Regulations

Cross-cutting external regulatory documentation — the laws, rules, and disclosure requirements that constrain how AskFlorence operates. Spans state insurance law, federal marketplace rules, FTC requirements, and tax authority guidance.

This section is for the external regulatory landscape AskFlorence must operate within. Distinct from the Compliance and Policies sections, which document the internal frameworks (SOC2, HIPAA, EDE) AskFlorence maintains as a company.

What lives here

• Anti-rebating laws — state-by-state rules on what can and cannot be offered to consumers as inducement
• Referral fee caps — state-specific caps on referral fees paid to unlicensed referrers
• FTC endorsement disclosures — disclosure requirements for influencer, affiliate, and partner channels
• State tier frameworks — how states group for compliance purposes (e.g., Tier 1/2/3 framework for affiliate program design)
• Commission sharing legality — when and how commissions can be shared with unlicensed entities
• CMS marketplace rules — federal regulations governing FFM agent/broker operations
• Tax authority guidance — IRC §36B, Form 8962, repayment rules, safe harbors that affect member outcomes

What does NOT live here

Internal compliance frameworks (SOC2, HIPAA, EDE) live in the Compliance section (e.g., SOC 2 Control Mapping, HIPAA Control Mapping). Internal organizational policies (Info Security, Access Control, Vendor Management) live in Policies. Dated decisions made in response to regulatory questions are typically captured as an ADR.

Documents

No documents yet — this section is a standing directory for future regulatory research.