Return to Webmag Home
Short term
05 minutes

COFI and Omni-RR: What UMAs Need to Do Now to Strengthen Compliance

As COFI and Omni-RR reshape South Africa’s regulatory landscape, underwriting management agencies (UMAs) face rising expectations around governance, data integrity and compliance. Preparing now will be critical for maintaining insurer relationships and ensuring operational resilience in a more transparent, outcomes-driven environment.
Written by
Alicia Kamfer
Published on
March 20, 2026
Copy link

With the upcoming Conduct of Financial Institutions (COFI) Bill and Omni-Risk Return (Omni-RR) set to replace much of the existing legislation to create a more harmonised regulatory framework for South Africa’s financial services sector, underwriting management agencies (UMAs) will face growing expectations around governance, data quality and compliance. This article unpacks what UMAs do, how they operate and how they can prepare for the evolving regulatory environment.

The role of UMAs - UMAs have become a key part of South Africa’s short-term insurance sector. They represent insurers through binder agreements, performing specialist functions such as underwriting, claims management and policy administration. They bring technical expertise and efficiency to the process.

In the insurance value chain, UMAs sit between the insurer and financial advisors (the distribution channel). The insurer provides the cover and carries the risk; the broker provides advice and deals directly with the client – and the UMA handles the technical and administrative side that keeps everything running smoothly. While clients usually interact with brokers rather than UMAs, their behind the scenes work directly influences how effectively policies are managed and how fairly claims are settled.

The current compliance landscape - Because UMAs operate under delegated authority, they face a unique mix of compliance and operational responsibilities.

To operate as a UMA, an entity must meet both Financial Advisory and Intermediary Services (FAIS) licensing and insurance regulatory requirements. This usually means holding a Category I FSP licence to perform intermediary services and being formally approved by an insurer as a binder holder under the Insurance Act.

Like all FSPs, UMAs must meet the FAIS Fit and Proper requirements relating to competence, operational ability and financial soundness. They also need strong governance structures, experienced underwriters, sound financial management and robust systems that can produce accurate reports for insurers and regulators.

Beyond licensing, UMAs have several ongoing compliance duties, including:

  • Treating customers fairly (TCF) and managing conflicts of interest
  • Keeping detailed records for at least five years
  • Ensuring compliance with the Protection of Personal Information Act (POPIA)
  • Maintaining accurate, auditable data to support insurer oversight

Before signing a binder agreement, a prospective UMA should take a careful, informed approach. The agreement defines their authority, accountability and compliance obligations. Terms around remuneration, indemnity, data ownership and reporting must be fair and transparent, and the UMA should ensure it has the systems and staff to maintain the requirements stipulated in the binder agreement. Binder fees must stay within regulatory limits, and UMAs should understand audit rights and performance expectations upfront. In essence, the binder agreement is both a contractual agreement and a compliance commitment.

Because the insurer remains ultimately responsible for all decisions a UMA makes, oversight is continuous. Insurers typically conduct annual audits, review underwriting and claims processes and require regular reports on performance and complaints. For UMAs, demonstrating strong governance and transparent reporting is essential to maintaining trust and meeting regulatory expectations.

Common pitfalls and compliance risks - UMAs often run into difficulties when they overstep their binder authority or fail to follow insurer procedures. Common issues include:

  • Making underwriting or claims decisions beyond their mandate
  • Weak recordkeeping or inconsistent claims outcomes
  • Delayed or incomplete reporting to the contracted insurer
  • Conflicts of interest, particularly where a UMA has links to a brokerage
  • Non-compliance with binder fee limits or justification requirements
  • Failing to meet reporting and screening requirements under the Financial Intelligence Centre Act (FICA)

These challenges usually stem from gaps in governance or insufficient monitoring – areas that can be strengthened through proactive compliance planning.

“In a COFI-driven environment, compliance for UMAs will be measured not just by processes, but by the quality of data, governance and outcomes they deliver.”

Alicia Kamfer
Pretoria Area Manager and Compliance Officer, Masthead

Preparing for COFI and the Omni-Risk Return - The upcoming COFI Bill and Omni-RR are set to bring significant changes to the insurance industry and UMAs will be directly affected.

COFI will replace and consolidate existing legislation in a phased manner, including those that apply to UMAs, such as the FAIS Act and the Long-Term and Short-Term Insurance Acts. This reform aims to harmonise the current legislative framework and create a single, principles-based regulatory system focused on market conduct and fair outcomes. While the exact implementation date of COFI is not yet confirmed, many in the industry believe it will take effect sooner rather than later, giving UMAs good reason to start preparing now.

COFI will also raise expectations around governance, reporting and fair value assessments. Both insurers and their delegated partners will have to show how their operations deliver fair outcomes for customers throughout the product lifecycle.

Meanwhile, the Omni-Risk Return will significantly expand data and reporting requirements across the insurance value chain. Insurers will depend heavily on UMAs to provide accurate, detailed information for their submissions. This means UMAs will need to maintain strong data management processes and be able to demonstrate that their systems produce complete, reliable and accurate data.

UMAs can also view this shift as a positive opportunity – the increased focus on data can enhance both business and compliance outcomes. When data management is integrated with good governance, it strengthens oversight, improves decision-making and aligns compliance with effective conduct and fair customer outcomes.

Together, COFI and the Omni-RR represent a shift towards greater transparency, accountability and integration between insurers and their partners. UMAs that strengthen their compliance readiness now will be better equipped to meet these demands – and to maintain strong relationships with insurers that rely on them.

Strengthening governance and compliance - For UMAs, preparing for the future means embedding compliance into every part of their operations. Some practical steps include:

Strengthen governance structures: Establish a clear governance framework with defined responsibilities, documented policies and active oversight committees.

Proactively monitor and assess: Regular compliance monitoring and internal assessments can identify control gaps before they escalate.

Prioritise data integrity: UMAs should assess whether their systems can produce accurate data reports that meet insurer and regulatory standards.

Invest in people and culture: Compliance is not only about systems – it’s about behaviour. Regular training on conflicts of interest, TCF principles and claims handling standards helps build a strong compliance culture.

Maintain transparency with insurers: Open, accurate communication and detailed reporting build trust and make oversight smoother. Strong insurer-UMA partnerships will become even more important under COFI.

By focusing on these areas, UMAs can demonstrate a mature compliance culture that supports both operational excellence and regulatory alignment.

The way forward for UMAs - UMAs are vital partners in delivering efficient and specialist insurance services. As COFI and the Omni-RR reshape the industry, the ability to demonstrate strong governance, accurate reporting and a culture of compliance will become key differentiators.

By strengthening compliance today, UMAs not only prepare for new regulatory requirements but also position themselves as trusted, credible partners to insurers in an evolving regulatory landscape.

20 Years of Covering the Gaps That Matter

At X’S Sure, we believe insurance should feel lighter. That’s why, for two decades, we’ve been specialising in Value-Added Products (VAPS) that remove the unexpected excess burden — on vehicles, buildings, and contents. Our solutions are designed to give clients peace of mind when life happens. With our trusted broker network and direct client division, we’ve built a reputation for being innovative, reliable, and always one step ahead.

XS Sure (Pty) Ltd is an authorised financial service provider, FSP number 21101.

Get a quote now

Dashboard mockup