Plain-English definitions for every insurance and compliance term you need to know.
A supplemental ACORD form used to provide additional information that does not fit in the standard fields of an ACORD 25 or other certificate forms.
A standardized ACORD form used as a commercial general liability application section that captures detailed risk information for underwriting purposes.
A standardized ACORD form used as a workers' compensation and employers' liability application that captures payroll, classification, and loss history data for underwriting.
A standardized ACORD form used as a commercial automobile application that captures vehicle schedules, driver information, and coverage details for underwriting auto liability and physical damage insurance.
A standardized ACORD form used as a commercial umbrella and excess liability application that captures underlying policy information and requested excess coverage details.
A standardized ACORD form used as a property insurance application section that captures building, location, and coverage details for commercial property underwriting.
A standardized ACORD form used as a commercial property loss notice to report property claims to insurers in a consistent format.
A standardized ACORD form used as a commercial automobile loss notice to report vehicle-related claims to insurers in a uniform format.
A standardized ACORD form used as a general liability and umbrella loss notice to report third-party liability claims to insurers.
A standardized ACORD form used as a supplemental schedule page to list additional locations, vehicles, or items that exceed the space available on primary application forms.
A standardized ACORD form used as a certificate of property insurance, providing evidence of property coverage to interested third parties such as lenders and lessors.
The standard Certificate of Liability Insurance form created by ACORD (Association for Cooperative Operations Research and Development), used across the U.S. insurance industry to provide evidence of liability coverage.
A standardized ACORD form used to provide evidence of property insurance for residential or smaller commercial properties, typically required by mortgage lenders.
A standardized ACORD form used to provide evidence of commercial property insurance coverage, including building, contents, and inland marine coverages.
A standardized ACORD evidence of commercial property insurance form used to provide proof of property coverage to mortgagees, landlords, and other interested parties.
A standardized ACORD form used as evidence of property insurance for inland marine and equipment floater coverages.
A standardized ACORD form used as an insurance binder that provides temporary evidence of coverage before a formal policy is issued.
A specialized ACORD application and evidence form used to document pollution liability insurance coverage for environmental risks.
A person or entity added to an insurance policy that receives coverage under that policy for claims arising from the named insured's operations, typically required in commercial contracts.
Additional Insured status granted to any party required by written contract via a blanket endorsement, as opposed to a nominal schedule listing each AI entity individually.
An insurance company licensed and authorized by a state's insurance department to write policies and transact insurance business within that state.
The distinction between insurance companies licensed and regulated by a state's insurance department (admitted) and those not licensed in the state but permitted to write coverage through surplus lines (non-admitted).
A CGL coverage grant that protects against claims alleging harm caused by the insured's advertising activities, including copyright infringement, misappropriation of ideas, and misleading advertising.
A field on the ACORD 25 GL section that specifies how the General Aggregate limit is calculated — per Policy, per Project, per Location, or Other — materially changing coverage capacity.
The maximum total amount an insurance policy will pay for all covered claims during a single policy period, regardless of the number of individual claims. Once the aggregate is exhausted, the policy pays nothing further until renewal.
An insurance company incorporated or organized under the laws of a country other than the United States that conducts insurance business within U.S. states.
A financial strength rating assigned by AM Best Company to insurance carriers, indicating their ability to meet ongoing policy obligations and pay claims.
The broadest commercial auto coverage designation (Symbol 1) that provides liability protection for all vehicles, whether owned, hired, borrowed, or non-owned, used in connection with the insured's business.
A residual market mechanism that distributes high-risk insurance applicants among all admitted carriers in a state, ensuring coverage availability when voluntary markets decline the risk.
The final premium determined after a policy audit adjusts the initial estimated premium based on actual exposure data such as payroll, sales, or subcontractor costs during the policy period.
A chronological record of all actions, changes, and decisions made within a compliance system, providing accountability and evidence for regulatory and legal inquiries.
The signature of the licensed producer or authorized representative who issued the Certificate of Insurance, appearing at the bottom of the ACORD 25 beneath the cancellation language.
Insurance that covers loss or damage to property belonging to others while it is temporarily in the care, custody, or control of the insured, such as a contractor holding a client's equipment.
A binder is temporary interim proof of coverage (typically 30-90 days); a policy is the issued contract with full terms and endorsements. Both bind legally but differ in scope and risk.
The authorization granted by an insurance carrier to an agent or broker to accept risks and issue policies on the carrier's behalf without prior approval for each individual risk.
A policy endorsement that automatically grants Additional Insured status to any party the named insured is contractually required to add, eliminating the need to schedule each Additional Insured individually.
An insurance arrangement that covers multiple properties, locations, or items under a single limit rather than assigning individual limits to each.
Physical harm, sickness, disease, or death sustained by a person, which triggers coverage under liability insurance policies.
The maximum an Auto Liability policy will pay in aggregate for all bodily injury claims arising from a single accident — the middle number in a split-limits structure.
The maximum an Auto Liability policy will pay for bodily injury to any single person in one accident — the per-individual cap in a split-limits structure.
An indemnification clause that requires one party to assume liability for all losses, including those caused solely by the other party's negligence.
The insurance broker or agent officially authorized to manage an insured's policies with a specific carrier, serving as the primary contact for certificate requests and policy changes.
A specialized property insurance policy that covers buildings and structures under construction, including materials, fixtures, and equipment, against damage or loss during the construction period.
Insurance coverage that replaces lost income and covers ongoing expenses when a business cannot operate due to a covered property loss.
The boilerplate disclosure in the CANCELLATION section of the ACORD 25 that describes the insurer's obligation — or lack thereof — to notify the certificate holder before policy cancellation.
A licensed insurance company created and wholly owned by a parent organization to insure the risks of that organization or its affiliates rather than purchasing coverage from third-party insurers.
Insurance coverage that protects goods and merchandise against loss or damage while being transported by land, sea, or air.
A wrap-up insurance program purchased and managed by the general contractor that provides coverage for all enrolled subcontractors on a construction project.
California's comprehensive consumer privacy laws giving residents the right to know, delete, correct, and opt out of the sale or sharing of their personal information. CPRA amended and expanded CCPA effective January 1, 2023.
The percentage of active vendor records that have a current, fully compliant Certificate of Insurance on file, used as a key performance indicator for risk management programs.
The date a Certificate of Insurance was issued by the producer. It represents the point in time at which the coverage information on the form was confirmed, not the policy period itself.
The entity that requests and receives a Certificate of Insurance, listed in the certificate holder section of the ACORD 25 form. A certificate holder has no coverage rights unless separately named as an Additional Insured.
The systematic process of collecting, reviewing, tracking, and maintaining Certificates of Insurance from vendors to ensure ongoing compliance with contractual insurance requirements.
A producer-assigned reference identifier for a specific Certificate of Insurance, used to track issuances, reissuances, and revisions within the agency management system.
A standardized document issued by an insurance agent or broker that provides evidence of insurance coverage, including policy types, limits, effective dates, and named parties.
A document issued by a local government authority certifying that a building complies with applicable building codes and is safe for occupancy.
A formal request to a vendor or their insurance broker to provide a certificate of insurance demonstrating that required coverage is in place.
A record of all insurance claims filed by or against a business over a specified period, used to assess risk and determine insurance terms.
Two distinct coverage triggers in liability insurance. Occurrence policies cover incidents that happen during the policy period regardless of when the claim is filed. Claims-made policies cover claims that are both made and reported during the policy period.
A numeric code assigned to a business or job function that categorizes its type of work for insurance rating purposes, determining the base premium rate.
A policy provision that penalizes the insured for underinsuring property by requiring them to carry coverage equal to a specified percentage of the property's value.
The percentage of vendors from whom at least one Certificate of Insurance has been received, regardless of whether the certificate meets all requirements.
Colorado's comprehensive privacy law — the third state after California and Virginia — notable for being the first to formally approve Global Privacy Control as a Universal Opt-Out Mechanism and for pairing with the Colorado AI Act.
A single dollar limit on an auto liability or other policy that covers both bodily injury and property damage per occurrence, without separate sublimits for each.
Insurance coverage for bodily injury and property damage arising from the business use of vehicles, including owned, hired, and non-owned automobiles. Shown on the Automobile Liability row of the ACORD 25 form.
Insurance coverage for liability arising from a contractor's work after the project has been finished and handed over to the owner.
The maximum total amount a commercial general liability policy will pay for all claims arising from the insured's completed work or products during the policy period.
Any discrepancy between the insurance requirements specified in a contract and the actual coverage reflected on a vendor's certificate of insurance or underlying policies.
The percentage of vendors in a portfolio that currently meet all applicable insurance requirements, serving as the primary metric for measuring compliance program effectiveness.
The ongoing process of monitoring vendor insurance status across a portfolio to ensure continuous compliance with contractual insurance requirements.
Connecticut's comprehensive privacy law, a hybrid of the CCPA and VCDPA models, notable for mandatory Universal Opt-Out Mechanism support and sunsetting the GLBA exemption for financial institutions in July 2026.
A consolidated insurance program purchased by the general contractor that provides coverage for all enrolled subcontractors working on a construction project under a single policy.
Insurance obligations specified within a contract that a party must fulfill as a condition of the agreement, typically including coverage types, limits, and endorsements.
Coverage under a Commercial General Liability policy for liability that the insured assumes through a contract or agreement, such as hold harmless or indemnification clauses in service agreements and lease contracts.
The legal distinction between the party that determines the purposes and means of processing personal data (controller) and the party that processes it on the controller's behalf (processor). Subprocessors sit one layer further down the chain.
The detailed review of a vendor's insurance policies and certificates to identify whether coverage types, limits, and endorsements satisfy contractual requirements.
Insurance that protects businesses against financial losses resulting from criminal acts such as employee theft, fraud, forgery, and computer crime.
A provision in a CGL policy stating that the insurance applies separately to each insured, allowing one insured to make a claim against another insured under the same policy.
A statutory window during which a controller that has allegedly violated a state privacy law can remediate the issue and avoid enforcement action. Cure periods vary by state, with several having already expired and others scheduled to sunset.
A sublimit within a CGL policy that covers property damage to premises rented to or temporarily occupied by the insured, also known as Fire Damage Legal Liability.
A contract required by every US state privacy law between a controller and any processor that handles personal data on its behalf, binding the processor to specific security, confidentiality, and subprocessor obligations.
A documented risk analysis required before processing activities that present a heightened risk to consumers — such as profiling, targeted advertising, sale of personal data, or processing of sensitive categories.
The front page of an insurance policy that summarizes the key details including the named insured, policy period, coverage types, limits, and premium.
The amount of money the insured must pay out of pocket before the insurance company begins paying on a covered claim.
Two mechanisms requiring the insured to bear a portion of a loss, differing in how the insurer's defense and payment obligations are triggered.
A formal communication sent to a vendor or their insurance producer identifying specific insurance compliance gaps that must be resolved to meet contractual requirements.
Delaware's comprehensive consumer privacy law effective January 1, 2025, with low applicability thresholds (35K consumers or 10K + 20% data-sale revenue), mandatory GPC recognition from 2026, and the full suite of consumer rights.
Free-text ACORD 25 section documenting additional insured status, waiver of subrogation, primary/non-contributory language, and endorsement forms — the most important narrative field on a COI.
An electronically generated and transmitted Certificate of Insurance that leverages digital workflows for creation, delivery, verification, and storage.
Insurance that protects the personal assets of corporate directors and officers against lawsuits alleging wrongful acts in their capacity as company leaders.
An insurance company organized and incorporated under the laws of the state in which it is writing insurance policies.
A formal request by an individual to a company to exercise their privacy rights — including accessing, correcting, deleting, or exporting their personal data — as provided by CCPA, CPRA, GDPR, and U.S. state privacy laws.
The insurer's obligation to provide legal defense for the insured against covered claims, which is broader than the duty to indemnify and is triggered by the allegations in a lawsuit, not the actual facts.
The maximum amount an insurance policy will pay for a single claim or incident. This is the most commonly referenced limit when setting insurance requirements for vendors and contractors.
The portion of an insurance premium that corresponds to the coverage period that has already elapsed, representing the insurer's revenue for risk assumed to date.
The date on which an insurance policy's coverage begins. Events occurring before this date are not covered, regardless of when the claim is filed or discovered.
The portion of a workers' compensation policy that covers the employer against lawsuits by employees who are injured on the job and seek damages beyond standard workers' compensation benefits.
The maximum amount an Employers' Liability policy will pay per employee for occupational disease claims that arise from cumulative workplace exposure rather than a single accident.
The aggregate maximum an Employers' Liability policy will pay for all occupational disease claims combined during a single policy period, regardless of the number of employees affected.
The maximum amount an Employers' Liability policy will pay for bodily injury by accident arising from a single workplace accident, regardless of the number of employees injured.
Insurance that protects employers against claims made by employees alleging wrongful employment practices such as discrimination, harassment, wrongful termination, and retaliation.
A written amendment to an insurance policy that modifies the terms, conditions, or coverage of the original policy. Endorsements can add, remove, or change coverage provisions.
Standardized alphanumeric codes such as CG 20 10, CG 20 37, and CG 24 04 that identify specific ISO policy endorsements referenced in the Description of Operations or policy schedule.
Specialized coverage for claims arising from pollution events, contamination cleanup, and environmental damage, which are typically excluded from standard CGL policies.
Any document that serves as proof that an insurance policy exists and provides specific coverage details, broader than a standard certificate of insurance.
A segment of the insurance industry comprising non-admitted carriers that provide coverage for risks the standard admitted market is unwilling or unable to insure.
A policy that provides additional liability limits above a specific underlying policy, following the same terms and conditions as the underlying coverage.
The technical distinction between excess liability (strictly follow-form over a specific underlying policy) and umbrella liability (may broaden coverage and drop down for claims the underlying does not cover).
A numeric factor applied to a business's workers' compensation premium that reflects its historical claims experience relative to the industry average.
A situation where multiple vendor insurance policies expire within a concentrated timeframe, creating a surge of compliance work and elevated risk of coverage gaps.
The date on which an insurance policy's coverage ends. After this date, no new claims are accepted under the policy unless an Extended Reporting Period has been purchased.
The systematic monitoring of insurance policy expiration dates to prevent coverage lapses and trigger timely renewal requests.
A provision in claims-made insurance policies that allows the insured to report claims for a specified period after the policy expires, also known as tail coverage.
A state-created insurance program providing basic property coverage to property owners in high-risk areas who cannot obtain insurance through the voluntary market.
Insurance that protects plan fiduciaries against claims alleging mismanagement of employee benefit plans governed by ERISA.
The maximum amount a commercial general liability policy will pay for property damage to premises rented to or temporarily occupied by the insured, caused by fire or related perils.
A policy cancellation effective on the original inception date, treating the policy as if it never existed and returning the full premium to the insured.
Florida's comprehensive privacy law, an outlier with ultra-narrow scope — applies only to companies with $1 billion+ global revenue that also operate ad networks, smart speakers, or large app stores. Effectively targets Big Tech.
An umbrella or excess liability policy structure where the excess policy adopts the same terms, conditions, and exclusions as the underlying primary policy it sits above.
Insurance purchased by a property owner or lender on behalf of a vendor or tenant who fails to maintain the required coverage, typically at a higher premium that is charged back to the non-compliant party.
An insurance company incorporated in one U.S. state that is authorized to conduct business in another U.S. state where it is not domiciled.
The process of identifying discrepancies between a vendor's actual insurance coverage and the contractual requirements, highlighting specific deficiencies that need resolution.
A metric that measures the average number of compliance deficiencies per non-compliant vendor, indicating the depth of compliance problems across a portfolio.
Insurance coverage that protects businesses responsible for storing, parking, or servicing customers' vehicles against liability for damage to those vehicles while in their care.
A specialized liability policy designed for businesses in the automotive industry that covers bodily injury and property damage arising from garage operations and the use of customer vehicles.
The maximum total amount an insurer will pay for all covered claims during a policy period, combining all occurrence payments under the general liability policy.
Commercial General Liability (CGL) insurance covers third-party claims for bodily injury, property damage, and personal/advertising injury arising from business operations.
A browser-level signal (Sec-GPC: 1 HTTP header) that communicates a user's preference to opt out of the sale or sharing of their personal information. Legally recognized as a valid opt-out mechanism under CCPA/CPRA.
A state-administered safety net funded by assessments on admitted insurers that pays policyholder claims when an admitted insurance company becomes insolvent.
Liability coverage for vehicles the insured rents, leases, or borrows (hired) or vehicles owned by employees used for business purposes (non-owned), typically added to a commercial auto or CGL policy.
A vehicle leased, rented, or borrowed by the insured for business purposes that is covered under the commercial auto policy's hired auto coverage designation.
A contractual clause in which one party agrees to assume liability and protect the other party from claims, losses, or damages arising from the work performed.
A contractual clause in which one party agrees to assume liability and protect another party from claims, losses, or damages arising from specified activities or circumstances.
A contractual provision in which one party agrees to compensate the other for losses, damages, or liabilities arising from specified circumstances, often required to be backed by insurance.
Indiana's comprehensive privacy law, one of the most recent to take effect (January 2026). Follows the VCDPA template with one notable carve-out — portability may be fulfilled in summary format rather than as full raw-data export.
A type of property insurance that covers goods, materials, and equipment in transit or stored at temporary locations away from the insured's primary premises.
An inland marine policy that covers materials, equipment, and fixtures during transit to and installation at a job site until the work is completed and accepted.
A financial stake in the subject of an insurance policy that must exist for the policy to be valid — without insurable interest, an insurance contract is considered void.
A temporary document that provides proof of insurance coverage until the formal policy is issued by the carrier.
The chief regulatory official of a state's insurance department, responsible for enforcing insurance laws and protecting consumers within the state.
A contractual specification defining the types of coverage, minimum limits, endorsements, and conditions a vendor must maintain to comply with their agreement.
The process of confirming that a vendor's insurance coverage meets contractual requirements by reviewing certificates, endorsements, and policy documents.
The full legal name of the entity covered by the policies listed on a Certificate of Insurance. It appears in the INSURED block of the ACORD 25 and must match the contracting party exactly.
A single letter A through F in the LTR column of the ACORD 25 that links each coverage row to a specific carrier listed in the INSURERS AFFORDING COVERAGE block.
An indemnification clause that requires one party to assume liability for all losses except those caused solely by the other party's negligence.
Iowa's minimalist consumer privacy law effective January 1, 2025 — the most business-friendly in the US alongside Utah, with no right to correction, no profiling opt-out, no DPIA mandate, and the longest cure period (90 days, permanent).
A state-mandated organization where multiple insurers collectively underwrite and share risks that individual carriers are unwilling to insure independently.
Insurance coverage for employers of maritime workers that provides protection against claims under the federal Jones Act, which allows injured seamen to sue their employers for negligence.
Kentucky's consumer privacy law effective January 1, 2026 — a Virginia-family regime distinguished administratively by the creation of a dedicated Office of Data Privacy within the Attorney General's office.
A life or disability insurance policy purchased by a business on a critical employee or owner whose death or incapacitation would cause significant financial harm to the company.
A period during which an insurance policy is not in effect due to expiration, cancellation, or non-payment of premium, leaving the insured — and parties relying on their coverage — exposed to uninsured risk.
An indemnification clause that requires a party to assume liability only for losses caused by their own negligence or fault.
Insurance coverage that protects businesses involved in the sale, service, or distribution of alcoholic beverages against claims arising from alcohol-related incidents.
A specialized insurance and reinsurance marketplace in London where syndicates of underwriters pool capital to insure complex and high-value risks worldwide.
A party designated on an insurance policy to receive claim payments for losses related to property in which they hold a financial interest.
The percentage of premium collected by an insurer that is paid out in claims, used as a key measure of underwriting profitability and risk quality.
A report from an insurance carrier that details all claims filed against a policy over a specified period, including claim dates, types, amounts paid, and reserves.
A custom-drafted insurance policy tailored to the specific needs of an insured, as opposed to a standard form policy issued by a rating organization.
Maryland's comprehensive privacy law — the most restrictive after California — notable for abandoning notice-and-choice in favor of a data-minimization-first model limiting collection to what is strictly necessary for the service.
A single Certificate of Insurance that covers multiple projects or locations under one document, typically used by large vendors who work across many properties for the same certificate holder.
A no-fault coverage within a CGL policy that pays for medical expenses of third parties injured on the insured's premises or as a result of the insured's operations, regardless of liability.
The maximum amount a commercial general liability policy will pay for immediate medical costs incurred by a third party injured on the insured's premises or due to the insured's operations, without requiring a liability determination.
A small-dollar General Liability sub-limit that pays immediate medical bills for third parties injured on the insured's premises, regardless of fault — typically $5,000 to $10,000 per person.
A no-fault coverage within a CGL policy that pays for medical expenses of third parties injured on the insured's premises or as a result of the insured's operations, regardless of liability.
The lowest amount an insurer will charge for a policy regardless of the insured's actual exposure level, ensuring the policy covers basic administrative and risk costs.
Minnesota's comprehensive privacy law effective July 31, 2025 — notable as one of the first state statutes to explicitly classify neural data (BCIs, EEG, neurotechnology) as sensitive data requiring opt-in consent.
An insurance policy that provides coverage for a single type of risk or coverage line, such as general liability only or workers' compensation only.
Montana's comprehensive privacy law, notable for the lowest consumer-count threshold (50,000) among VCDPA-template states — reflecting Montana's smaller population — and mandatory GPC recognition.
A lending institution or party that holds a mortgage on insured property and is designated on the property insurance policy to receive notice of changes and claim payments protecting their financial interest.
A unique five-digit identification number assigned to every insurance company by the National Association of Insurance Commissioners (NAIC), used to verify insurer identity, licensing status, and financial strength.
The person or entity specifically identified by name in an insurance policy as the primary policyholder with full coverage rights and obligations.
An insurance policy provision that covers only losses caused by specific risks explicitly listed in the policy, as opposed to open perils (all-risk) coverage which covers all risks unless specifically excluded.
Nebraska's consumer privacy law effective January 1, 2025 — remarkable for having NO applicability thresholds, capturing any controller that processes Nebraska residents' personal data, with mandatory GPC recognition.
New Hampshire's consumer privacy law effective January 1, 2025 — a Connecticut/Delaware-model regime with low thresholds (35K consumers or 10K + 25% data-sale revenue), mandatory GPC recognition, and a 60-day cure period.
New Jersey's consumer privacy law effective January 15, 2025, notable for a zero-percent data-sale revenue trigger, tiered escalating penalties, AG rulemaking authority, and a cure period that sunsets on July 17, 2026.
An insurance company not licensed by a particular state's insurance department but permitted to provide coverage through surplus lines channels.
A vehicle not owned, leased, or rented by the insured but used for business purposes, typically an employee's personal vehicle used for work-related tasks.
A provision requiring the insurer to notify designated parties (such as certificate holders or additional insureds) a specified number of days before cancelling an insurance policy, typically 30 days for standard cancellation or 10 days for non-payment.
A policy trigger where coverage applies to incidents that occur during the policy period, regardless of when the resulting claim is filed.
The maximum amount an insurance policy will pay for all claims arising from a single occurrence or event, regardless of the number of claimants or claims involved.
The two trigger mechanisms for liability insurance: occurrence policies cover incidents that happen during the policy period regardless of when the claim is filed, while claims-made policies cover claims filed during the policy period regardless of when the incident occurred.
A wrap-up insurance program purchased and managed by the project owner that provides coverage for all enrolled contractors working on a construction project.
Oregon's comprehensive privacy law, notable for covering non-profits, requiring a list of specific third parties in access responses, and banning the sale of precise geolocation data outright as of January 2026.
An automobile titled in the name of the insured entity, covered under Commercial Auto Liability as distinct from hired, non-owned, and scheduled auto classifications.
A consolidated insurance program purchased by the property owner that provides coverage for all enrolled contractors and subcontractors on a construction project under a single policy.
An insurance policy that bundles multiple coverage lines — such as general liability, property, and business income — into a single policy with one premium and one renewal date.
A review of an insured's payroll records conducted by the insurance carrier to verify the actual payroll used for calculating workers' compensation and general liability premiums.
An endorsement on a CGL policy that applies the General Aggregate limit separately to each construction project or job site, rather than sharing a single aggregate across all operations.
A designation on a Workers' Compensation insurance certificate indicating that the policy provides benefits as defined by the applicable state workers' compensation law, with no fixed dollar limit on statutory benefits.
A category of liability coverage under CGL policies that protects against non-physical torts such as libel, slander, false arrest, wrongful eviction, and copyright infringement in advertising.
The maximum amount a commercial general liability policy will pay for claims arising from offenses such as libel, slander, defamation, copyright infringement, wrongful eviction, or invasion of privacy.
A CGL coverage grant that protects against non-physical injury claims such as false arrest, malicious prosecution, wrongful eviction, slander, libel, and invasion of privacy.
The maximum total amount an insurance policy will pay for all covered claims during the entire policy period, representing the cumulative ceiling on insurer liability.
The unique identifier assigned by an insurance carrier to a specific policy contract. It is the primary key for verification calls and is distinct from the certificate number.
The span of time during which an insurance policy provides coverage, defined by its effective date and expiration date.
The process of extending or replacing an expiring insurance policy with a new policy period, ensuring continuous coverage.
A standard CGL policy exclusion that eliminates coverage for bodily injury, property damage, or cleanup costs arising from the discharge, dispersal, or release of pollutants.
A post-policy review conducted by the insurance carrier to verify the insured's actual exposures and adjust the premium based on real data rather than estimates.
An endorsement requiring the vendor's insurance to pay first (primary) and in full without seeking contribution from the certificate holder's own insurance policies (non-contributory).
A policy cancellation method where the unearned premium is returned to the insured in exact proportion to the remaining coverage period, with no penalty applied.
A licensed individual or firm authorized to sell, solicit, or negotiate insurance policies on behalf of insurers or insureds, commonly known as an agent or broker.
Insurance coverage that protects manufacturers, distributors, and sellers against claims alleging that a defective product caused bodily injury or property damage.
A coverage category under CGL insurance that provides protection for bodily injury or property damage arising from a product sold or work completed by the insured after it has left the insured's control.
Insurance coverage that protects professionals and their firms against claims of negligence, errors, or omissions in the delivery of professional services. Also known as Errors and Omissions (E&O) insurance.
Documentation provided by a vendor or their insurer that demonstrates active insurance coverage meeting specified requirements.
Physical injury to tangible property or loss of use of tangible property that has not been physically injured, covered under liability insurance policies.
Insurance that covers physical assets such as buildings, equipment, inventory, and other business property against damage or loss from covered perils.
ACORD 25 Workers' Comp checkbox indicating that owners, partners, or executive officers elected to be excluded from coverage under state-allowed self-exemption provisions.
The ability to confirm the current status of an insurance policy instantly through electronic data exchange, rather than relying on point-in-time certificate documents.
The proactive process of tracking policy expiration dates and ensuring vendors provide updated certificates before coverage lapses.
State-mandated insurance mechanisms that provide coverage to individuals and businesses unable to obtain insurance through the voluntary private market.
The elapsed time between when a compliance deficiency is identified and when it is fully resolved, measured as a key operational efficiency metric.
The date on a claims-made policy before which incidents are not covered, even if the claim is made during the current policy period.
An insurance pricing method where the final premium is adjusted after the policy period based on the insured's actual loss experience during that period.
A consumer right recognized by 18 of the 20 comprehensive US state privacy laws to decline being subject to automated decision-making that produces legal or similarly significant effects — such as denial of credit, housing, insurance, or employment.
The process of evaluating the potential risks associated with a vendor's operations to determine appropriate insurance requirements and compliance monitoring levels.
An organization of businesses with similar liability exposures that bands together to purchase insurance collectively, leveraging group buying power to obtain better coverage terms.
A liability insurance company owned by its members, formed under the federal Liability Risk Retention Act to provide coverage for similar risks shared by its member-owners.
A classification system that groups vendors or activities by their level of risk exposure, determining the stringency of insurance requirements applied to each group.
The process of shifting financial responsibility for potential losses from one party to another, typically through contractual insurance requirements, indemnification clauses, and Additional Insured endorsements.
An insurance arrangement where coverage continuously renews at regular intervals without requiring a new policy issuance, maintaining uninterrupted protection.
Under CCPA/CPRA, any disclosure of personal information to a third party for monetary or other valuable consideration — a definition broad enough to sweep in targeted advertising, data cooperatives, and most analytics integrations absent a service-provider contract.
A document attached to an umbrella or excess liability policy that lists all primary insurance policies the umbrella sits above.
A specific vehicle individually listed on a commercial auto policy by its vehicle identification number, with coverage applying only to those enumerated vehicles.
An insurance arrangement where specific properties, equipment, or items are individually listed on the policy with their own designated values and coverage terms.
A dollar amount that the insured must pay out of pocket on a claim before the insurance carrier has any obligation to respond, including the duty to defend.
Categories of personal data that receive heightened protection under state privacy laws — including race, health, biometric, genetic, precise geolocation, sexual orientation, immigration status, and children's data — typically requiring opt-in consent.
A policy cancellation method where the insurer retains a penalty from the unearned premium, resulting in a smaller refund to the insured than a pro-rata calculation would provide.
An auto liability limit structure that separates coverage into three distinct caps: bodily injury per person, bodily injury per accident, and property damage per accident.
An insurance policy written on pre-approved forms developed by a rating organization such as ISO, providing consistent and widely understood coverage terms.
A government agency within each U.S. state responsible for regulating the insurance industry, licensing insurers and agents, and protecting consumers.
An endorsement added to a CGL or separate policy that provides Employers' Liability coverage in monopolistic fund states where the state workers' compensation program does not include it.
The legal right of an insurer, after paying a claim, to pursue recovery from the party that caused the loss, stepping into the insured's shoes to seek reimbursement.
A contractual provision that limits the time period during which a party can make a claim for indemnification or require insurance coverage after the completion of work, typically ranging from 2 to 10 years.
A specially licensed insurance broker authorized to place coverage with non-admitted carriers when standard market options are unavailable.
Insurance coverage provided by non-admitted carriers for risks that the standard admitted market is unable or unwilling to insure, placed through specially licensed surplus lines brokers.
A numeric designation system used on commercial auto policies to indicate which categories of vehicles are covered under specific policy sections.
An extension purchased on a claims-made policy that allows the insured to report claims for a specified period after the policy ends, covering incidents that occurred during the policy period.
The formal process of requesting that another party's insurer assume the defense and indemnification of a claim based on Additional Insured status or contractual indemnification obligations.
Tennessee's consumer privacy law effective July 1, 2025 — unique in US privacy law for offering an affirmative defense to controllers who demonstrate conformance with the NIST Privacy Framework or comparable standards.
Texas's comprehensive privacy law, unique for having no revenue or consumer-count thresholds — it applies to any non-small-business operating in Texas — paired with aggressive enforcement by the Texas Attorney General.
The maximum total amount an umbrella or excess liability policy will pay for all covered losses combined during a single policy period, regardless of how many separate occurrences trigger coverage.
A fixed dollar amount the insured must pay on each umbrella claim before the umbrella policy responds. Uncommon on umbrella policies, which typically use a self-insured retention instead.
The maximum amount an umbrella or excess liability policy will pay for a single covered event above the underlying General Liability, Auto Liability, or Employers' Liability limits.
A liability insurance policy that provides additional limits above the insured's primary policies (CGL, Auto, Employers' Liability) and may also provide broader coverage for claims not covered by underlying policies.
A self-insured retention on an umbrella policy that the insured must satisfy before the umbrella responds to claims not covered by the underlying policies (drop-down claims).
The process by which an insurance carrier evaluates risk, determines coverage terms, and sets the premium for an insurance policy.
Utah's comprehensive privacy law — the most business-friendly among early state laws, with the highest applicability thresholds and narrowest set of consumer rights. No DPIA, no UOOM, no profiling opt-out.
The comprehensive process of onboarding, monitoring, and managing third-party vendors to ensure they meet contractual, insurance, and operational requirements.
A self-service web interface that allows vendors to upload insurance certificates, view compliance status, and respond to deficiency notices without direct interaction with the compliance team.
Virginia's comprehensive consumer privacy law — the second state law after CCPA — granting residents rights to access, correct, delete, and opt out of data sales. Served as the template for most subsequent state laws.
An endorsement that prevents an insurer from seeking reimbursement from a third party after paying a claim, protecting the third party from being sued by the insurer.
A type of insurance that provides wage replacement and medical benefits to employees who are injured or become ill as a direct result of their job, required by law in most U.S. states.
A consolidated insurance program that provides coverage for multiple parties on a construction project under a single policy, controlled by either the owner (OCIP) or general contractor (CCIP).
A consolidated insurance program that provides coverage for all parties working on a construction project under a single policy, rather than requiring each contractor to carry separate insurance.
A formal, documented information security program required by Massachusetts regulation 201 CMR 17.00 for any entity that owns or licenses personal information about a Massachusetts resident — regardless of where the entity is located.