apply to every plan sponsor decision, and understanding these duties helps you recognize where liability exposure exists in your 401(k) management. The Duty of Prudence requires making decisions with the care, skill, and diligence that a prudent person familiar with such matters would exercise—not a standard of perfection, but a documented prudent process.

• Investment selection must evaluate funds based on risk, return, diversification, fees, and participant appropriateness through documented analysis
• Service provider selection requires evaluating recordkeepers, advisors, and TPAs based on services, qualifications, and fees compared to market alternatives
• Fee benchmarking must occur regularly to ensure participants aren’t paying more than market rates for comparable services
• Administrative oversight demands establishing processes for enrollment, contributions, distributions, loans, and compliance with documented procedures
• Performance monitoring requires quarterly reviews using watch lists that flag underperforming funds and trigger replacement or retention analysis

The Duty of Loyalty requires acting solely in participants’ interests, which creates conflicts when recordkeepers offer ancillary services to the company at favorable rates in exchange for keeping the 401(k) business. You can’t prioritize the company’s interests, service provider relationships, or personal convenience over participant welfare when negotiating fees or selecting investments.

• Proprietary investment selections from recordkeepers or advisors face scrutiny when non-proprietary alternatives offer lower fees or better performance
• Revenue sharing arrangements require complete transparency about all direct and indirect compensation paid from plan assets
• Company convenience in administration cannot justify participant harm through excessive fees or limited investment options
• Service provider negotiations must push for lower participant costs even when that strains your business relationship
• Loyalty conflicts arise frequently in mid-market plans where recordkeepers bundle services, making it difficult to separate plan costs from corporate benefits

The Duty to Follow Plan Documents defines participant rights and plan procedures, meaning operating inconsistently with these documents—even when trying to help participants—violates your fiduciary duty. Common violations include allowing loans exceeding plan limits, processing hardship distributions without proper documentation, accepting rollovers the plan doesn’t permit, or providing vesting schedules different from the plan document.

• Plan amendments must be executed properly and communicated to participants within required timeframes to avoid operational violations
• Summary Plan Descriptions must accurately reflect current plan terms and be updated when amendments occur
• Loan procedures specified in plan documents must be followed exactly, including maximum amounts, repayment terms, and default consequences
• Distribution options available to participants must match plan document provisions regardless of what the recordkeeper’s system allows
• Annual compliance testing determines whether the plan operates according to its written terms and IRS qualification requirements

Where Fiduciary Liability Emerges for Mid-Market Plans

Excessive fee litigation dominates the 401(k) fiduciary breach landscape, with participants alleging that plan sponsors allowed service providers to charge unreasonable fees that reduced retirement savings. Courts consistently hold that fiduciaries must understand all fees paid from plan assets, benchmark those fees against comparable plans, and negotiate reductions when fees exceed market rates.

• Fee litigation targets plans where costs appear high relative to plan size, not just plans with the highest absolute fees
• A $15M plan paying $400 per participant annually in recordkeeping fees faces different exposure than paying $4,000 per participant
• Revenue sharing arrangements where investment funds include 12b-1 fees or sub-TA fees paid to recordkeepers create transparency problems
• Many plan sponsors don’t fully understand total fees their participants pay when compensation includes both direct and indirect components
• Fiduciaries must “follow the money” to understand all compensation and evaluate whether lower-cost share classes would better serve participants

Investment underperformance claims allege fiduciaries selected or retained funds that underperformed benchmarks or peers for extended periods without documented review. Target-date funds generate substantial litigation when TDF series underperform peers by meaningful margins over multiple years, requiring fiduciaries to demonstrate their prudent process through periodic performance review and documented retention decisions.

• Short-term underperformance doesn’t establish fiduciary breach—markets cycle and different strategies perform differently across market conditions
• Persistent underperformance over three or more years without documented review creates liability exposure
• Target-date fund selection requires evaluating glide path appropriateness, fees, and performance relative to comparable TDF families
• Stable value or fixed income options face scrutiny when they significantly underperform money market funds or short-term bond indexes
• Process defeats performance claims—documented quarterly reviews with rational decision-making protect fiduciaries even when investments underperform

Failure to monitor encompasses oversight failures that allow problems to develop and persist, including failure to monitor investment performance, fees, service providers, and plan operations. One technology services client with 280 employees faced monitoring failure claims after their plan administrator miscalculated loan repayments for 18 months, causing unnecessary defaults that cost participants money and triggered a $425,000 settlement.

• Committee meetings must occur at least quarterly with written agendas, minutes, and documented decision-making
• Investment performance reviews should include comparisons to benchmarks, peer groups, and watch-list criteria
• Fee benchmarking studies should occur annually to identify whether costs remain competitive with market rates
• Service provider evaluations must review administration quality, participant service metrics, and compliance performance
• Documentation creates the record demonstrating oversight—without written evidence, even diligent fiduciaries struggle to defend monitoring failure allegations

Financial Consequences of Fiduciary Breach Claims

Defense costs alone often exceed $200,000 for straightforward cases and can reach $800,000 for complex class actions requiring extensive discovery, expert witnesses, and motion practice. These costs accumulate regardless of whether you ultimately prevail—even committees that acted prudently and documented everything properly still need specialized ERISA counsel and expert support to defend against fiduciary breach allegations.

• Settlement values for mid-market plan fiduciary cases typically range from $500,000 to $5,000,000 based on plan size and alleged harm
• DOL investigations impose separate costs including legal fees, accounting fees, consulting fees, and potentially correction costs for identified violations
• Clean DOL investigations with no findings still typically cost $50,000 to $150,000 in professional fees for response and documentation
• Correction costs under the Voluntary Fiduciary Correction Program require restoring participants to their prior position plus DOL-prescribed interest
• Business disruption from litigation includes dozens of hours for committee members responding to discovery, depositions, and working with counsel

Beyond direct financial costs, fiduciary litigation damages employee morale when participants believe their retirement assets were mismanaged. One distribution company with $85M revenue spent $340,000 defending excessive fee litigation claiming $100,000 in excess fees, ultimately settling for $225,000 plus fee reductions—total cost of $565,000 plus management hours for a plan they believed was well-administered.

• Recruiting becomes harder when prospective employees research your company and discover 401(k) litigation in public records
• Service provider relationships become strained as recordkeepers, advisors, and administrators point fingers during discovery
• C-suite credibility suffers when the CFO and HR Director face personal liability for benefit plan mismanagement
• Regulatory scrutiny intensifies with DOL audits more likely following participant complaints or litigation filing
• Company reputation takes hits in industry circles when fiduciary breach cases become public knowledge

Fiduciary Liability Insurance Protection for Plan Sponsors

Fiduciary Liability insurance provides financial protection for plan sponsors facing fiduciary breach claims through coverage that sits alongside D&O and EPLI in comprehensive management liability programs. This specialized coverage responds to claims alleging breaches of fiduciary duty under ERISA, including excessive fees, imprudent investments, failure to monitor, prohibited transactions, and administrative errors.

• Coverage provides both defense cost coverage (critical given ERISA litigation expense) and indemnification for settlements and judgments
• Individual fiduciary protection covers CFOs, HR Directors, committee members, and anyone exercising fiduciary discretion to protect personal assets
• Policy limits for mid-market companies typically range from $2M-$10M based on plan assets, participant count, and risk profile
• Annual premiums range from $2,500-$20,000 depending on total plan assets, participant count, plan types, claims history, and fiduciary practices
• Defense costs are often paid outside the policy limit, meaning defense spending doesn’t reduce coverage available for settlements

The coverage includes three critical components that work together to provide comprehensive protection. Defense costs are paid as incurred for ERISA litigation expenses regardless of case outcome, indemnification coverage pays settlements and judgments resulting from covered claims, and loss coverage includes financial harm to the plan requiring participant restoration.

• Exclusions typically eliminate coverage for intentional fraud, criminal acts, and personal fines (though they may cover restitution to participants)
• Administrative error exclusions like late contribution deposits don’t necessarily exclude the related fiduciary breach claims
• Prior acts coverage requires disclosing known problems before the policy period—you can’t buy insurance after discovering an issue
• Entity coverage protects the company itself beyond individual fiduciary protection, since companies often face claims alongside committee members
• Investigation costs coverage responds to DOL or IRS inquiries before formal claims, providing valuable protection for regulatory responses

Best Practices for Plan Sponsor Risk Management

Document your fiduciary process through committee minutes and written reports that demonstrate the prudent decision-making process defeating fiduciary breach claims. Every investment decision, fee analysis, service provider evaluation, and administrative review should create a written record that shows your committee’s thoughtful oversight and rational decision-making.

• Committee meetings should occur quarterly minimum with written agendas distributed in advance and detailed minutes capturing discussion and decisions
• Investment reviews must include performance comparisons to appropriate benchmarks, peer groups, and established watch-list criteria
• Fee analyses should benchmark all plan costs against industry surveys comparing plans of similar size, participant count, and complexity
• Service provider evaluations must document services received, qualifications of providers, and fees compared to alternative vendors
• Written reports from advisors, consultants, and specialists should be retained as evidence of the expertise informing committee decisions

Engage independent fiduciary advisors who serve as co-fiduciaries and share liability for investment decisions while providing professional expertise your internal committee may lack. True independence requires fee-only compensation with no financial ties to plan investments or service providers, meaning advisors who receive commissions, work for your recordkeeper, or have service provider relationships don’t qualify.

• Independent advisors create an additional layer of oversight reducing exposure for internal committee members
• Co-fiduciary status means the advisor shares legal responsibility for investment selection and monitoring
• Professional expertise from registered investment advisors strengthens your defense when litigation questions committee qualifications
• Fee-only advisors avoid conflicts from commissions, revenue sharing, or service provider relationships that compromise independence
• Demonstrating reliance on qualified independent advisors provides powerful defense evidence in fiduciary breach litigation

How Hotaling Approaches Fiduciary Liability Protection

At Hotaling Insurance Services, our licensed brokers work with CFOs, HR Directors, and Benefits Committees at mid-market companies to structure comprehensive protection for plan sponsor fiduciary liability. We start by understanding your complete retirement plan landscape including plan types, total plan assets, participant demographics, fiduciary committee structure, service provider relationships, and any prior claims or known issues.

• Analysis reveals your specific exposure profile based on plan assets, participant count, committee meeting frequency, advisor relationships, and fee structures
• We access specialized insurance markets focusing on fiduciary liability with broader protection, higher limits, and more favorable terms than standard commercial insurers
• Different markets excel with different risk profiles—some prefer manufacturing, others focus on professional services, still others target technology firms
• Policy terms are structured to match your exposures including appropriate limits, defense costs provisions, entity coverage, and investigation costs coverage
• Coordination with D&O and EPLI policies prevents coverage gaps while avoiding unnecessary duplication

Ready to protect your committee members from personal fiduciary liability exposure? Fill out our online form at hotalinginsurance.com to request a comprehensive Fiduciary Liability insurance analysis for your 401(k) plan. Our benefits team will review your plan structure, evaluate your current coverage, and provide recommendations for comprehensive protection tailored to your fiduciary responsibilities.

Disclaimer: This article provides general information about 401(k) plan sponsor fiduciary liability and insurance considerations for mid-market companies. It does not constitute legal, investment, tax, or insurance advice. Specific ERISA compliance questions should be directed to qualified ERISA legal counsel. Plan management and investment decisions should involve independent registered investment advisors serving as fiduciaries. Insurance coverage terms, conditions, exclusions, and pricing vary by carrier and depend on your specific circumstances. Consult with qualified professionals regarding your particular situation.