Here’s a scenario that plays out more often than most business owners expect. You’re notified that your company’s health plan had a compliance gap: a Form 5500 filed late, or a plan document that described benefits your employees never actually received. The DOL is asking questions. Your HR team is scrambling. And the first thing everyone wants to know isn’t “how do we fix this?” It’s “who’s financially responsible for this?”
If you’re operating under a PEO arrangement, that question gets complicated fast. The co-employment model creates genuine opportunities to transfer fiduciary liability for employee benefit plans, but the protection is never as automatic or complete as the sales pitch implies. The gap between what you assume transferred and what actually transferred is exactly where financial exposure lives.
This article is a narrow, technical deep dive into the financial mechanics of fiduciary liability under the PEO model. If you’re newer to PEO structures and need foundational context first, start with a broader PEO service agreement explainer or a PEO versus benefits broker comparison before working through this analysis. What follows assumes you already understand co-employment basics and want to get specific about what fiduciary risk actually shifts, what it’s worth in dollars, and where the protection breaks down in practice.
ERISA Fiduciary Duties: The Financial Stakes Before Any PEO Enters the Picture
Under ERISA §3(21), you’re a fiduciary if you exercise discretionary authority or control over plan management, plan assets, or plan administration. This isn’t a title you choose. It’s a status you acquire by doing certain things, and it comes with personal financial exposure that doesn’t stop at the corporate entity.
The core fiduciary duties are straightforward in principle and expensive to violate in practice. The duty of loyalty requires that plan decisions be made solely in the interest of plan participants, not the employer. The duty of prudence requires that fiduciaries act with the care of a knowledgeable expert, even if they aren’t one. Plan document compliance means the plan must actually operate the way its documents say it does. And for plans with investment components, diversification of plan assets is required to minimize the risk of large losses.
These duties split across two roles that are worth distinguishing clearly: the plan sponsor and the plan administrator. The plan sponsor is typically the employer, responsible for establishing and maintaining the plan. The plan administrator handles day-to-day operations and compliance. In a single-employer setup, these roles often overlap. Under a PEO arrangement, they can split in ways that create genuine confusion about who bears what cost when something goes wrong. Understanding how a PEO works at a structural level is essential before evaluating how these roles actually transfer.
The financial exposure attached to these roles is real and specific. Late Form 5500 filings carry DOL penalties up to $250 per day, capped at $150,000 per plan per year, with separate IRS penalties of $250 per day up to $150,000 on top of that. Participant lawsuits for breach of fiduciary duty can require the fiduciary to personally restore losses to the plan. Prohibited transaction excise taxes apply when plan assets are used in ways that benefit disqualified persons. And self-identified compliance violations that go through the DOL’s Voluntary Fiduciary Correction Program (VFCP) can require restoring lost earnings to participant accounts, a cost that compounds over time depending on how long the violation ran.
The point here isn’t to catalog every possible penalty. It’s to establish that fiduciary liability has a real price tag, and that price tag attaches to named individuals and entities, not just to abstract compliance risk. That’s what makes the PEO model’s fiduciary transfer genuinely valuable when it works, and genuinely dangerous when it doesn’t.
How the PEO Model Restructures Who Holds the Bag
When a PEO operates a master benefit plan, it typically steps into the role of plan sponsor and named fiduciary for that plan under ERISA. This is the structural mechanism that makes the liability transfer real. The PEO isn’t just a vendor helping you manage benefits. It’s the entity legally responsible for plan compliance, plan document accuracy, vendor selection, and the fiduciary obligations that come with all of those functions.
This is a materially different arrangement than working with a benefits broker. A broker recommends plans and helps you access group coverage, but the employer remains the plan sponsor throughout. Every fiduciary obligation stays with you. The broker has no ERISA fiduciary exposure for plan design decisions or compliance failures. With a PEO master plan, the structural role shifts, and with it, the financial liability for the plans the PEO sponsors. For a detailed breakdown of this distinction, see our PEO vs benefits broker comparison.
NAPEO, the industry’s trade association, has published guidance confirming that PEOs generally assume fiduciary responsibility for the benefit plans they sponsor. In practice, this means the PEO is responsible for Form 5500 filings, Summary Plan Description (SPD) distribution, COBRA administration, and the plan design decisions that create fiduciary exposure in the first place. If the PEO’s master plan has a compliance gap, the PEO is the entity facing DOL scrutiny, not you.
One distinction worth flagging clearly: IRS-certified PEOs, known as CPEOs under IRC §7705, carry additional financial assurances, but those assurances are tax-specific. CPEO certification addresses wage base continuity and employment tax liability. It doesn’t directly enhance ERISA fiduciary protections. These are separate regulatory frameworks, and conflating them is a common mistake that leads business owners to overestimate how much protection CPEO status actually provides on the benefits side.
The limits of the transfer matter as much as the transfer itself. The PEO assumes fiduciary responsibility for the plans it sponsors. If your company maintains any benefit arrangements outside the PEO’s master plan structure, those remain fully your fiduciary responsibility. Supplemental plans, executive benefit arrangements, HSA programs administered through a separate vendor, standalone 401(k) plans: all of these stay with you unless the PEO has explicitly assumed sponsorship of them, which most don’t.
Putting Dollar Figures on What Moves and What Stays
The practical financial value of the fiduciary transfer comes into focus when you map it against your current cost structure. Here’s what typically shifts to the PEO when you’re operating under a master plan arrangement.
Plan compliance administration costs: Form 5500 preparation and filing, SPD drafting and distribution, COBRA administration, and the ongoing monitoring required to keep plan operations aligned with plan documents. For small employers doing this independently, these functions require either dedicated HR expertise, outside ERISA counsel, or both. A thorough look at PEO benefits administration shows how these functions consolidate under the PEO’s operational umbrella.
Plan design fiduciary risk: When the PEO designs and maintains the master plan, decisions about benefit structure, coverage tiers, and plan amendments are the PEO’s fiduciary decisions. If those decisions later face scrutiny, the PEO is the responsible party.
Vendor selection liability: For plans with investment components, selecting and monitoring investment options is a fiduciary act. Under a PEO master plan, that selection responsibility belongs to the PEO, not the client employer.
Now, what stays with you. Fiduciary liability for any employer-level decisions that override or supplement the PEO’s plan remains yours. If you offer a supplemental benefit outside the PEO’s structure, you own the compliance obligations. Accuracy of census data and employee eligibility reporting is entirely the employer’s responsibility, and errors here can create financial exposure even when the PEO is the named fiduciary. And under ERISA §405, co-fiduciary liability means that if you knowingly participate in or enable a fiduciary breach, you can share in the financial consequences even when someone else is the named fiduciary.
The avoided cost side of this equation is worth taking seriously. ERISA counsel retainers for small employers can run meaningfully into the tens of thousands annually depending on plan complexity and how actively the attorney is engaged in plan review. Fiduciary liability insurance, which small employers sponsoring their own plans typically need, carries premiums that vary based on plan size and structure but represent a real line-item expense. Building a PEO savings projection model that accounts for these avoided costs gives you a clearer picture of the net financial impact. VFCP correction costs, when violations are self-identified, can include restoring lost earnings to participant accounts across the period of the violation. These aren’t hypothetical risks. They’re documented costs that a PEO master plan arrangement can legitimately reduce or eliminate for the plans it covers.
The Scenarios Where the Protection Doesn’t Hold
The fiduciary transfer under a PEO model is real, but it’s conditional. There are specific situations where business owners discover, usually at the worst possible moment, that the protection they assumed they had wasn’t actually there.
Inaccurate employee classification data: If your company provides the PEO with incorrect classification information, employees get enrolled in the wrong benefit tier, or ineligible individuals receive coverage, the PEO’s fiduciary protection doesn’t extend to your data failures. The financial fallout, including retroactive coverage adjustments, potential penalties, and correction costs, lands back on the employer. The PEO fulfilled its fiduciary obligations based on the data you provided. That’s a meaningful carve-out.
Standalone retirement or executive compensation plans: This is the most common misunderstanding in the market. Many business owners operate a 401(k) plan or an executive deferred compensation arrangement outside the PEO structure and assume the PEO’s fiduciary umbrella covers it. It doesn’t. Those plans remain fully the employer’s fiduciary responsibility, with all the associated compliance obligations, DOL exposure, and personal liability for named fiduciaries. The PEO master plan covers what the PEO sponsors. Nothing else.
The service agreement is the controlling document: This point can’t be overstated. The actual allocation of fiduciary responsibilities isn’t determined by general assumptions about how PEOs work. It’s determined by the specific language in your Client Service Agreement (CSA). PEO contracts vary significantly in how they define fiduciary roles, what indemnification clauses look like, and under what conditions liability pushes back to the client. Understanding the full scope of PEO contract liability risks is critical before assuming any protection is in place. Broad indemnification carve-outs, vague language about who is the “named fiduciary” for specific plans, and conditions that shift liability back to the employer under certain circumstances can all narrow the theoretical protection significantly.
The gap between the PEO model’s general structure and your specific contract is where financial exposure lives. Attorneys who review PEO service agreements regularly see contracts that describe fiduciary protections in broad strokes while carving out significant liability through indemnification language buried in the details. Reading that language carefully before signing isn’t optional if you’re counting on fiduciary protection as part of your risk management strategy.
Building the Evaluation Framework Before You Commit
The right question isn’t “does a PEO reduce my fiduciary liability?” It’s “does this specific PEO, under this specific contract, reduce my fiduciary liability enough to justify the cost?” That requires an actual comparison, not a general assumption.
Start by auditing your current fiduciary-related cost stack. What are you paying for ERISA counsel, either on retainer or for periodic plan reviews? What does your fiduciary liability insurance cost annually, and what does it cover? What do you spend on compliance audit preparation, Form 5500 filing, and SPD maintenance? How much internal HR time goes toward plan administration that would shift to the PEO? Add those up honestly. Running a structured PEO ROI and cost-benefit analysis against that baseline is the only way to evaluate whether the fiduciary transfer justifies the PEO’s fees.
Then evaluate what fiduciary coverage you’re actually receiving from the PEO. Not what the sales rep describes. What the contract says. Specifically: Is the PEO named as plan sponsor and plan administrator for each benefit plan? Does the contract clearly identify fiduciary responsibilities for each plan type? What does the indemnification language actually say, and under what conditions does liability revert to you? Does the PEO carry fiduciary liability insurance, and will they confirm coverage details in writing? A thorough PEO financial risk assessment should address each of these questions before you commit.
Red flags worth watching for: Vague references to “assuming fiduciary responsibility” without specifying which plans or which functions. Broad indemnification carve-outs that effectively return liability to the client for a wide range of scenarios. No mention of the PEO’s own fiduciary liability insurance. Contracts that define “plan administrator” narrowly in ways that leave significant fiduciary functions with the employer.
When a PEO isn’t the right fit for fiduciary risk management: Companies with complex multi-plan structures, particularly those with layered executive compensation arrangements, often find that a PEO master plan can’t absorb the full scope of their fiduciary obligations. Businesses needing highly customized benefit designs that don’t fit a master plan structure retain more fiduciary exposure than they might expect. And organizations where executive benefits create separate fiduciary obligations under multiple plan types may find that the PEO arrangement addresses only a portion of their actual risk exposure.
The Bottom Line on Fiduciary Risk Transfer
The PEO model can deliver real, meaningful fiduciary protection for employee benefit plans. When a PEO assumes plan sponsorship and named fiduciary status under a well-structured master plan, the financial exposure that previously sat with the employer, including DOL penalties, participant lawsuit risk, correction costs, and the ongoing overhead of maintaining ERISA compliance, genuinely transfers. That’s not marketing language. It’s a structural shift with real financial consequences.
But the protection is conditional, specific, and contract-dependent. It covers the plans the PEO sponsors, under the conditions the contract describes, for the fiduciary functions the PEO has actually assumed. Everything outside that scope stays with you. Data accuracy, standalone plans, employer-level discretionary decisions, and anything the service agreement carves out remain your financial exposure.
Before you sign or renew a PEO agreement, audit your current fiduciary cost stack, read the service agreement with fiduciary-specific attention, and compare providers on the actual protection they offer, not the general protection the model implies. The difference between a PEO that genuinely absorbs fiduciary risk and one that describes it in broad terms while carving it back through contract language is a difference worth understanding before you’re in a DOL inquiry trying to figure out who’s actually on the hook.
Don’t auto-renew. Make an informed, confident decision. Use PEO Metrics’ comparison tools to evaluate which providers offer the strongest fiduciary protections for your specific situation, with side-by-side contract and pricing analysis that shows you exactly what you’re getting and what you’re not.
