ERISA Fiduciary Duty — Prudent Man Standard and Plan Sponsor Obligations for Retirement Plans

If you sponsor a 401(k) plan, serve on a retirement plan committee, select the investment options available to your employees, or choose and monitor the plan's service providers, you are a fiduciary under ERISA — and ERISA's fiduciary rules are strict. Section 404 of ERISA requires every fiduciary to discharge duties "solely in the interest of the participants and beneficiaries," for the "exclusive purpose" of providing benefits and defraying administrative costs, using "the care, skill, prudence, and diligence under the circumstances then prevailing that a prudent man acting in a like capacity and familiar with such matters would use" — the "prudent expert" standard. Alongside the duty of prudence runs the exclusive benefit rule: fiduciaries cannot serve their own interests or those of the employer, vendors, or anyone else at the expense of plan participants. Section 406 reinforces this with a list of "prohibited transactions" — transactions between a plan and a "party in interest" that are flatly prohibited unless a statutory or administrative exemption applies. Personal liability is the consequence of getting it wrong: a fiduciary who breaches these duties is personally liable to make the plan whole and restore any profits made through misuse of plan assets.

Current Law (2026)

Legal Authority

• 29 U.S.C. § 1104(a)(1) — Fiduciary duties: a fiduciary shall discharge duties (A) solely in the interest of participants and beneficiaries, for the exclusive purpose of (i) providing benefits and (ii) defraying reasonable plan expenses; (B) with the care, skill, prudence, and diligence of a prudent person in like circumstances; (C) by diversifying investments to minimize the risk of large losses, unless clearly imprudent; and (D) in accordance with the plan documents and instruments, unless inconsistent with ERISA
• 29 U.S.C. § 1104(c) — ERISA § 404(c): a plan is not liable for losses resulting from a participant's exercise of investment control over their own account — if the plan gives participants a broad range of investment options, independent control, and adequate information, participant investment decisions are the participant's responsibility
• 29 U.S.C. § 1106(a) — Prohibited transactions: a fiduciary may not cause the plan to engage in sale/exchange, leasing, lending, or furnishing of goods/services between the plan and a "party in interest"; may not transfer or use plan assets for the benefit of a party in interest
• 29 U.S.C. § 1106(b) — Self-dealing prohibition: a fiduciary may not deal with plan assets in the fiduciary's own interest or own account; act in any transaction involving the plan on behalf of a person whose interests are adverse to the plan; or receive compensation from any party in connection with a transaction involving plan assets
• 29 U.S.C. § 1108 — Exemptions: transactions otherwise prohibited under § 1106 are permitted if they fall within a statutory class exemption (e.g., receipt of compensation by parties in interest for services necessary for plan operation, certain bank/insurance company arrangements) or an individual or class prohibited transaction exemption (PTE) granted by the Department of Labor
• 29 U.S.C. § 1109(a) — Liability for breach: a fiduciary who breaches duties is personally liable to make good any losses to the plan resulting from each breach, to restore any profits made through use of plan assets, and is subject to equitable and remedial relief as the court deems appropriate; "make good" means restoration to the position the plan would have been in absent the breach — not just the profits made

Implementing Regulations

The DOL's Employee Benefits Security Administration (EBSA) implements ERISA fiduciary rules through 29 CFR Part 2550 — Rules and Regulations for Fiduciary Responsibility. Key provisions:

• § 2550.403a-1 — Trust requirement: all plan assets must be held in trust by one or more trustees; the trust requirement ensures a formal legal separation between plan assets and employer assets — in a bankruptcy, plan assets cannot be reached by creditors of the employer
• § 2550.403b-1 — Trust exemptions: certain assets are exempt from the trust requirement — insurance contracts issued to the plan, plans with fewer than 100 participants on the first day of the plan year (under certain conditions), and dues checkoff arrangements; the exemptions are narrow
• § 2550.404a-1 — Investment duties: the prudent investor standard for plan investments requires diversification across and within asset classes, evaluation of the risk/return characteristics of the total portfolio (not individual investments in isolation), and consideration of the appropriate rate of return given the plan's liquidity and income needs and cash flow demands; a fiduciary who hires an investment manager is still required to monitor the manager periodically and take action if performance or conduct falls below standards
• § 2550.404a-5 — Participant disclosure (the "fee disclosure" rule): in participant-directed plans (401(k), 403(b)), the plan administrator must provide each participant annually with: (1) a comparative chart of all investment options with expense ratios and historical performance; (2) plan administrative and recordkeeping fee information; and (3) disclosure of any fees charged to individual accounts; the rule was finalized in 2010 and dramatically increased transparency about the costs that compound over decades to reduce retirement outcomes
• § 2550.404c-1 — ERISA § 404(c) safe harbor: a plan offers participants investment control sufficient to shift fiduciary liability to the participant if: the plan offers a broad range of investment options (at least 3 with materially different risk/return profiles); participants may transfer among options at least quarterly; and the plan provides sufficient information for informed decision-making; fiduciaries remain liable for the selection and monitoring of the investment menu — they cannot outsource responsibility for offering unsuitable options by claiming § 404(c) protection
• § 2550.404c-5 — Qualified Default Investment Alternatives (QDIAs): when participants fail to direct their investments (common in auto-enrollment plans), the plan administrator is protected from liability for investing in a "qualified default investment alternative" — which must be an age-appropriate diversified investment such as a target-date fund, balanced fund, or managed account service; the QDIA rule enabled the widespread adoption of target-date funds as default 401(k) investments
• § 2550.407a-1 — Employer securities limits: a plan may not acquire employer securities if after the acquisition more than 10% of fair market value of plan assets would be invested in employer securities or real property; existing plan assets in employer securities at the time the rule became effective have grandfathered treatment in some cases; the limit addresses the Enron-era lesson that concentration of retirement savings in employer stock can eliminate both employment and retirement security simultaneously
• § 2550.408b-2 — Service provider disclosures (the "408(b)(2) rule"): a covered service provider (recordkeeper, investment manager, broker, third-party administrator) must disclose its direct and indirect compensation to plan fiduciaries before entering a service contract; the disclosure must describe all compensation — including revenue sharing, 12b-1 fees, and any other payments made by investment products to the service provider; fiduciaries must review these disclosures to determine whether compensation is reasonable before engaging or renewing service providers

Recent rulemakings: The DOL finalized a comprehensive investment advice fiduciary rule in 2024 (89 FR 32124) expanding who qualifies as an investment advice fiduciary, including rollover recommendations and one-time advice; the rule faces legal challenges. The 2012 § 404a-5 fee disclosure rules became effective and have driven down average 401(k) fees significantly as participants became aware of the expense ratio differentials between index and actively managed funds.

Who Is a Fiduciary?

ERISA defines a fiduciary broadly and functionally: you are a fiduciary if you (1) exercise discretionary authority or control over plan management or assets, or (2) render investment advice for a fee with respect to plan assets, or (3) have any discretionary authority or responsibility in plan administration. This means:

• Plan sponsors (the employer) are fiduciaries when exercising discretion over plan design, but not when making business decisions (like plan termination driven by company economics, where pure business judgment applies)
• Benefits committees and investment committees at plan sponsors are fiduciaries when selecting investment options, choosing and monitoring plan service providers, and making benefit determinations
• Plan administrators and named fiduciaries designated in plan documents are always fiduciaries
• Investment advisers who provide non-discretionary investment advice for a fee are fiduciaries; those with full discretion over plan assets are definitely fiduciaries
• Recordkeepers and third-party administrators who only provide ministerial services without discretion are generally NOT fiduciaries — they are service providers

The named fiduciary concept: every ERISA plan must designate one or more named fiduciaries in the plan document — the entity with overall authority and responsibility for plan operation. The named fiduciary can delegate fiduciary responsibilities to others, but cannot delegate away all responsibility or disclaim awareness of breaches.

The Prudent Expert Standard

ERISA's "prudent man" standard is a prudent expert standard — not a prudent layperson standard. A plan fiduciary who lacks the expertise to make sound investment decisions is not protected by ignorance; they must either hire experts or develop the necessary competency. Courts have interpreted this to mean:

• Investment decisions should be documented — minutes of investment committee meetings, records of investment policy statement reviews, analyses of plan investment options
• Fiduciaries must actively monitor investments, not just make initial selections. An investment selected appropriately at inception that subsequently underperforms must be reviewed and potentially replaced
• The reasonableness of fees paid to service providers is a fiduciary matter — paying excessive recordkeeping fees, advisory fees, or investment management fees can constitute a breach even if the underlying investments are sound
• Diversification is required: concentrating plan assets in employer stock (beyond incidental amounts) or other undiversified positions is presumptively imprudent unless the fiduciary can demonstrate it was clearly prudent

Prohibited Transactions and Exemptions

The prohibited transaction rules are comprehensive — they effectively prohibit any business between the plan and the employer, major shareholders, directors, officers, and plan service providers, regardless of whether the terms are fair.

Common prohibited transactions in retirement plans:

• Paying excessive fees to a plan service provider (recordkeeper, investment adviser, TPA) that is a party in interest
• Employer "borrowing" from plan assets even temporarily
• Employer selling property to the plan above fair market value, or buying plan assets below fair market value
• Plan using employer's facilities at less than fair rental value (benefit to employer)
• Investment adviser who manages plan assets also receiving 12b-1 fees from the mutual funds in the plan — this conflicts the adviser's interests

Class exemptions (PTCEs): The DOL has granted class exemptions allowing specific types of transactions when conditions are met. PTCE 84-14 (the "QPAM exemption") allows transactions between a plan and a party in interest if a Qualified Professional Asset Manager manages the plan assets and the transaction terms are negotiated at arm's length. PTCE 96-23 (the "INHAM exemption") allows similar transactions managed by in-house asset managers. The 2024 DOL fiduciary rule expanded what constitutes "investment advice" triggering fiduciary status — creating ongoing compliance obligations for financial advisers, insurance agents, and others who recommend rollover decisions.

How It Affects You

If you're an HR director, CFO, or plan committee member: You are personally liable as a fiduciary for your plan decisions. The good news is that prudent process — not perfect outcomes — is what ERISA requires. Document everything: investment committee meeting minutes, investment policy statement reviews, provider fee benchmarking analyses, evaluation of underperforming funds. Use outside investment advisers with documented qualifications. Review plan fees annually — excessive fees are the primary basis for participant lawsuits against plan fiduciaries. ERISA § 408(b)(2) requires service providers to disclose fees; use those disclosures to benchmark reasonableness.

If you're a plan participant in a 401(k) with limited investment options: Your employer's selection of plan investment options is a fiduciary act. If you believe your employer is offering expensive, poorly performing funds — particularly when lower-cost options exist — you may have grounds for a fiduciary breach claim under ERISA § 502(a). The plaintiffs' bar has brought hundreds of class action suits against large employers for excessive 401(k) fees. Notable settlements have returned hundreds of millions to plan participants. If you're trying to determine if your plan's fees are reasonable, compare your expense ratios against the median for comparable plans using the Department of Labor's Form 5500 filing data.

If you're a financial adviser working with retirement plan clients: The DOL's 2024 fiduciary rule means that if you recommend a participant roll their 401(k) into an IRA, and you receive compensation for that recommendation, you're a fiduciary at that moment — and must meet the best-interest standard. This requires documenting that the rollover recommendation considers the specific features of the participant's plan (available investments, fees, creditor protections) compared to the IRA. The prohibited transaction exemptions (particularly PTE 2020-02) provide a compliance pathway but require specific documentation, conflict mitigation, and annual compliance reviews.

Implementing Regulations — ERISA Plan Bonding (29 CFR Part 2580)

A parallel ERISA protection that operates alongside the Part 2550 fiduciary rules is the fidelity bonding requirement in ERISA § 412, implemented at 29 CFR Part 2580. Every person who "handles" plan funds or other plan property must be covered by a fidelity bond — an insurance-like instrument that protects the plan against losses caused by acts of fraud or dishonesty (theft, embezzlement, forgery) by that person.

• § 2580.412-6 — Definition of "handling": a person "handles" funds whenever they can cause a loss — including physically receiving cash, signing checks, disbursing funds, or having supervisory responsibility over persons who do; even a director who cosigns checks is a handler; the definition is broad enough to capture bookkeepers, administrators, and trustees
• § 2580.412-11/12 — Bond amount: the bond must equal at least 10% of the amount of plan funds handled by that person in the prior plan year; the minimum bond is $1,000 and the maximum is $500,000 (or $1 million for plans that hold employer securities); a plan with $10 million in annual transactions requires each fund handler to be bonded for at least $1 million — but the $500,000 statutory maximum caps the required bond at that level regardless of plan size
• § 2580.412-14 — Determining "handled" amounts: the amount handled is determined by the total of all plan transactions during the prior reporting year in which the person had physical or effective contact with plan assets; a plan that receives $2 million in contributions and makes $8 million in benefit payments has $10 million in handled funds for purposes of calculating required bond amounts
• § 2580.412-10 — Bond form: bonds may be individual (covering one person), schedule (covering a named list), or blanket (covering all employees of the plan or employer in specified positions); blanket bonds are most common in practice because they automatically cover new hires without requiring bond amendments
• Corporate trustee exemption: banks, insurance companies, and other entities subject to state or federal regulation and regular examination as a condition of business are exempt from the bonding requirement — they are regulated as fiduciaries by their chartering authority

The bonding requirement is separate from fiduciary liability insurance. A fidelity bond protects the plan against loss from a dishonest handler; fiduciary liability insurance protects the fiduciary against claims of breach of fiduciary duty. Plans are required to carry fidelity bonds; fiduciary liability insurance is optional. DOL audits frequently cite missing or inadequate fidelity bonds as the most common technical ERISA violation — particularly at small plans where the plan sponsor has not updated bond amounts to reflect growth in plan assets.

State Variations

ERISA largely preempts state laws that "relate to" employee benefit plans — states cannot impose conflicting requirements on ERISA-governed retirement plans. However, state insurance laws that regulate insurance products held by plans are preserved, and state contract and property laws apply to many plan transactions. State securities laws do not apply to transactions involving ERISA plan assets. Some states have created state-run retirement programs for private sector workers not covered by employer plans (CalSavers in California, OregonSaves, etc.) — these state programs operate outside ERISA and are governed by state law. Federal employees have a separate fiduciary framework under the FERS retirement system and the Thrift Savings Plan. Plan sponsors should also review obligations to multiemployer pension plans and the PBGC insurance system.

Pending Legislation

The DOL's 2024 fiduciary rule, which expanded the definition of investment advice fiduciary, has been subject to legal challenges. Courts have stayed portions of the rule. The DOL's regulatory approach to the fiduciary standard has been contested and revised across multiple administrations, and the final regulatory framework remains uncertain. Legislation to codify a fiduciary standard for retirement advice (without administrative uncertainty) has been introduced but not enacted.

Recent Developments

A wave of 401(k) excessive fee litigation beginning around 2015 has reshaped plan fiduciary practice. Courts have allowed participant class actions against major employers (MIT, NYU, Emory, Johns Hopkins, and many others) for paying excessive recordkeeping fees and offering expensive retail-class mutual funds when lower-cost institutional shares were available. Most cases settled in the $10M–$100M range, driving employers to conduct rigorous annual fee benchmarking and convert plan investments to lower-cost institutional shares. The Supreme Court's decision in Hughes v. Northwestern University (2022) clarified that offering a mix of prudent and imprudent options is not a complete defense — each investment must meet the prudent expert standard independently. The DOL issued a final fiduciary rule in 2024 (effective September 2024) expanding who qualifies as a fiduciary — with ongoing litigation and compliance challenges.

• DOL fiduciary rule vacated (2025): The Fifth Circuit vacated the DOL's 2024 fiduciary rule in March 2025, concluding that the rule exceeded DOL's authority under ERISA and conflicted with Business Roundtable v. SEC standards for regulating investment advice. The Trump DOL declined to appeal. This effectively restored the pre-2024 framework, meaning rollover recommendations and one-time investment advice may not be subject to fiduciary standards unless the adviser meets the five-part test. Advisers who adopted PTE 2020-02 compliance infrastructure may continue using it voluntarily.
• ESG and DEI plan investment pressure (2025): The Trump administration directed the DOL to investigate whether plan fiduciaries who made ESG or DEI-motivated investment decisions violated their duty of loyalty to participants. DOL issued a bulletin stating that considering ESG factors as "tie-breakers" remains permissible but that non-pecuniary factors (environmental, social goals) cannot override participant financial interests. Several state attorneys general launched parallel investigations into large asset managers (BlackRock, Vanguard, State Street) for alleged ESG-driven voting that may have harmed pension beneficiaries.
• Crypto in 401(k) plans — guidance update (2025): Following the Trump administration's crypto-friendly posture, the DOL withdrew its 2022 compliance assistance release warning fiduciaries against offering cryptocurrency as a 401(k) investment option. The withdrawal removes the implicit threat of DOL scrutiny for plans that offer Bitcoin or other crypto funds. Fidelity Investments had already launched a Bitcoin investment option for 401(k) plans; other recordkeepers are evaluating similar offerings. Fiduciaries must still document their analysis that crypto exposure serves participants' interests.
• SECURE 2.0 implementation deadlines (2025-2026): Key SECURE 2.0 provisions took effect in 2025-2026: the $10,000+ catch-up contribution Roth requirement for high earners (now effective January 2026 after IRS delay), long-term part-time employee eligibility for 401(k) participation (3-year rule effective 2025, 2-year rule effective 2025 for ERISA purposes), and emergency savings accounts (pension-linked emergency savings accounts — PLESAs — up to $2,500). Plan sponsors face administrative complexity integrating these changes; fiduciary duty requires ensuring the plan document and administration are updated to comply.