A certificate of insurance (COI) and an insurance policy are fundamentally different documents that serve different purposes. The policy is the legal contract between the insured and the insurer - it defines what is covered, what is excluded, and under what conditions claims will be paid. The COI is a one-page summary document that provides evidence that a policy exists and describes its key parameters at a point in time.
A COI is a one-page summary providing evidence that a policy exists. The policy is the legal contract - dozens or hundreds of pages - that defines what is actually covered, excluded, and under what conditions claims will be paid.
- One-page summary document
- Shows limits, dates, and coverage types
- Cannot confirm exclusions or conditions
- Does not create or alter coverage
- Full legal contract (dozens of pages)
- Defines coverage, exclusions, conditions
- Endorsements modify actual terms
- The authoritative source for disputes
This distinction has real consequences for compliance. Organizations that treat a COI as sufficient proof of coverage - without understanding what it can and cannot confirm - are accepting compliance risk they may not recognize.
What an Insurance Policy Contains
An insurance policy is a detailed legal contract, often dozens or hundreds of pages long. It includes:
- Declarations page - the named insured, coverage types, limits, effective dates, and premium
- Insuring agreement - what the insurer promises to cover
- Exclusions - specific losses, situations, or parties that are not covered
- Conditions - requirements the insured must meet for coverage to apply (notice of claim, cooperation with investigation, etc.)
- Definitions - specific meanings assigned to key terms used throughout the policy
- Endorsements - amendments that modify, add, or remove coverage from the base policy
The policy is the authoritative source. When a dispute arises between an insured and an insurer, the policy language governs - not what was summarized on the certificate.
What a Certificate of Insurance Contains
A standard COI on the ACORD 25 form typically fits on a single page. It shows:
- The named insured and their address
- The issuing insurer(s)
- Policy numbers and effective dates
- Coverage types and limits by line of coverage
- Certificate holder information
- Checkboxes and descriptions for additional insured, waiver of subrogation, and similar provisions
- A description of operations field for additional notes
The ACORD 25 form itself contains explicit disclaimer language noting that the certificate "does not affirmatively or negatively amend, extend or alter the coverage afforded by the policies below." In other words: the COI summarizes coverage as the broker understands it at issuance. It does not change or guarantee coverage.
What a COI Cannot Confirm
This is where the compliance gap lies. A certificate of insurance cannot confirm:
Policy exclusions. A general liability policy may carry a total pollution exclusion, a professional services exclusion, or a subcontractor exception. None of these appear on the COI. Your contract may require coverage for the exact situations that are excluded in the policy.
Endorsement wording. When a COI notes "additional insured included as required by contract," it does not confirm which endorsement form was used, what scope of coverage it provides, or whether it matches what your contract requires. Only the actual endorsement text can answer that.
Conditions that affect coverage. A policy may contain conditions that, if not met, void coverage for a given claim. These are invisible on the certificate.
Coverage adequacy for your contract. The COI shows limits as numbers. It does not evaluate whether those limits satisfy your specific contractual requirements, which may include per-project limits, project-specific requirements, or carve-outs.
Accuracy at a future date. A COI is accurate as of the date it was issued. If the policy is later cancelled, amended, or endorsed differently, the existing certificate does not reflect those changes. Only updated certificates or direct policy access can confirm current status.
When You Should Request Policy Documents
For high-value or high-risk contracts, the appropriate standard is to request copies of the actual endorsements - not just the COI. This is particularly important for:
- Additional insured endorsements (confirm form number and scope)
- Waiver of subrogation endorsements (confirm applicable coverage lines)
- Primary and non-contributory endorsements (confirm the provision exists and applies correctly)
- Any coverage line where exclusions could affect your risk position
Requesting these documents is standard practice in construction contracting and commercial real estate. It should be equally standard in any significant vendor or service relationship.
The Compliance Implication
Most COI tracking programs rely entirely on certificates - they collect and store COIs and check dates and limits against requirements. This is better than nothing, but it leaves significant compliance gaps because the COI cannot speak to exclusions, endorsement accuracy, or conditions.
A robust contract-vs-COI compliance process starts with the COI as the initial document but escalates to policy documents for requirements that require confirmation beyond what the certificate can provide.
How Bramble Helps
Bramble reads your contracts to extract every insurance requirement, then compares those requirements against submitted COIs - flagging the gaps that are visible at the certificate level and identifying where the COI is insufficient to confirm compliance and deeper review is needed. This creates a tiered compliance picture rather than false confidence from a stacked pile of certificates.
Visit getbramble.com to see how Bramble builds real contract-vs-COI compliance intelligence.