Key Differences in Self-Insured Health Plans
While fully-insured health plans are subject to a few federal regulations such as HIPAA, COBRA, and the Affordable Care Act (ACA), most of the regulations of these plans are imposed by the individual states in which they operate.
Self-insured plans are not subject to those regulations. So if a state passes regulations requiring certain coverage such as vasectomies or dental and vision care, self-insured plans are exempted from those requirements.
Certain provisions of the ACA do not apply to self-insured plans, including medical loss ratio rules, requirements to provide essential health benefits, and three to one premium limits.
Self-insured plans also have greater flexibility in what coverages they offer, allowing plans to be more customized to the needs of the employees and the employer.
Who Regulates Self-Insured Health Plans?
Self-insured plans are regulated at the federal level under the Employee Retirement Income Security Act (ERISA). They are also subject to HIPAA rules, including a prohibition from rejecting an eligible employee or dependent based on medical history.
Self-insured plans must also abide by the following provisions of the ACA:
- No waiting periods for pre-existing conditions
- Out of pocket expense limits
- Dependents are allowed to remain on the plan until age 26
- Employers with more than 50 full-time equivalent employees must provide coverage that is affordable and provides minimum value
The federal law prohibiting surprise balance billing that took effect in 2022 also applies to self-insured plans.
HIPAA and Self-Insured Health Plans
For a self-insured company to be exempt from HIPAA regulations, it must meet the following standards: the group health plan must be self-insured, self-administered (including medical FSAs and HSAs), and have fewer than 50 employees. If an Employee Assistance Program or wellness program is offered, the plan must be HIPAA compliant.
There is also a status known as partial compliance, which may apply if neither the group health plan sponsor nor its insurance agent has access to or transmits electronic protected health information (ePHI). These instances are rare, and a determination should only be made following consultation with experts who are very knowledgeable about the conditions.
Most self-insured companies must comply with HIPAA. This is one of the most complicated areas of HIPAA legislation specifically because the needs of each company can be so different.
Further complicating the process is the fact that HIPAA complian