Certificates of Insurance: What They Actually Prove and What They Do Not

In commercial transactions across virtually every industry — construction, real estate, professional services, transportation, manufacturing — one document gets exchanged more than almost any other: the certificate of insurance. Before a contractor sets foot on a job site, before a tenant signs a lease, before a vendor is approved, someone asks for a “cert.” The certificate arrives, someone glances at it, confirms the boxes appear to be checked, and the transaction proceeds.

What most people do not realize is that the document they just relied on does not actually guarantee any of the things they believe it confirms. A certificate of insurance is an informational snapshot — nothing more. It does not create rights. It does not amend the underlying policy. It does not obligate the insurer to notify anyone if the policy is canceled. And it can become inaccurate the moment after it is issued, with no obligation on anyone’s part to update it.

The gap between what a certificate appears to confirm and what it actually guarantees has left businesses, property owners, and project stakeholders exposed to losses they believed were covered. This article explains what certificates of insurance are, what they are not, and what parties should do instead of simply collecting certificates and hoping for the best.

What a Certificate of Insurance Is

A certificate of insurance (COI) is a standardized document, typically issued on an ACORD form, that summarizes certain information about an insurance policy. The most common version is the ACORD 25form, which provides fields for the named insured, the insurance company, the policy number, policy effective and expiration dates, types of coverage (general liability, auto, workers’ compensation, umbrella), and policy limits.

The certificate is issued by the insurance agent or broker — not by the insurance company itself. The agent extracts information from the policy and fills out the ACORD form, which is then provided to whoever requested it. The requesting party is identified on the certificate as the certificate holder.

The purpose of a COI is informational. It provides a convenient summary so that a third party can see, at a glance, that a particular entity has insurance. Property managers use them to confirm that tenants carry liability coverage. General contractors use them to verify that subcontractors have workers’ compensation and general liability policies. Project owners use them as part of contract compliance verification.

What a Certificate of Insurance Is Not

The critical information that certificates do not provide is far more important than the information they do. Every ACORD 25 form contains disclaimer language, printed directly on the form, that most recipients either do not read or do not take seriously. The standard ACORD 25 disclaimer states:

“This certificate is issued as a matter of information only and confers no rights upon the certificate holder. This certificate does not affirmatively or negatively amend, extend or alter the coverage afforded by the policies below.”

That disclaimer is not boilerplate filler. It means exactly what it says, and courts enforce it. A certificate of insurance is not:

• A contract between the certificate holder and the insurer. The certificate does not create any contractual relationship between the party receiving it and the insurance company. The insurer has no obligations to the certificate holder based on the certificate alone.
• A guarantee that coverage exists. The certificate reflects the information available at the time it was issued. Policies can be canceled, modified, or non-renewed after the certificate is generated, and the certificate becomes inaccurate without any automatic update to the holder.
• An amendment to the policy. Even if the certificate describes coverage in a particular way, the actual policy controls. If the certificate says the policy includes certain coverage but the policy itself does not, the policy governs.
• Proof of additional insured status.A certificate that lists a party as a “certificate holder” does not make that party an additional insured. Additional insured status requires an actual endorsement on the policy — a certificate cannot create it.
• A guarantee of cancellation notice.Although certificates sometimes include language about providing notice of cancellation, the ACORD 25 form itself states that the insurer’s obligation to provide cancellation notice is governed by the policy terms, not the certificate.

Certificate Holder vs. Additional Insured: A Critical Distinction

The confusion between these two designations is responsible for more uninsured losses in commercial transactions than perhaps any other single misunderstanding in the insurance industry.

Certificate Holder

A certificate holder is simply the party to whom the certificate was issued. The designation means that the insurance agent sent the informational document to that party. It confers no rights under the policy. If a claim arises, the certificate holder has no ability to file a claim under the policy, no right to be defended by the insurer, and no right to receive policy proceeds. Being a certificate holder is the functional equivalent of receiving a copy of someone else’s insurance summary — it tells what exists (or existed) but provides no coverage.

Additional Insured

An additional insured is a party who has been added to the insurance policy through an endorsement. The endorsement extends certain policy benefits to the additional insured — typically defense and indemnity for claims arising from the named insured’s operations. An additional insured has actual rights under the policy: the right to tender claims, the right to a defense, and the right to policy proceeds, subject to the terms of the endorsement.

The key point: additional insured status can only be created by the insurer through a policy endorsement. An agent cannot create it by writing “additional insured” on a certificate. A contractor cannot create it by promising additional insured status in a contract. Only the insurer, by issuing an endorsement that is part of the actual policy, can grant this status. For more on the distinction between named and additional insureds, see our article on named insured vs. additional insured.

How the Confusion Causes Harm

A property owner hires a roofing contractor. The contract requires the contractor to name the property owner as an additional insured on the contractor’s general liability policy. The contractor’s agent sends a certificate of insurance listing the property owner as the “certificate holder.” The property owner sees the certificate, assumes the requirement has been met, and allows work to proceed.

A worker is injured on the roof. The property owner is sued. The property owner tenders the claim to the contractor’s insurer, citing the certificate. The insurer responds: the property owner is a certificate holder, not an additional insured. No endorsement was ever issued. The insurer has no obligation to the property owner. The property owner is left to defend the lawsuit with its own resources — exactly the scenario the contract requirement was designed to prevent.

The ACORD Form’s Built-In Limitations

The ACORD 25 form was designed as a summary document, and its structure reflects that limited purpose. Several of its inherent limitations create risks for parties who rely on it as proof of coverage.

• Point-in-time accuracy only. The certificate reflects the policy information as of the date it was issued. It does not update itself. If the underlying policy is canceled the day after the certificate is issued, the certificate remains unchanged and continues to suggest active coverage.
• Summary, not detail. The ACORD form provides coverage types and aggregate limits but does not describe exclusions, endorsements, conditions, deductibles, or self-insured retentions. A certificate showing $1 million in general liability tells nothing about what is actually covered or excluded under that policy.
• No verification mechanism.There is no built-in process for confirming that the information on the certificate matches the actual policy. The certificate is filled out by the agent based on the agent’s understanding of the policy, and errors — whether inadvertent or intentional — are not uncommon.
• Cancellation notice limitations.While the certificate has a field for cancellation notice provisions, the 2009 revision of the ACORD 25 form removed the obligation for the agent to provide advance notice of cancellation to certificate holders. The current form states that cancellation notice will be provided “in accordance with the policy provisions,” which typically means the insurer has no obligation to notify certificate holders at all.

When Certificates Become Unreliable

Certificates can become inaccurate in several common scenarios, each of which exposes the relying party to uninsured losses.

Policy Cancellation for Non-Payment

A contractor obtains a certificate showing active coverage with a policy effective through the end of the year. Three months later, the contractor falls behind on premiums and the policy is canceled. The certificate still shows the original effective dates. No one notifies the certificate holder. When a loss occurs, the contractor has no coverage, and the party that relied on the certificate discovers the gap too late.

Policy Modification

An insurer issues a mid-term endorsement that reduces limits, adds exclusions, or changes the scope of coverage. The certificate, which was issued before the modification, does not reflect the change. The certificate holder continues to believe the original terms apply.

Fraudulent Certificates

Because certificates are issued by agents rather than insurers, and because the ACORD form is widely available, fraudulent certificates exist. Some unscrupulous parties produce certificates showing coverage that does not exist, listing fictitious policy numbers or carriers. While this is fraud, the party that relied on the fraudulent certificate may have little practical recourse, particularly if the party that produced it is insolvent or has disappeared.

California-Specific Considerations

California law adds several layers of complexity to the certificate of insurance landscape.

Contractor Licensing and Insurance Requirements

California Business and Professions Code §7125 requires licensed contractors to maintain workers’ compensation insurance (unless they have no employees and file an exemption). The CSLB tracks workers’ compensation status, and a contractor’s license can be suspended if coverage lapses. This provides a level of verification for workers’ compensation that does not exist for other coverage types.

However, California does not require contractors to carry general liability insurance. Many do, and many contracts require it, but there is no licensing requirement. A certificate showing general liability coverage for a contractor is not backed by the same regulatory framework that supports the workers’ compensation requirement.

Commercial Lease Requirements

California commercial leases routinely require tenants to provide certificates of insurance naming the landlord as an additional insured. The lease may specify minimum coverage limits, required coverage types, and deadlines for providing certificates. But the lease requirement itself does not create additional insured status. If the tenant provides a certificate but the tenant’s insurer never issues the additional insured endorsement, the landlord is not protected — regardless of what the lease says.

California Insurance Code §384

California Insurance Code §384 addresses certificates of insurance and provides that a certificate “shall not be construed to amend, extend, or alter the terms of any insurance policy.” This codifies what the ACORD disclaimer already says — the certificate is informational only. The statute reinforces that no party should rely on a certificate as a substitute for reviewing the actual policy and confirming endorsements.

Practical Verification Steps Beyond the Certificate

If certificates cannot be trusted as proof of coverage, what can a business or property owner do to actually verify that the required insurance is in place? The following steps provide substantially more protection than simply collecting a certificate and filing it away.

1. Request a Copy of the Additional Insured Endorsement

Do not accept a certificate that lists an entity as an additional insured without seeing the actual endorsement. The endorsement is the document that creates the coverage rights. Ask the contractor, tenant, or vendor to provide a copy of the endorsement itself — not just the certificate. Compare the endorsement language to your contract requirements. Some additional insured endorsements are narrow (covering only “ongoing operations”) while others are broader (covering both ongoing and completed operations). The endorsement, not the certificate, determines the scope of protection.

2. Contact the Insurer Directly

Call the insurance company (not just the agent) and confirm that the policy is active, that the named insured is correct, and that the additional insured endorsement has been issued. Insurers will typically confirm basic policy status to parties who can demonstrate a legitimate interest. This step catches fraudulent certificates and policies that have been canceled since the certificate was issued.

3. Require Renewal Certificates

A certificate issued at the start of a project or lease becomes stale. Require updated certificates at every policy renewal date. Build this requirement into the contract with specific deadlines: “Contractor shall provide a renewed certificate of insurance no later than 10 days after each policy renewal date during the term of this agreement.” Track renewal dates and follow up when certificates are not received on time.

4. Use Certificate Tracking Software

For businesses that manage multiple vendor or subcontractor relationships, certificate tracking software automates the process of collecting, verifying, and monitoring certificates. These platforms flag expired certificates, missing endorsements, and coverage that does not meet contractual requirements. While they add cost, they substantially reduce the risk of relying on outdated or inaccurate certificates.

5. Include Contractual Indemnification

Insurance requirements in contracts should always be paired with indemnification provisions. If the insurance fails — because the policy was canceled, the endorsement was never issued, or the coverage does not apply — the indemnification clause provides a contractual right to recover from the other party directly. Indemnification is only as good as the indemnifying party’s financial ability to pay, but it provides a second layer of protection when insurance verification breaks down.

6. Review the Actual Policy When Possible

For high-value contracts or ongoing relationships, request a copy of the relevant policy sections — not just the declarations page, but the coverage form, relevant endorsements, and exclusions. This is the only way to confirm that the coverage actually matches what the certificate summarizes and what the contract requires.

What Happens When a Certificate Proves Wrong

When a loss occurs and the certificate turns out to be inaccurate — the policy was canceled, the additional insured endorsement was never issued, or the coverage does not apply to the loss — the party that relied on the certificate faces the question of who to blame and where to seek recovery.

• Claims against the insurance agent.If the agent issued a certificate that contained inaccurate information, the agent may face an errors-and-omissions (E&O) claim. An agent who certifies that an additional insured endorsement has been issued when it has not, or who certifies active coverage for a canceled policy, has potentially committed professional negligence.
• Claims against the contracting party. The contract likely required the other party to maintain specified insurance. If they failed to do so, they have breached the contract. The certificate may have concealed that breach, but the underlying obligation remains.
• Estoppel arguments against the insurer.In some jurisdictions, courts have considered whether an insurer should be estopped from denying coverage when its agent issued a certificate that created reasonable reliance. These arguments are difficult to win, particularly given the ACORD disclaimer, but they are not impossible when the insurer or agent’s conduct was particularly egregious.

Common Scenarios Where Certificate Reliance Fails

Understanding how certificate failures play out in practice helps illustrate why verification matters.

• The subcontractor with lapsed coverage:A general contractor collects certificates from all subcontractors at project start. Six months into a 12-month project, a subcontractor’s policy is canceled for non-payment. The general contractor does not learn about the cancellation until an injury occurs. The injured party sues both the subcontractor and the general contractor. The general contractor expected to be an additional insured on the sub’s policy. The policy no longer exists.
• The tenant with inadequate limits: A commercial lease requires $2 million in general liability coverage. The tenant provides a certificate showing $2 million. But the certificate reflects the aggregate limit, not the per-occurrence limit. The per-occurrence limit is $1 million. A $1.5 million claim exhausts the per-occurrence limit and the landlord is exposed for the remainder.
• The vendor with a surplus lines carrier: A vendor provides a certificate showing coverage through a carrier the project owner does not recognize. The carrier is a surplus lines carrier not backed by the California Insurance Guarantee Association. If the carrier becomes insolvent, the certificate holder has no guaranty fund protection.

Sources & Further Reading

• IRMI (International Risk Management Institute)— IRMI has published extensive analysis on certificates of insurance, additional insured endorsements, and the limitations of the ACORD 25 form. Their publications are a primary resource for commercial insurance professionals navigating certificate issues.
• Sedgwick LLP— A California-based firm that has discussed the legal status of certificates of insurance in construction and real estate contexts, noting that “a certificate of insurance is not a substitute for verification of actual policy terms and endorsements.”
• Pillsbury Winthrop Shaw Pittman LLP— This firm has published guidance on contract insurance requirements and the distinction between certificate holder and additional insured status, particularly in construction and commercial lease transactions.
• ACORD (Association for Cooperative Operations Research and Development)— The organization that develops and maintains the ACORD 25 form, including the disclaimer language that governs the certificate’s legal effect. ACORD’s own guidance materials emphasize the informational nature of the certificate.
• Peckar & Abramson, P.C.— A national construction law firm that has analyzed the risks of certificate reliance in construction projects and published practical guidance on verifying contractor insurance compliance beyond the certificate.