A certificate of insurance (COI) is one of the most commonly requested documents in commercial procurement, yet it is also one of the most misunderstood. It is not the policy itself, and it does not grant coverage, but it does provide a snapshot of key insurance information that clients use to make risk decisions.
If you work in procurement, vendor management, construction, logistics, property management, or professional services, understanding a COI is essential. For a deeper policy and governance lens, resources like The Politics of Inclusive Development: Policy, State Capacity, and Coalition Building and Political Sociology: Structure and Process can also sharpen how you think about institutions, rules, and compliance structures.
In practical terms, a COI helps a client verify that a vendor has insurance in place, that the policy limits appear adequate, and that the insurer and policy period align with the job or contract requirements. It is a risk screening tool, not a substitute for reading the policy or endorsement language when the exposure is material.
What a Certificate of Insurance Actually Proves
A COI proves that, on the date it was issued, the named insured reported insurance coverage with certain carriers and policy limits. It is evidence of reported coverage, not independent proof that every risk is covered.
More specifically, a standard COI typically confirms:
- The named insured on the policy
- The insurance carrier and policy number
- The policy effective dates
- The types of coverage maintained
- The limits of insurance
- The certificate holder receiving the document
- Any special notices or remarks included by the producer
That means a COI is useful for confirming that a vendor has at least the appearance of active insurance. It is not, however, a guarantee that the policy will respond to a claim, nor does it usually confirm the breadth of coverage beyond what appears in summary form.
What a Certificate of Insurance Does Not Prove
This is where many procurement teams make costly assumptions. A COI does not prove that the insured has all required endorsements, exclusions, or contractual obligations satisfied.
A COI generally does not prove:
- That the policy covers the specific project or location
- That the client is actually an additional insured
- That waiver of subrogation applies
- That primary and noncontributory wording is in place
- That the policy has no relevant exclusions
- That the insurer has agreed to defend a particular claim
- That the policy is compliant with all contractual terms
It is possible for a vendor to present a COI showing general liability insurance while the actual policy contains exclusions that matter deeply to the project. For that reason, sophisticated clients treat the COI as a starting point, not the finish line.
Why Clients Ask for a COI in the First Place
Clients ask for a COI because they need a fast, standardized way to verify that a vendor is carrying insurance before work begins. In commercial procurement, time matters, and a COI gives the client a concise document they can review without requesting the full policy file every time.
The request usually serves one or more purposes:
- Risk transfer verification before work starts
- Contract compliance with insurance clauses
- Vendor qualification during onboarding
- Site access control for insured contractors
- Lender or landlord requirements
- Regulatory or internal audit documentation
The COI request is especially common when a vendor could cause bodily injury, property damage, financial loss, cybersecurity harm, or professional errors. In those cases, insurance becomes part of the commercial due diligence process.
When Clients Typically Ask for a COI
Clients usually ask for a COI before the vendor begins work. In many industries, no purchase order, service start, site access, or subcontract approval is granted until the certificate is received and reviewed.
Typical timing includes:
- At vendor onboarding
- Before contract execution
- Before a project kickoff
- Before issuing a purchase order
- Before granting access to a site, system, or facility
- Before approving a subcontractor
- Before lease commencement or tenant move-in
- Before high-risk events, such as installations or large deliveries
In practice, the earlier the request, the better. If insurance issues are discovered late, they can delay the project, create legal exposure, or require emergency revisions to the agreement.
Common Business Situations That Trigger a COI Request
Clients are more likely to ask for a COI when the vendor’s work increases the chance of loss or liability. The higher the exposure, the more likely the request becomes mandatory.
Common scenarios include:
- Construction and renovation
- Cleaning and janitorial services
- IT services and managed services
- Consulting and professional services
- Event production and staffing
- Freight, transportation, and warehousing
- Maintenance and repair work
- Security services
- Landscaping and snow removal
- Equipment installation
A procurement team may also ask for a COI even in lower-risk engagements if the client’s policies require it. Large enterprises often apply insurance requirements uniformly to all vendors to simplify governance.
Core Elements Clients Review on a COI
A COI is often short, but the details matter. Clients usually focus on several key fields to determine whether the vendor appears compliant.
1. Named Insured
The named insured should match the legal entity performing the work. If the contract is with ABC Services LLC, but the COI names a different company, that inconsistency needs investigation.
2. Insurance Carrier
Clients want to see a legitimate insurer with acceptable financial strength. Some organizations maintain approved carrier lists or minimum rating requirements.
3. Policy Numbers and Effective Dates
Policy periods must cover the work window. If the policy expires before project completion, the client may request updated certificates or evidence of renewal.
4. Coverage Types
Typical coverages might include:
- Commercial General Liability
- Workers’ Compensation
- Commercial Auto
- Umbrella/Excess Liability
- Professional Liability / Errors and Omissions
- Cyber Liability
5. Limits of Insurance
Clients compare policy limits against contract requirements. For example, a project may require $1 million per occurrence for general liability or higher limits for specialized exposures.
6. Certificate Holder
The certificate holder is the entity receiving the document, often the client, landlord, or project owner. This field helps identify who requested the certificate.
7. Additional Remarks
These remarks may refer to endorsements, waiver wording, project-specific references, or special instructions. However, remarks alone do not replace actual policy endorsements.
How to Read a COI Without Overrelying on It
A COI should be read as a summary document. The first step is checking whether the basic information aligns with the contract and job scope. The second step is identifying gaps that require further proof.
A practical review process looks like this:
- Confirm the legal name of the vendor
- Verify coverage dates overlap with the project period
- Compare limits to contractual requirements
- Look for the lines of coverage relevant to the work
- Check whether the certificate holder is named correctly
- Review any special notes for endorsements or exclusions
- Escalate discrepancies for clarification or policy review
The most important habit is to ask, “Does this certificate support the risk allocation in the contract?” If the answer is uncertain, the COI alone is not enough.
COI vs. Policy: The Difference Clients Need to Understand
A COI summarizes coverage. The policy contains the actual terms, conditions, exclusions, and endorsements.
Here is the distinction at a glance:
| Document | What It Does | What It Does Not Do | Best Use |
|---|---|---|---|
| Certificate of Insurance | Summarizes reported insurance information | Does not grant coverage or confirm all endorsements | Quick compliance check |
| Insurance Policy | Defines actual coverage terms | Not a summary; may be lengthy and technical | Definitive coverage analysis |
| Endorsement | Modifies policy terms | Not usually shown in full on a COI | Confirms special requirements |
| Insurance Binder | Temporary evidence of coverage | Not the final policy form | Short-term proof before issuance |
This distinction matters because contract disputes often arise when parties assume the COI itself creates rights. In most cases, the real rights come from the policy and endorsements, not the certificate.
What Clients Are Really Trying to Verify
When clients ask for a COI, they are rarely interested in the document for its own sake. They are trying to answer a business question: If something goes wrong, is there a viable insurance backstop?
Their underlying concerns often include:
- Who pays if the vendor causes damage?
- Is the vendor financially capable of absorbing a loss?
- Does the vendor have enough insurance for the exposure?
- Is the client protected through additional insured status?
- Can the client complete the project without unnecessary insurance risk?
In this sense, the COI is part of a broader commercial risk management workflow. It supports procurement decisions, but it should not be mistaken for a full legal risk review.
Common Insurance Types Seen on a COI
A certificate can list multiple lines of insurance, and the relevance of each depends on the work being performed.
Commercial General Liability
This is the most frequently requested coverage. It may help protect against third-party bodily injury, property damage, and certain advertising injury claims.
Workers’ Compensation
Clients often request this to confirm the vendor covers employee injuries arising out of employment. It is especially important where labor-intensive work is involved.
Commercial Auto
If the vendor uses vehicles for the project, clients may require auto liability coverage to address accident risk.
Umbrella or Excess Liability
Higher-risk engagements often need umbrella coverage to extend available limits above primary policies.
Professional Liability
This is critical for consultants, designers, engineers, IT professionals, and others whose services could lead to financial loss from an error or omission.
Cyber Liability
Technology vendors increasingly face requests for cyber coverage, especially where data, systems, or sensitive information are involved.
When the COI Is Usually Enough
In lower-risk transactions, a COI may be sufficient if the goal is simply to confirm that basic insurance is in place. Many routine vendor engagements never require policy review unless something unusual is flagged.
A COI may be enough when:
- The work is low-risk and non-invasive
- Contract requirements are standard
- Limits clearly meet or exceed minimum thresholds
- No special endorsements are required
- The relationship is small, routine, and operationally simple
Even then, buyers should remain alert to obvious mismatches. If the contract calls for additional insured status or a waiver of subrogation, the certificate should prompt verification rather than assumption.
When the COI Is Not Enough
There are many situations where the certificate alone cannot support the client’s risk decision. In higher-stakes commercial relationships, a deeper review is usually needed.
A COI is not enough when:
- The work is high-risk or high-value
- The contract contains detailed insurance requirements
- Additional insured status is mandatory
- Specific endorsements are required
- The project involves environmental, professional, or cyber exposure
- A prior claim or loss history raises concern
- The coverage wording on the COI is unclear or incomplete
In these cases, clients may request the actual endorsement forms, declarations pages, or excerpts from the policy. Sometimes they will also ask for an insurance broker or risk advisor to interpret the documents.
Why Certificates Become a Procurement Bottleneck
Many organizations treat COIs as administrative paperwork until a delay occurs. Then the certificate becomes a bottleneck because the vendor cannot start work, the contract cannot be signed, or the site cannot open.
Common causes of delay include:
- Vendor’s broker is slow to issue the certificate
- Legal name on the COI does not match the contract
- Coverage limits are too low
- Missing additional insured wording
- Expired policy dates
- Incorrect certificate holder information
- Coverage types do not match the scope of work
These issues are often avoidable with a clear certificate management process. Procurement teams that standardize requirements reduce friction and improve turnaround time.
What Makes a Strong Certificate Management Process
A good certificate workflow is more than just asking for a document. It creates a repeatable method for collecting, reviewing, tracking, and renewing certificates across the vendor base.
An effective process usually includes:
- Standard insurance requirements by vendor category
- A request template with required coverages and limits
- Validation of legal entity names
- Date tracking for expirations and renewals
- Escalation rules for noncompliant certificates
- Secure document storage and audit trails
- Periodic review of contract insurance language
This kind of process reduces the chance of accidentally approving a vendor that lacks adequate protection. It also helps procurement teams move faster because expectations are clear from the start.
Practical Examples of When Clients Ask for a COI
Example 1: Construction Contractor
A general contractor hires a subcontractor to install electrical systems on a commercial remodel. Before the subcontractor enters the site, the GC requests a COI showing general liability, workers’ compensation, and auto liability.
The COI helps confirm that the subcontractor is insured, but the GC may also require additional insured and waiver wording. Because construction exposure is high, the certificate is only one step in the approval process.
Example 2: Marketing Consultant
A company hires a marketing consultant for a brand refresh. The client asks for a COI because the contract requires professional liability coverage and general liability. The certificate is reviewed before the agreement is finalized.
In this case, the COI serves as a simple compliance check. If the consultant only performs advisory services, the risk is lower, but the client still wants evidence of financial backstop.
Example 3: Cleaning Vendor for a Retail Location
A property manager hires a janitorial vendor for nightly service. The landlord requests a COI showing general liability and workers’ compensation before the vendor is allowed on site.
This is common because cleaning work can create slip-and-fall, property damage, and employee injury exposure. The COI supports access approval and contract compliance.
Example 4: Software Implementation Firm
A business hires a software firm to configure its ERP system. The client requests a COI that includes cyber liability and professional liability, because the engagement involves data handling and implementation risk.
Here, the COI may lead to additional requests for policy details if the client wants confidence that the coverage aligns with technology-related exposures.
The Role of Additional Insured Status
One of the most important reasons clients ask for a COI is to confirm that they will be named as an additional insured when required. This status can extend certain protections under the vendor’s liability policy.
However, the COI alone usually cannot prove that the endorsement is actually attached. Clients often need to see the endorsement or written confirmation from the broker or insurer.
Important points to remember:
- Additional insured status is usually endorsement-based
- The COI may reference it, but that reference may be insufficient
- The exact wording matters
- The scope of additional insured coverage can vary greatly
If a contract requires additional insured protection, procurement should not rely solely on the certificate summary.
Why Endorsements Matter More Than the Certificate Summary
Endorsements are the legal mechanism that changes policy terms. A COI may mention an endorsement requirement, but the endorsement itself determines whether the protection actually exists.
This matters because:
- Some endorsements provide broader protection than others
- Some apply only to ongoing operations
- Some exclude completed operations
- Some are limited by contract language
- Some do not extend to all insured parties or all claims
A smart review process treats the certificate as a flag and the endorsement as the proof.
Common Mistakes Clients Make When Reviewing a COI
Even experienced teams can make avoidable errors when reviewing certificates. These mistakes often come from rushing or assuming the document says more than it does.
Common mistakes include:
- Assuming a COI guarantees coverage
- Ignoring mismatched entity names
- Accepting expired dates without renewal follow-up
- Overlooking insufficient limits
- Failing to request endorsements
- Confusing certificate holder status with additional insured status
- Not aligning insurance review with the contract language
Avoiding these mistakes can prevent downstream disputes. A few extra minutes at intake often saves hours of legal and operational cleanup later.
What to Do If the COI Looks Incomplete
If a certificate appears incomplete or inconsistent, the best response is to pause and ask for clarification. Many issues are administrative and can be corrected quickly by the broker.
Useful next steps include:
- Request a revised certificate
- Ask for the declarations page
- Request the relevant endorsement
- Confirm the correct legal name
- Recheck the policy period
- Escalate to legal or risk management if the exposure is material
The goal is not to reject every imperfect document. The goal is to make sure the insurance evidence actually supports the transaction.
A Simple Client COI Review Checklist
Before approving a vendor, clients can use a practical checklist to reduce risk.
- Does the COI name the correct legal entity?
- Are the policy dates current and aligned with the work period?
- Do the coverage types match the contract?
- Are the policy limits sufficient?
- Is the certificate holder named correctly?
- Are any required endorsements referenced?
- Is additional insured status confirmed separately if needed?
- Are renewal reminders in place for long-term engagements?
This checklist is especially helpful when multiple departments touch the same vendor file. Procurement, legal, finance, and operations should all work from the same standard.
Industry-Specific Expectations
Different industries treat certificates differently. The more regulated or higher-risk the environment, the more likely a COI will be required and scrutinized.
Construction
COIs are often mandatory before mobilization. Additional insured, waiver of subrogation, and umbrella requirements are common.
Property Management
Landlords and property managers often require certificates from tenants, contractors, and service vendors before site access.
Healthcare
Healthcare environments may require insurance proof from vendors due to patient safety, privacy, and operational risk.
Technology
Cyber, professional liability, and contractual liability issues often make a standard COI only part of the review.
Logistics and Transportation
Vehicle-related exposures make auto liability and cargo-related concerns important.
How COIs Fit into Broader Commercial Procurement
In commercial procurement, the COI is one document within a larger vendor onboarding ecosystem. It connects insurance, legal terms, finance controls, and operational access.
A mature procurement program typically aligns:
- Vendor due diligence
- Contract review
- Insurance requirements
- Certificate intake
- Renewal monitoring
- Claims escalation procedures
This alignment matters because risk is not isolated. A missed insurance issue can create a chain reaction affecting contracts, claims, operations, and reputation.
Using Policy Structure Thinking to Interpret Certificates Better
Interpreting a COI well requires some understanding of policy structure. A certificate is essentially a compressed summary of a much larger insurance arrangement, and that arrangement depends on insuring agreements, exclusions, conditions, and endorsements.
That is why policy literacy matters. Even a beautifully completed certificate can be misleading if the underlying policy structure does not match the client’s expectations.
For readers interested in the broader relationship between institutions, policy design, and interpretation, The Politics of Inclusive Development: Policy, State Capacity, and Coalition Building offers a useful lens on how systems and governance shape outcomes.
Featured Resources for Deeper Context
The following books can be useful if you want to strengthen your thinking around structures, institutions, and interpretation in complex commercial systems.
| Product | Preview | Price | Rating | Why It May Be Useful | Buy at Amazon |
|---|---|---|---|---|---|
| The Politics of Inclusive Development: Policy, State Capacity, and Coalition Building (Politics, Economics, and Inclusive Development) | ![]() |
$55.99 | 5 | Useful for understanding policy systems, institutional capacity, and how rules are applied in practice | Buy at Amazon |
| Political Sociology: Structure and Process | ![]() |
N/A | 5 | Helpful for thinking about organizational structures, processes, and how formal systems shape behavior | Buy at Amazon |
FAQs
What does a certificate of insurance prove?
A certificate of insurance proves that an insurer has reported coverage in force for a named insured during a specific policy period. It summarizes the type of coverage, limits, and carrier information, but it does not guarantee that every contractual requirement is met.
Why do clients ask for a COI before work starts?
Clients ask for a COI to confirm that a vendor has insurance in place before the vendor begins work. This helps with risk transfer, contract compliance, site access decisions, and vendor onboarding.
Does a COI prove I am an additional insured?
Not by itself. A COI may mention additional insured status, but the endorsement is what actually changes the policy. Clients usually need the endorsement or written confirmation to verify that the status applies.
When is the most common time clients request a COI?
Clients typically request a COI before contract execution, before work begins, before site access is granted, or before a purchase order is issued. In many industries, the certificate is required before mobilization or onboarding.
What should clients check on a COI?
Clients should check the legal name, coverage types, policy limits, effective dates, certificate holder details, and any references to endorsements or special conditions. They should also confirm the document aligns with the contract’s insurance requirements.
Is a COI enough to confirm coverage?
Sometimes, but not always. A COI may be enough for low-risk transactions with standard requirements, but it is often insufficient for high-risk projects or contracts that require specific endorsements and wording.
Final Takeaway
A certificate of insurance proves that a vendor has reported insurance coverage in place at a given time, but it does not prove the full scope of protection, endorsement status, or contract compliance. Clients typically ask for it before work starts because they need a fast, standardized way to assess risk and confirm basic insurance alignment.
The smartest commercial procurement teams treat the COI as an important checkpoint, not the final answer. When the exposure is meaningful, the certificate should lead to policy and endorsement verification, not replace it.

