SECURE 2.0 - The Quiet Mistakes We're Seeing

Author

Article Summary

SECURE 2.0 is bringing attention to gaps that can exist beneath otherwise well-run retirement plans. While operations may appear smooth, areas like data coordination, eligibility tracking, and plan oversight can create compliance risk if not clearly managed. Learn where plans are may often be exposed, reinforcing the need for clarity, defined responsibility, and intentional oversight.

Many retirement plans appear to be running smoothly. Contributions are processed. Statements are delivered. Employees rarely raise concerns.

Yet SECURE 2.0 is revealing an uncomfortable truth for many plan sponsors: 

A plan can function operationally while still carrying compliance risks that aren’t immediately visible.

Most of the issues we’re seeing are not the result of bad intent. They stem from being busy and from assuming that “handled” automatically means “protected.”

Across organizations, business owners sometimes:

  • Aren’t clear who truly owns which plan decisions
  • Can’t distinguish what was intentionally designed versus inherited or never revisited
  • Lack a clear line between what is acceptable risk and what requires attention

SECURE 2.0 doesn’t eliminate flexibility, but it does increase the importance of clarity, documentation, and intentional oversight.

(Important context: SECURE 2.0 requirements vary by plan type (e.g., 401(k) vs. 403(b)), plan document language, and effective dates. Not every provision applies uniformly to every plan.)

The Quiet Mistakes We’re Seeing Business Owners Make

1. The "Box 3" Data Gap - (Roth Catch-Up Contributions)

This remains one of the most operationally complex SECURE 2.0 changes.

The Exposure
Effective for 2026 (subject to any applicable IRS transition relief), catch‑up contributions for employees with prior‑year FICA wages over $150,000 must be treated as Roth, provided the plan permits catch‑up contributions and the participant is otherwise eligible.  

The Operational Challenge
Many plan sponsors assume their recordkeeper automatically identifies who qualifies.
In practice: 

  • Recordkeepers typically rely on plan compensation

FICA wages (Box 3) are usually housed in payroll systems 2. Without deliberate coordination, the required data may never reach the recordkeeper.

The Risk

  • If an impacted participant makes pre‑tax catch‑up contributions that are not designated as Roth once the rule is effective:
  • The plan may experience an operational compliance failure, depending on the facts
  • Corrections may require tax reporting adjustments and/or corrective transactions, depending on timing and provider capabilities

While correction programs may be available, addressing these issues after the fact can be administratively complex and disruptive.

2. The LTPT “Ghost” - (Long‑Term Part‑Time Employees)

SECURE 2.0 shortened the long-term part-time (LTPT) service requirement for 401(k) plans from three consecutive years to two consecutive years with at least 500 hours of service per year, subject to applicable effective dates and the plan’s required counting rules3.  

The Exposure
Many organizations still operate using the familiar standard:
“1,000 hours in a year equals eligibility.”

As a result, they may fail to track hours for part time or seasonal employees who quietly cross the LTPT threshold.

The Nuance
LTPT eligibility primarily impacts elective deferral rights. Employer contribution eligibility may differ based on plan design, and technical exclusions apply (for example nonresident aliens without U.S. source income). Effective dates and counting rules also matter4.

The Risk
When an eligible employee is missed, corrections often involve:

  • Retroactive plan entry
  • A Qualified Non-Elective Contribution (QNEC) to address missed deferral opportunities
  • Lost earnings

These are correctable issues, but rarely inexpensive ones.

3. Forfeitures - When Balances Accumulate

Forfeiture handling is receiving increased attention in examinations. Not because forfeitures are inherently risky, but because plans must follow their own documents.

The Exposure

Allowing forfeiture balances to accumulate indefinitely as an informal offset for future employer contributions.
The Compliance Reality
IRS guidance and exam focus areas reinforce that forfeitures should be:

  • Used in accordance with the plan document
  • Applied within a reasonable, administratively feasible timeframe
  • Not allowed to accumulate in a manner inconsistent with the plan’s forfeiture provisions or without documentation

Extended inactivity can raise questions about whether the plan is being operated as written5.   

4. Statement and Disclosure Delivery Drift

SECURE 2.0 did not simplify participant disclosure requirements, but it did push many plans to re-examine them.

Electronic delivery is permitted under Department of Labor safe harbor rules, but the standards vary based on participant status and the delivery method used.

Where Plans Get Exposed

  • Terminated participants defaulting to electronic delivery without meeting safe harbor requirements
  • Outdated delivery elections
  • Assumptions that “everything is online” is sufficient

These issues frequently surface during participant complaints or DOL examinations 6

The “Obvious” Things That Quietly Create Risk

These aren’t technical errors. They’re governance blind spots.

1.    Roth Catch‑Up Design Decisions

Once the high earner Roth catch-up rule is effective, plans that do not offer Roth contributions may face a design choice:

  • Add Roth functionality so impacted participants can continue making catch-up contributions, or
  • Limit catch-up contributions for those impacted participants

This is a plan design decision, not an automatic prohibition, but it requires intentional action.

(Plan sponsors should consider participant impact and fiduciary documentation when evaluating whether to adopt this change.)

2.    The Force Out Threshold

SECURE 2.0 increased the permitted small balance force-out threshold to $7,000, if adopted in the plan document.

Many plans continue to maintain small inactive balances for former employees, potentially increasing administrative complexity and recordkeeping costs. Whether to adopt the higher threshold depends on plan design and participant considerations7.  

3.    The Inherited Plan Document

The SECURE 2.0 remedial amendment deadline is generally expected to be the end of the 2026 plan year for many plans, with exceptions and extensions for certain plan types.

In the meantime, many sponsors are:

  • Operating under SECURE 2.0 provisions, while
  • Still relying on pre-2022 signed plan documents

Outdated documentation may raise questions during audits or transactions, even when operations are otherwise sound8.

4.    Eligibility Failures

When an employee is improperly excluded, whether due to LTPT rules, auto enrollment, or eligibility tracking, the correction may include:

  • A significant portion of the missed deferral opportunity
  • Employer contributions, if applicable
  • Lost earnings

The total cost depends on plan terms, compensation, and how quickly the issue is identified.

The Bottom Line for Business Owners

SECURE 2.0 is not about perfection.
It’s about clarity, ownership, and intentional decisions.
The plan sponsors navigating this well aren’t doing more; they’re seeing more clearly:

-How payroll, recordkeeping, and plan documents intersect
-Where responsibility truly sits
-Where small operational gaps can turn into larger compliance issues

You don’t need to be alarmed. But you do need to be intentional.

For additional educational information on SECURE 2.0 provisions that may affect retirement plans, watch our Fiduciary Academy: SECURE 2.0: Provisions That Will Impact Your Plan in 2026.

 

Investment advice offered through OneDigital Investment Advisors LLC. This article is for informational purposes only and should not be interpreted as specific advice. You should make decisions based on your unique objectives and financial situation. If you are unsure, please work with an appropriate advisor to review your specific circumstances. Additionally, any statements made reflect our views and/or opinions and are not intended to guarantee any particular result. ID: 00544890  

 

1. 2026 amounts relating to retirement plans and IRAs, as adjusted for changes in Cost-of-Living. (2025). https://www.irs.gov/pub/irs-drop/n-25-67.pdf

2. Department of the Treasury Internal Revenue Service. (2026). Instructions for Forms W-2 and W-3 (Including forms W-2AS, W-2CM, W-2GU, W-2VI, W-3SS, W-2C, and W-3C). https://www.irs.gov/pub/irs-pdf/iw2w3.pdf

3,4. Department of the Treasury & Internal Revenue Service. (2024b). Additional Guidance with Respect to Long-Term, Part-Time Employees, Including Guidance Regarding Application of Section 403(b)(12) to Long-Term, Part-Time Employees under Section 403(b) Plans. In Notice 2024-73. https://www.irs.gov/pub/irs-drop/n-24-73.pdf

5. Use of forfeitures in qualified retirement plans. (2023, February 27). Federal Register. https://www.federalregister.gov/documents/2023/02/27/2023-03778/use-of-forfeitures-in-qualified-retirement-plans

6. Requirement to provide paper statements in certain Cases-Amendments to Electronic Disclosure Safe Harbors. (2026, February 25). Federal Register. https://www.federalregister.gov/documents/2026/02/25/2026-03723/requirement-to-provide-paper-statements-in-certain-cases-amendments-to-electronic-disclosure-safe

7. US Treasury Department. (2022). SECURE 2.0 Act of 2022. In Title I – Expanding Coverage and Increasing Retirement Savings. https://www.finance.senate.gov/imo/media/doc/Secure%202.0_Section%20by%20Section%20Summary%2012-19-22%20FINAL.pdf

8. Internal Revenue Service. (2025). 2025 Required Amendments List for Qualified and Section 403(b) Plans. https://www.irs.gov/pub/irs-drop/n-25-60.pdf

Publish Date:Apr 28, 2026