Theta Lake has published its fourth annual survey report on modern communications compliance and security, highlighting the complex challenges faced by those tasked with maintaining compliance, security and data privacy. The report is based on the views and experiences of more than 500 compliance and security professionals from the heavily-regulated financial services, healthcare and government sectors across the U.S., the U.K. and Canada. It provides a snapshot of how communication platforms are being used and the issues organizations are struggling with, enabling them to benchmark their own practices and expectations against the wider industry, identifying any gaps or areas of exposure they may have.

How to Comply With the New CMS Communications and Marketing Requirements for Medicare Advantage and Part D Conversations

New recording, disclosure, and compliance rules

New electronic communications recording, disclosure, and oversight rules from the Centers for Medicare &Medicaid Services (“CMS”), effective 1 October 2022, highlight the heightened scrutiny around the sale of complex healthcare products, to promote transparency and protect consumers.  In a digital age where prospects are bombarded with telemarketing calls, online advertising, social media, and promotions from celebrities and influencers, it’s more important than ever that they receive accurate information about sophisticated products.  Clarity is particularly critical when it relates to the purchase of essential healthcare services.

The new CMS rules can be viewed as part of a broader global trend toward increased disclosure for complex healthcare, financial, or insurance products directly marketed to customers.  Complaints about misleading advertising and sales of Medicare Advantage (“MA”) plans and Part D were the key catalyst for the CMS regulatory updates.  In the one year period between 2020 and 2021 the number of complaints submitted to CMS soared from less than 16,000 to over 39,000 – a staggering increase.

Collaboration tools like Microsoft Teams, Zoom and Webex Teams, RingCentral and Slack have become integral to how we work.  With multiple ways to communicate and collaborate they’re vital for keeping workforces and customers connected whether remote, hybrid or office based.  And with less and less physical in-person interaction, users are making use of the rich features to liaise and share information.  Not least by adding personality and emotion with emojis, reactions and GIFs.  But modern communications create compliance challenges when it comes to providing evidence and proof that is so often required for regulatory, HR, litigation or complaints resolution issues.

Financial services firms have long used technology to supervise the communications and activities of employees, to ensure compliance with regulatory requirements and be able to detect issues such as market abuse, mis-selling or data privacy. It’s a key control for meeting regulatory obligations including MiFID II,  CFTC, FINRA, IIROC and GDPR and a standard feature of working in a regulated industry. Likewise data loss prevention tools are commonplace across businesses to reduce the risks of data loss and exposure.  All designed to protect consumers, employees, and shareholders.