McGowanPRO Professional Liability Blog / Resources / Articles

The IRS has introduced new rules for taxation of business and personal use of employer-provided cell phones.  Under the new rules, effective retroactive to January 1, 2010, the cell phone must be provided for non-compensatory business reasons.  The personal use of the cell phone is then nontaxable as a working-condition fringe benefit.

In addition, if an employer requires employees to maintain and use personal cell phones for business purposes, reimbursement of their monthly charges is also tax free.

Example:  Employee pays $39.99/month for an unlimited usage cell phone plan.  Employer requires employees to use their cell phone to contact clients outside of normal office hours.  The employer can reimburse the full $39.99/month and not include this amount in the employee’s income because it is tax free.

The IRS defines non-compensatory business purposes as those that have a substantial business-related reason including, but not limited to:

• The need to contact the employee at all times for work-related emergencies;
• A requirement that an employee be available to speak with clients when the employee is away from the office; and
• The need to speak with clients located in other time zones at times outside of the employee’s normal work day.

Examples of usage that would not be tax free would include excessive charges for international calls when the company has only US based clients.

When evaluating the potential cost of a data breach we have previously referenced the direct first party costs incurred by a firm as $5 to $50 per client.

Further information provided by the Ponemon Institute estimate this cost to likely be closer to $214 per record.  The Ponemon Institute conducts independent research on privacy, data protection and information security policy. 

Their research estimates direct costs of $73 per record.  Direct costs may include forensic, notification, call center, credit monitoring, victim assistance, legal defense costs, and breach consulting.

However, they further consider the indirect costs of diminished customer trust as approximately $141 per record.  This creates a total potential cost for a data breach of approximately $214 per record, not factoring any potential Errors & Omissions claims related to to the breach. 

According to a recent report by the Georgia Tech Information Security Center, Emerging Cyber Threats Report 2012, Cyber threats against personal information [data] continues to evolve.  We will see advances in the sophistication and implementation of attacks in the near future.

As a professional who maintains personally identifiable information (PII) of your clients it is essential to be aware of these new and emerging threats, and take possible steps to safeguard your data.

Some of the areas cited in the report include:

• Mobile Phones / browsers. 

There are currently four billion mobile phones in use around the world and mobile Internet is expected to outpace desktop Internet usage by 2014 (http://www.digitalbuzzblog.com/2011-mobile-statistics-stats-facts-marketing-infographic/ ).  Characteristics of mobile browsers create a new platform to introduce threats to data, as well as, potentially bypass existing firewalls and other security measures.

•  Botnets

Botnets have been around for a long time but they continue to evolve.  PII is big business and this means increasingly sophisticated processes to access information.  Botnets have gone from targeting small pieces of data to creating complex demographic models that can potentially be sold into legitimate markets.

• Online Information

We live in the digital world and more business and personal interaction is transacted online than ever before.  Marketers continue to expand the way our personal information is utilized to “control” our online experiences.  In addition, attackers are now capitalizing on search engine optimization (SEO) to increase rankings and, therefore, credibility.

• Technology Advances

Advances in technology that enhance the way we conduct business also increase our potential exposure.  Cloud computing creates new exposures that were previously addressed through physical servers.  However, human error, education, and weak passwords continue to create the most vulnerability.

You can read the whole report here.  It is not necessarily possible to understand all of the exposures created through enhancements in technology.  However, broader education creates awareness to avoid potential disasters.

If you have not already, download NAPLIA’s recent White Paper on Information Security: Essential Steps to Protecting your Practice.

The question is often raised, what constitutes a “reportable incident” to my insurance carrier?  To answer this one should review the specific language in your professional liability (aka. errors & omissions) policy. 

Each insurance policy is different.  Only your specific policy can provide you with the conditions, definitions, and provisions relevant to your scenario.  The policy wording used here is for illustrative purposes only.

Your professional liability policy is a legal contract between you and your insurance carrier.  As such, it is essential to pay close attention to your policy definitions and conditions, and follow them closely.  Failure to follow the conditions of your specific policy could result in a denial of a claim.

Most professional liability policies have wording relevant to the reporting of a potential claim.

If, during the policy period, you become aware of a wrongful act or any facts or other circumstance that occurred on or after the retroactive date but prior to the end of the policy period which may reasonably be expected to subsequently give rise to a claim or regulatory proceeding against you, you must give  us written notice as soon as practicable of the  potential claim or  regulatory proceeding, but in any event not later than the end of the policy period or any extended reporting period, if applicable.

The wording here that is open to interpretation is “reasonably be expected”.  In general, courts will go by the “reasonable professional” rule to determine if other professionals in your situation would have acted similarly. 

When in question, contact your agent and/or carrier hotline to discuss the scenario for a second opinion.  The concern is, if a claim arises out of a situation that you were previously aware of and did not report, the carrier can potentially deny the claim for “prior knowledge”. 

The key date for determination is the expiration of your policy.  If you are aware of a potential claim, you want to make sure to report that incident prior to the expiration and renewal of your policy. 

How you report a potential incident is also very important.  Providing a vague statement to the carrier or your agent is typically not sufficient to be considered adequate reporting .  Again, read your policy on the specifics for reporting a potential incident.

Such written notice to us shall include:

1      Reasons for your decision to report this as a potential Claim; and

2      Details with dates of the alleged Covered Act; and

3      Potential amount of injuries or Damages arising from the Covered Act; and

4      The names of potential claimants; and

5      The manner in which you first became aware of the specific Covered Act.

When reporting a potential incident you should follow the specific conditions of your policy and provide all requested information, in the requested format, and reported to the appropriate contact.

This does not imply that every potential issue you face needs to be reported to your insurance carrier.  However, should a scenario arise you should discuss with your agent and ask yourself:

-          Is this directly related to the professional services covered under my policy?

-          Do I reasonably expect this to arise into a claim?

-          When does our professional liability policy come up for renewal?

And, then if reporting the incident:

-          Have I provided all of the details requested in my policy and reported in the appropriate manner?

You may also consider that some professional liability policies contain incentives in the form of deductible reduction for the early reporting and settlement of claims.  Review your policy to understand these features.

Your professional liability policy is intended to protect your practice from errors and omissions in the delivery of your professional services.  Do not miss out on the protection you purchased for failure to understand and follow the conditions of your policy.

If you receive a subpoena or summons related to a potential incident, read our White Paper on: Responding to Subpoenas & Summonses: An Accountants Guide to Understanding & Response.

NAPLIA is pleased to introduce our newest White Paper:

Responding to Subpoenas and Summonses: An Accountants Guide for Understanding & Response

A claim of malpractice is not the only exposure faced by accounting firms.  The nature of accounting services creates several scenarios where accounting firms are consistently engaged with the judicial system because of the lawsuits and investigations that confront their clients.

The intent of this White Paper is to:

• Distinguish between "simple" and "complex" subpoenas.
• Provide a framework to understand the subpoena process and create an appropriate internal process for response.
• Identify "Complicating Factors" that may impact the response process.
• Understand when to retain counsel, and when a subpoena is likely to evolve into a claim.

Download NAPLIA's White Paper on Responding to Subpoenas and Summonses Now.

Congratulations to long-time NAPLIA friend, Rita Keller, for being named to Accounting Today's 100 Most Influential People.

Rita Keller and NAPLIA Partner, Stephen Vono

Rita is a Social Media maven who brings her high energy and fresh ideas to CPA Firm Management.  She is a well respected speaker across industry conferences and we recommend keeping up with her through her blog and/or facebook page.

We commend Rita on her ideas of challenging the status-quo and bringing fresh insight to CPA Firm Management.

More from Rita:

Do your professionals know what to do when a client is unhappy?

We hate to take space to blow our own horn, but we at NAPLIA are extremely proud to be recognized for the fourth consecutive year as one of the fastest growing private companies in America.

http://www.naplia.com/Naplia/inc500.html

What does this mean for you?

You can be confident that you are working with a nationally recognized company that has been successful through our dedication and service to our clients.  We like to think we are changing the way professionals buy insurance.

NAPLIA is committed to providing you with a better buying experience for your Professional Insurance by:

• Providing Choice
• Providing Education & Resources
• Providing Experience & Expertise
• Providing Quality Service

Backed by a track record of success and national recognition.  We can confidently say that "no national agent can match our personal service, and no local agent can match our national recognition".

Contact us today for more information about your professional liability insurance, errors & omissions, or other professional insurance needs!

According to a recent newsletter from Willis, data production is growing at an exponential rate (currently compound annual 60%) and that claims for data theft worldwide jumped 56% last year.  

In our experience, questions regarding insurance coverage for data security and identity theft are increasing daily.  Professional liability policies are intended to cover errors or omission in the delivery of professional services.  The question that often arises is, if data is lost or stolen outside the office (i.e. theft of a laptop computer) is there a connection to the delivery of professional services?

In addition, first-party expenses often triggered by state security breach laws are generally not covered under a professional liability policy.  This is the direct cost of client notification and credit monitoring that can run between $5 - $50 per client.

Download NAPLIA's White Paper on Information Security & Cyber Liability to learn more about essential steps to protecting your firm.

Unfortunately there are scenarios that may arise where your client, and you, do not see eye to eye.  Just one example of this may be a client who has not paid for services.  Of course you are not in business to provide services for free, but you understand that filing a suit for fees commonly leads to allegations of professional liability.

In this scenario, negotiating a reduction of fees may be in your best interest.  In return for reducing your fees it is wise to require the client to sign a general release.

A general release is a legal document that acts to terminate any legal liability between the releasor (your client) and the releasee (you).

Prior to offering a release to a client please consider:

1. A release of a claim, or potential claim, should never be made without previous insurance carrier approval.

2. A release is a contractual document, and likely to be construed according to the law of the local jurisdiction.  It is recommended you consult local counsel to review your final document to ensure that it is consistent with local law. 

The following general release template was developed for illustrative purposes only by Ralph Picardi, Esq. of Lapping & Picardi, LLP exclusively for use by clients of North American Professional Liability Insurance Agency, LLC (NAPLIA).

If you have questions please do not hesitate to contact your NAPLIA representative.

Sample general release template (word document)

As a provider to professional service firms, we continue to see an alarming increase in employee related fraud claims.

Although these claims are not limited to a particular size of firm, small companies can be especially effected by theft and embezzlement because they can’t afford extensive safeguards and aren’t large enough to absorb losses. Consider too, your Office Package policy (BOP) likely does not provide coverage if the theft is of your client funds, or if the theft is by a third party (non employee). 

The increasing trend in workplace fraud and the relatively low cost of these policies, makes Employee Dishonesty Insurance a coverage that we recommend highly to each of our clients.  Here are more compelling reasons to consider this coverage:

Fraud & Embezzlement is on the rise

According to the Association of Certified Fraud Examiners (ACFE), business losses from fraud and embezzlement exceed $400 billion per year.

It can happen to you

Most employers have a hard time imagining their employees stealing from them, but the reality is many businesses suffer significant financial loss at the hands of long-time trusted employees.

Coverage for your client’s funds

For most (accounting & financial) firms, your exposure is not your own assets, but those funds which you have control of for your clients.

Employee dishonesty policies can provide coverage for theft (by your employees) of client funds in your control.

Crime Coverage

In addition, Employee Dishonesty offers optional crime coverage for theft of your property by non-employees such as forgery, burglary, robbery, and computer fraud.

Automatic ERISA Bond Coverage

Many of the Employee Dishonesty policies that we offer include ERISA Bond coverage.  This eliminates your need to maintain a stand-alone ERISA bond.

Employee Dishonesty Insurance protects the employer (you) from financial loss due to the fraudulent activities of your employees.

More Employee Dishonesty FAQ's

More Information