Master Service Agreement (MSA) Definition & Compliance Guide

A master service agreement (MSA) is a contract that establishes the foundational terms and conditions governing an ongoing relationship between two parties - typically a company and a vendor, contractor, or service provider. Rather than negotiating a new contract for every individual project or statement of work, the parties agree upfront on the terms that will apply to all engagements under the relationship.

From an insurance compliance perspective, the MSA is where the critical work happens. It contains the insurance requirements, indemnification obligations, and hold harmless provisions that govern the entire relationship. Every certificate of insurance submitted under an MSA must be compared against those requirements.

What an MSA Typically Contains

Master service agreements are comprehensive documents. Standard sections include:

• Scope and services - general description of what types of services will be provided, with specific engagements governed by statements of work (SOWs) or purchase orders
• Payment terms - rates, invoicing schedules, and payment obligations
• Intellectual property - ownership of work product, licensing of background IP
• Confidentiality - non-disclosure obligations for both parties
• Indemnification - who indemnifies whom for what categories of loss
• Limitation of liability - caps on either party's total liability
• Insurance requirements - specific coverage types, limits, and endorsements the vendor must maintain
• Dispute resolution - arbitration, mediation, or litigation; governing law and venue
• Term and termination - duration of the agreement and conditions for termination

The insurance section is directly relevant to COI tracking and verification.

Insurance Requirements in MSAs

The insurance exhibit or section in an MSA typically specifies:

• Coverage types required (general liability, professional liability, workers' compensation, commercial auto, cyber liability, etc.)
• Minimum limits for each coverage type
• Required endorsements (additional insured, waiver of subrogation, primary and non-contributory)
• Certificate delivery obligations - when certificates must be provided (at contract execution, annually, upon renewal)
• Notice of cancellation requirements
• Minimum insurer financial rating requirements (commonly A- or better from A.M. Best)

These requirements apply throughout the relationship - not just at signing. A vendor who was compliant at MSA execution but whose policy has since lapsed, been reduced, or lost required endorsements is non-compliant even though the agreement is in force.

The Challenge of Ongoing Compliance Under an MSA

Unlike a one-time transaction where insurance is verified at closing or project start, an MSA establishes an ongoing relationship that may span years. During that time:

• Policies renew annually, and renewal terms may differ from original terms
• Coverage may lapse if the vendor fails to pay premiums
• Endorsements may not be renewed even when the base policy is
• The vendor may change insurers, changing policy numbers and potentially changing coverage terms
• Limits may remain static while contractual risk exposure grows

This creates a need for systematic, recurring COI tracking - not a one-time review at contract execution.

How MSA Insurance Requirements Differ from Project-Specific Contracts

Project-specific contracts tie insurance requirements to a defined scope and timeframe. Coverage must be in place for the project duration, and compliance is verified against a finite scope of work.

MSAs are different because:

• The scope is open-ended - any project or SOW can be initiated under the MSA
• The insurance must remain compliant continuously, not just at one point in time
• New project risks may exceed the original MSA insurance requirements over time
• The vendor relationship may evolve, with the vendor taking on higher-risk work than originally contemplated

Organizations that rely on an initial COI review at MSA execution without ongoing monitoring are accepting significant compliance risk.

What to Check When Verifying COIs Under an MSA

When a vendor submits a COI at MSA execution or on renewal:

1. Compare to the MSA insurance exhibit - not to a general checklist. The MSA's specific requirements govern.
2. Verify all required coverage types - do not assume that if general liability is present, other required lines are too
3. Check endorsements explicitly - additional insured, waiver of subrogation, and primary and non-contributory must be noted and applicable to your entity
4. Note expiration dates - calendar the renewal date and initiate follow-up before the policy lapses
5. Confirm carrier ratings - if the MSA specifies A- or better, verify via A.M. Best

How Bramble Helps

Bramble reads your MSA insurance exhibits and tracks submitted COIs against those requirements on an ongoing basis - flagging lapses, renewals that fail to meet requirements, missing endorsements, and limit changes that fall below contractual minimums. Compliance is not a one-time check; Bramble makes it continuous.

Visit getbramble.com to see how Bramble handles ongoing contract-vs-COI compliance for complex vendor relationships.