What Is a Certificate of Insurance? A Plain-English Guide
Inori Team
COI Compliance Experts
If you manage commercial properties, hire subcontractors, or work with vendors, you have almost certainly encountered a Certificate of Insurance. But what exactly is it, why does it matter, and what should you look for when you receive one?
This guide breaks it all down in plain English — no insurance jargon required.
What Is a Certificate of Insurance?
A Certificate of Insurance (COI) is a standardized document that proves a business or individual has active insurance coverage. It summarizes the key details of one or more insurance policies — including the types of coverage, policy limits, effective dates, and the parties involved.
Think of it as a snapshot of someone's insurance portfolio. It does not modify the underlying policy, nor does it grant any coverage rights. It simply provides evidence that coverage exists at the time the certificate was issued.
COIs are issued by an insurance agent or broker on behalf of the insured party. The most common format in the United States is the ACORD 25 form, maintained by the Association for Cooperative Operations Research and Development (ACORD).
Who Needs a Certificate of Insurance?
Almost every business relationship that involves risk requires a COI. Here are the most common scenarios:
Property Managers and Building Owners
If you own or manage commercial real estate, you need COIs from every vendor, contractor, and tenant operating on your property. A plumber working in your building without proper General Liability coverage could leave you exposed to a six-figure claim.
General Contractors
Before letting a subcontractor onto a job site, you need proof that they carry Workers' Compensation and General Liability insurance. If a sub's employee gets injured and the sub is uninsured, the general contractor may be liable.
Corporate Procurement Teams
Large enterprises require COIs from every vendor in their supply chain. Whether it's a janitorial service, an IT consultant, or a catering company, the procurement team needs to verify coverage before signing a contract.
Landlords and Lessors
Commercial leases almost always require tenants to carry insurance and name the landlord as an Additional Insured. The COI is the proof that this requirement has been met.
What Does a COI Contain?
The standard ACORD 25 form has several key sections. Understanding each one is critical for proper verification.
Producer Information
The producer is the insurance agent or broker who issued the certificate. This section includes their name, address, phone number, and contact information. If you need to verify the authenticity of a certificate, this is who you call.
Insured Information
The insured is the business or individual who holds the insurance policies listed on the certificate. Make sure the legal entity name matches the vendor you contracted with — a common mistake is accepting a COI from a parent company when you actually hired a subsidiary.
Types of Coverage
A typical COI lists several types of insurance:
| Coverage Type | What It Covers |
|---|---|
| Commercial General Liability (CGL) | Third-party bodily injury, property damage, personal/advertising injury |
| Automobile Liability | Injuries or damage caused by vehicles used for business |
| Umbrella/Excess Liability | Additional coverage above the limits of underlying policies |
| Workers' Compensation | Employee injuries and illnesses on the job |
| Professional Liability (E&O) | Errors, omissions, and negligence in professional services |
Policy Limits
Each coverage type has associated limits — the maximum amount the insurer will pay for a covered claim. Common limits include:
- Each Occurrence: The maximum payout for a single incident
- General Aggregate: The total maximum payout across all claims during the policy period
- Products-Completed Operations Aggregate: Coverage for claims arising after work is completed
- Personal & Advertising Injury: Coverage for non-physical harms like defamation
Certificate Holder
The certificate holder is the entity requesting the certificate — usually you, the property manager or general contractor. This section should include your correct legal name and address.
Additional Insured Status
Being named as an Additional Insured on someone else's policy gives you coverage under their policy for claims arising from their work. This is different from being a certificate holder. A certificate holder simply receives the document; an Additional Insured has actual coverage rights.
Important distinction
Being listed as the certificate holder does NOT make you an Additional Insured. These are separate designations. Always verify that the Additional Insured box is checked in the Description of Operations section or that an endorsement is attached.
Description of Operations
This free-text section often contains critical information: project names, contract numbers, Additional Insured language, and Waiver of Subrogation endorsements. Many compliance failures hide in this section — or rather, in the absence of required language.
How to Read a COI: Step by Step
When you receive a certificate, here is a systematic approach to verifying it:
-
Check the dates. Are all policies currently active? Expired certificates are the single most common compliance issue.
-
Verify the insured name. Does it match the legal entity you have a contract with? Watch for DBAs, subsidiaries, and name variations.
-
Review coverage types. Does the vendor carry all the types of insurance your contract requires?
-
Check the limits. Do the per-occurrence and aggregate limits meet your minimum requirements? A vendor with a $500K limit when you require $1M is not compliant.
-
Confirm Additional Insured status. If your contract requires it, verify that you are named as Additional Insured — not just as the certificate holder.
-
Look for required endorsements. Waiver of Subrogation, Primary and Non-Contributory status, and other endorsements should be noted in the Description of Operations.
-
Verify the producer. If anything looks suspicious, call the insurance agent listed on the certificate. Fraudulent COIs are more common than you might think.
Common Mistakes When Reviewing COIs
Even experienced compliance professionals make these errors:
Accepting Expired Certificates
Policies expire. Certificates are point-in-time documents. A certificate from six months ago tells you nothing about today's coverage status. You need current certificates and a system to track expirations.
Confusing Certificate Holder with Additional Insured
As mentioned above, these are fundamentally different. Being a certificate holder gives you the right to be notified of policy changes. Being an Additional Insured gives you coverage. Most contracts require both.
Ignoring the Description of Operations
This section is where specific endorsements and project references live. Skipping it means you might miss that the Waiver of Subrogation applies only to a different project, or that the Additional Insured endorsement has restrictions.
Not Tracking Aggregate Limits
A vendor might have a $2M General Aggregate limit, but if they have already had $1.5M in claims this year, there is only $500K left for your potential claim. While you cannot see the remaining aggregate from a COI alone, understanding how aggregates work helps you set appropriate requirements.
Manual Tracking with Spreadsheets
The average property management company tracks hundreds or thousands of vendors. Spreadsheet-based tracking is slow, error-prone, and cannot scale. By the time you finish reviewing this month's certificates, new ones are already expiring.
The Cost of Getting It Wrong
Non-compliance is not just an administrative inconvenience — it is a financial risk:
- A single uninsured claim on your property can cost $50,000 to $500,000+ depending on the severity
- Litigation costs for liability disputes average $75,000 even when you win
- Loss of insurance coverage — your own carrier may deny claims if you failed to verify vendor insurance
- Regulatory penalties in some jurisdictions for failing to maintain proper vendor compliance records
How Technology Is Changing COI Compliance
The traditional COI workflow — receive PDF, open spreadsheet, manually check each field — is being replaced by AI-powered verification. Modern platforms can:
- Extract data from any COI format in seconds using computer vision
- Apply compliance rules automatically against your specific requirements
- Track expirations and send automated renewal reminders
- Provide audit trails for every compliance decision
- Scale from 10 vendors to 10,000 without adding headcount
See AI-powered COI verification in action
Inori reads, extracts, and verifies every COI field in under 30 seconds. Try it free.
Key Takeaways
- A COI is proof of insurance, not insurance itself
- The ACORD 25 is the standard format in the U.S.
- Always verify dates, limits, Additional Insured status, and endorsements
- Certificate holder and Additional Insured are not the same thing
- Manual tracking does not scale — technology is essential for modern compliance programs
- The cost of non-compliance far exceeds the cost of getting it right
Whether you manage 10 vendors or 10,000, understanding what a Certificate of Insurance contains — and what to look for — is the foundation of any compliance program. The next step is building a system that makes verification consistent, scalable, and automatic.
That is exactly what Inori was built to do.
Related Articles
Ready to automate COI compliance?
Start with our free COI checker — no sign-up required. Or try the full platform free.