The moment you discover that a vendor's insurance has expired - or that a COI on file reflects an expired policy - you have a time-sensitive compliance and legal problem that requires immediate, documented action.
Here's the protocol, in order of priority.
Step 1: Determine Whether the Policy or Just the Certificate Has Expired
Expired Vendor Insurance Response Protocol
A COI expiration does not necessarily mean the underlying policy has lapsed. Certificates are issued at a point in time and reflect policy terms as of that date. A policy may have been renewed without the vendor sending you an updated certificate.
Two scenarios:
Scenario A (less severe): The policy renewed, the vendor forgot to send a new certificate. The coverage is current; the documentation is stale. Resolution: contact the vendor immediately and request a current certificate from their broker.
Scenario B (severe): The policy has actually lapsed. No renewal, no coverage. The vendor may or may not be aware. Any incidents that occurred during the lapse period are uninsured.
You cannot assume Scenario A. Until you have a current certificate with policy dates that cover the present, you must treat the situation as Scenario B.
Step 2: Notify the Vendor in Writing - Immediately
Send written notice (email with read receipt, or certified letter) to the vendor documenting:
- The date you identified the expired coverage
- The specific coverage(s) that have expired
- Your contractual requirement for continuous coverage
- A deadline for providing proof of current, compliant coverage (48-72 hours is reasonable for most situations)
This written record is important. If an incident occurs during the lapse, your documentation of notice establishes that you identified the gap and took immediate action. Silence after discovering a lapse creates the appearance of tacit acceptance.
Step 3: Evaluate Whether to Suspend Work
Review your contract. Most vendor agreements, service contracts, and leases contain language that:
- Requires continuous insurance coverage as a condition of the contract
- Gives you the right to suspend work pending proof of compliance
- Treats failure to maintain insurance as a material breach
If the vendor is performing physical work that creates liability exposure - on your property, with your customers, in your facilities - strongly consider suspending work until you have a current, compliant COI in hand.
The cost of a project delay is almost always less than the cost of an uninsured incident during a known coverage gap.
Step 4: Document Everything
Create a compliance file entry that records:
- The date the expiration was identified
- The date and method of vendor notification
- The vendor's response and timeline commitment
- Any work suspension decision and the rationale
- The date a compliant COI was received
- The date work resumed (if suspended)
This documentation is your audit trail. In the event of a future incident, an auditor, insurer, or court will want to see that your compliance program identified the gap and responded appropriately.
Expired Vendor COI Response Checklist:
- Determine if policy or just certificate has expired
- Send written notice to vendor within 24 hours of discovery
- Include deadline for submitting current COI (48-72 hours)
- Evaluate and decide on work suspension
- Document all actions with timestamps
- Upon receipt of new COI, verify it covers the current date with no gap
- Verify the renewal COI meets all current contract requirements (not just that it's current)
- If lapse occurred: consult your insurance broker about incidents during the lapse period
- Update your compliance file with resolution date
Step 5: When You Receive the New COI, Verify It Properly
Do not simply accept any current certificate as resolving the issue. Verify the new COI:
Coverage continuity: The new policy's effective date should be immediately after (or on the same day as) the prior policy's expiration date. A gap between the old expiration and the new effective date is a coverage gap - incidents during that gap are uninsured.
Coverage compliance: The new COI must meet all current contract requirements, not just the limits from the prior period. Vendors sometimes change carriers or reduce coverage at renewal. A new certificate that's current but non-compliant is not a resolution.
Endorsements: Verify that additional insured endorsements and waiver of subrogation language are reflected on the new certificate.
Step 6: Review Your Detection Process
A vendor's insurance expired without you catching it before it happened. That's a process failure. After resolving the immediate issue:
- How long had the coverage been expired before you discovered it?
- Was this vendor in a monitored expiration tracking system?
- Did the vendor receive renewal reminders before expiration?
- Was the expiration discovered proactively or because of an incident?
If the answer reveals monitoring gaps, address them. The next expiration may not come to light as cleanly.
Related Resources
- What Happens If a Vendor's Insurance Lapses
- Risks of Expired Certificate of Insurance
- Who Is Responsible for Verifying Contractor Insurance
- How Often Should You Collect COIs from Vendors
Bramble monitors every vendor's policy expiration and sends automated renewal requests - so your team finds out about lapses before they happen, not after. Book a demo at getbramble.com.