Third-Party Administrator (TPA) Services in Insurance

Third-party administrator (TPA) services occupy a distinct operational layer in the insurance market, sitting between insurers, employers, and policyholders to handle the administrative functions that carriers or self-funded plan sponsors choose not to manage internally. This page covers the definition and regulatory scope of TPAs, how their service model is structured, the plan types and industries where TPAs are most commonly deployed, and the factors that determine when TPA engagement is appropriate versus when other service models better fit the need. Understanding TPA roles is essential for employers, plan sponsors, and insurers evaluating insurance policy administration services and broader commercial insurance services.

Definition and scope

A third-party administrator is an entity that performs administrative functions for an insurance plan or self-funded benefit program under contract with the plan sponsor or insurer, without bearing the underlying insurance risk. The TPA does not underwrite coverage — that distinction separates a TPA from an insurer and from a managing general agent (MGA).

In the United States, TPA licensing and regulatory oversight operates primarily at the state level. As of 2024, 47 states and the District of Columbia require TPAs handling health benefit plans to hold a dedicated TPA license (NAIC, Third Party Administrators Model Act, Model #215). The NAIC's Model Third Party Administrators Act (Model #215) establishes the foundational framework that most state legislatures have adopted or adapted, governing bonding requirements, contract disclosures, and solvency standards for TPA operations.

For self-funded employer health plans governed by the Employee Retirement Income Security Act of 1974 (ERISA), TPAs also operate under federal oversight. ERISA's fiduciary standards (29 U.S.C. § 1104) impose duties of prudence and loyalty on plan administrators, and the Department of Labor's Employee Benefits Security Administration (EBSA) enforces those requirements against both plan sponsors and any functional fiduciaries — a category that can include TPAs when they exercise discretionary authority over claims decisions (U.S. Department of Labor, EBSA).

The functional scope of TPA services typically encompasses:

  1. Claims intake and adjudication — receiving, reviewing, and paying or denying claims against plan terms
  2. Eligibility and enrollment management — maintaining participant records and processing qualifying life events
  3. Utilization review coordination — working with utilization review organizations (UROs) to assess medical necessity
  4. Provider network access — contracting with or accessing leased provider networks for discounted reimbursement rates
  5. COBRA and continuation coverage administration — managing notices, premium collection, and enrollment under 29 C.F.R. Part 2590
  6. Regulatory reporting — preparing ACA-required filings, Form 5500 support, and state-mandated reports
  7. Subrogation recovery — pursuing third-party liability recoveries on behalf of the plan

How it works

A TPA relationship is established through an administrative services agreement (ASA), sometimes called an administrative services only (ASO) contract. Under an ASO arrangement, the plan sponsor retains the financial risk for claims while the TPA performs the operational functions.

The operational flow follows a defined sequence:

  1. Contract execution — The plan sponsor and TPA execute an ASA specifying scope, fee structure, performance standards, and fiduciary allocations.
  2. Plan document integration — The TPA receives or assists in drafting the Summary Plan Description (SPD) and plan document, which govern claim adjudication rules.
  3. Eligibility data transfer — The employer transmits payroll and HR data to the TPA's eligibility system, typically via EDI 834 transaction sets under HIPAA standards (CMS, HIPAA Electronic Transactions).
  4. Claims processing — Providers or members submit claims; the TPA applies plan rules, network repricing, and coordination of benefits (COB) logic to calculate the allowable payment.
  5. Payment funding — The plan sponsor funds a dedicated bank account from which the TPA issues payments; the TPA does not use its own capital for claim payments in a true self-funded arrangement.
  6. Reporting and reconciliation — The TPA delivers utilization reports, loss runs, and financial summaries on a periodic basis (monthly or quarterly) to allow the plan sponsor to monitor plan performance.

TPA compensation structures vary. Fee arrangements include per-employee-per-month (PEPM) flat fees, per-claim fees, or percentage-of-savings models tied to network discount performance. The insurance services fee structures applicable to TPAs are subject to ERISA's prohibited transaction rules and the Consolidated Appropriations Act, 2021 (CAA 2021, Pub. L. 116-260, enacted December 27, 2020) fee transparency requirements, which mandate that TPAs disclose direct and indirect compensation to covered plan fiduciaries (CMS, CAA Transparency). CAA 2021 also introduced gag clause prohibition attestation requirements and machine-readable file mandates that directly govern TPA operations on behalf of ERISA-covered plans.

Common scenarios

TPAs are deployed across a range of plan types and industries where administrative volume, specialization, or cost efficiency justifies outsourcing.

Self-funded employer health plans represent the largest TPA market segment. Employers with 100 or more enrolled employees frequently self-fund medical benefits and engage a TPA for adjudication and network access, pairing TPA services with stop-loss insurance to cap catastrophic claim exposure. This structure is distinct from a fully insured arrangement, where the carrier both accepts risk and administers the plan.

Workers' compensation programs — particularly large deductible programs and self-insured employers — engage TPAs for claims management, medical bill review, and return-to-work coordination. State self-insurance statutes govern TPA use in this context; California, for instance, requires self-insured employers to use a claims administrator certified by the Department of Industrial Relations (California DIR, Self-Insurance Plans). Workers' compensation TPA services are explored further in the context of workers' compensation insurance services.

Property and casualty (P&C) program business — Insurers running specialty or program markets sometimes engage TPAs as the front-line claims handler for a book of business, particularly in specialty insurance services where underwriting expertise and claims handling expertise are separated.

Association and affinity group plans — Professional associations and trade groups that offer group insurance services to members frequently use TPAs to administer benefit programs across geographically dispersed member organizations.

Public entity and governmental plans — Municipalities and public school districts that self-fund employee benefits under state statutes rather than ERISA often require a TPA to handle day-to-day administration, with oversight from state insurance departments or public employee benefit boards.

Decision boundaries

Choosing between TPA engagement and alternative administrative models depends on identifiable structural factors — not preference alone.

TPA vs. fully insured carrier administration: Under a fully insured arrangement, the carrier both bears risk and administers the plan. Under an ASO/TPA model, risk and administration are separated. The breakeven point for self-funding with TPA services is commonly discussed in relation to group size and claims predictability; the National Association of Health Underwriters (NAHU) notes that employers below 50 enrolled employees face higher volatility risk that can offset TPA-model cost efficiencies (NAHU).

TPA vs. managing general agent (MGA): An MGA holds binding authority delegated by a carrier and may also perform administrative functions, but the MGA's primary role involves underwriting and distribution. A TPA holds no binding authority and bears no underwriting risk. These roles occasionally overlap in program business, but regulatory classifications remain distinct — a combined entity may require both TPA and MGA licenses in states that regulate them separately.

TPA vs. in-house administration: Large employers occasionally bring TPA functions in-house. This requires dedicated claims staff, compliance infrastructure, provider network contracts, and technology investment. The ERISA fiduciary obligations attach to the employer directly when no external TPA shares administrative discretion, which increases the sponsor's compliance exposure. Organizations evaluating this path should review applicable insurance compliance services and insurance services regulatory framework resources.

Key selection criteria when evaluating a TPA include:

  1. Licensure verification — Confirm the TPA holds a valid TPA license in each state where participants reside, using the NAIC's State Based Systems or the applicable state insurance department's licensee lookup.
  2. Network access — Assess whether the TPA's contracted or leased network delivers adequate geographic coverage and discount depth for the plan population.
  3. Technology infrastructure — Evaluate claims system capabilities, EDI transaction support, and reporting portal functionality.
  4. Stop-loss carrier relationships — Self-funded plans typically layer TPA services with stop-loss coverage; TPA compatibility with preferred stop-loss carriers affects overall program economics.
  5. CAA 2021 compliance posture — Confirm the TPA can meet fee disclosure obligations under ERISA Section 408(b)(2) as amended, gag clause prohibition attestation requirements, and machine-readable file mandates established by the Consolidated Appropriations Act, 2021 (Pub. L. 116-260, enacted December 27, 2020). These requirements are enforced on an ongoing basis and carry direct implications for plan fiduciary liability.
  6. Accreditation status — URAC and NCQA offer TPA and health utilization management accreditation programs that signal adherence to quality and compliance standards (URAC; NCQA).

References

📜 10 regulatory citations referenced  ·  ✅ Citations verified Mar 04, 2026  ·  View update log

Explore This Site

Regulations & Safety Regulatory References