Cut COI Turnaround 80%: Agency Request Playbook 2026
Key Takeaways
Certificate of insurance (COI) request handling is the highest-volume, lowest-margin administrative task in most commercial lines agencies—and the one most amenable to full automation.
P&C premiums: $1.07T written in 2024 according to the Insurance Information Institute 2025 Fact Book—the commercial accounts driving that volume generate COI requests constantly throughout the policy year.
An 80% reduction in per-request turnaround time is achievable within 30 days for agencies with AMS API access and a structured intake form.
The playbook below covers every step: intake standardization, AMS integration, automated generation, delivery tracking, and exception handling.
Agencies that implement this workflow report 40–65 hours per month reclaimed from non-revenue administrative work.
Certificate of insurance request handling is the operational choke point that scales with your book of business in the worst possible way: the more commercial accounts you write, the more COI requests you receive, and each one requires the same 20–30 minutes of CSR attention whether it's request number 1 or request number 300 that week.
One-sentence definition: COI request handling is the end-to-end workflow that receives a certificate request, verifies coverage, generates the ACORD 25 form, and delivers the document to the requester—a sequence that should complete in under 10 minutes but averages 2–4 hours at manual-workflow agencies.
The playbook below breaks the full workflow into five phases, each with specific implementation steps and the tools required to execute them.
Who This Is For
This playbook is for independent insurance agency owners and operations managers at commercial lines shops handling more than 8 COI requests per day.
Red flags: Skip this if your current volume is under 5 requests per day (manual processing remains cost-effective), if your carriers have already given your clients a self-service certificate portal, or if your AMS doesn't support API access for certificate generation (you'll need to upgrade before this playbook is executable).
Why Most Agencies Haven't Fixed This Yet
The math is obvious once you see it, but most agencies never see it. Ten COI requests per day at 25 minutes each is 4 hours of CSR time—half a full-time equivalent—spent on a task that generates zero new premium and that the right workflow executes automatically.
The reason it hasn't been fixed: each individual request feels manageable, and the cumulative cost is invisible until someone runs the numbers. According to Forrester's 2023 Insurance Agency Efficiency research, CSR administrative overhead consumes 34% of productive time at the average independent agency—with certificate processing consistently cited as the largest single category.
Additionally, according to the Big I 2024 Agency Universe Study, independent agencies handle the majority of commercial P&C premium in the US market. The COI burden falls almost entirely on independent shops, and most of them are still handling it manually.
Phase 1: Standardize Intake
The automation sequence can only start if there's a structured trigger. A COI request that arrives as "hey can you send a cert to ABC Contractors" in a text message cannot be processed automatically—it has to be transcribed, verified, and routed by a human before any automation can help.
Step 1.1: Deploy a web intake form. Build a form with required fields: insured name (or policy number), certificate holder name and address, holder delivery email, lines of coverage needed (GL, WC, auto, umbrella), additional insured name if applicable, and a rush flag.
Step 1.2: Create a dedicated email intake address. Set up a dedicated inbox (e.g., certs@youragency.com) monitored by an email parser. The parser extracts the structured fields from structured certificate request emails—many commercial clients have their own standardized request templates.
Step 1.3: Build a CSR shortcut form. For requests that still come in by phone, build a CSR-facing form that captures the same structured fields during the call. This replaces free-text notes with structured data the automation can consume.
Step 1.4: Communicate the intake channel to clients. Email your commercial accounts with the new process: "To request a certificate, use this link [form URL] or email [dedicated address]. Standard turnaround is under 15 minutes during business hours."
Phase 2: Integrate with Your AMS
The certificate generation step requires pulling live policy data from your AMS. This is where most automation projects stall—not because the integration is technically difficult, but because the agency hasn't documented which policy data fields need to be mapped to the ACORD 25 form.
Step 2.1: Map the required ACORD 25 fields to your AMS data model.
| ACORD 25 Field | Applied Epic Field | AMS360 Field |
|---|---|---|
| Insured Name | Contact.Name | Client.Name |
| Policy Number | Policy.PolicyNumber | Policy.PolicyNumber |
| Effective Date | Policy.EffectiveDate | Policy.EffectiveDate |
| Expiration Date | Policy.ExpirationDate | Policy.ExpirationDate |
| Carrier Name | Company.Name | Company.Name |
| Coverage Limits (GL) | Policy.CoverageDetail.Limit | Policy.GL.Limit |
Step 2.2: Test the API connection. Applied Epic's REST API and Vertafore AMS360's API both support certificate generation. Run 10 test certificate generations via API before going live to identify edge cases—policies with multiple carriers, mid-term endorsements, or umbrella layers that don't display correctly on the standard ACORD form.
Step 2.3: Build exception rules. Define which request types require CSR review before generation: non-standard endorsements, certificates with specific additional insured language that differs from the policy form, requests for canceled or lapsed policies.
Phase 3: Automate Generation and Delivery
With intake standardized and the AMS integrated, the automation sequence runs as follows:
Step 3.1: Intake form submission triggers the workflow. When a client submits the web form, the automation layer receives the structured data and initiates the sequence.
Step 3.2: AMS policy lookup. The system queries the AMS using the insured name or policy number to retrieve live policy data.
Step 3.3: Exception check. If the policy is lapsed, if the requested coverage limits exceed what the policy provides, or if the additional insured language requires custom text, the request is routed to the exception queue and a CSR is notified.
Step 3.4: ACORD 25 generation. For standard requests, the system populates the ACORD 25 template with live policy data and generates the PDF.
Step 3.5: Automated email delivery. The PDF is attached to an email sent to the requester's delivery address, with a copy filed against the policy record in the AMS. The insured receives a notification that a certificate was issued on their behalf.
Step 3.6: Delivery confirmation tracking. The automation layer monitors for email delivery confirmation. Bounced delivery alerts the assigned CSR within 5 minutes.
Worked Example: 340 Requests, 8-Minute Turnaround
A 9-CSR commercial lines agency in the Southeast handled an average of 17 COI requests per day—340 per month—with a manual workflow. After implementing this playbook, specifically by deploying a Typeform intake form, connecting it to their Applied Epic instance via the Certificate.Generate API endpoint, and automating PDF delivery via SendGrid, their turnaround dropped from an average of 3.5 hours to 8 minutes for the 84% of requests that were standard. The remaining 16% (non-standard endorsements, umbrella layering, disputed coverage limits) routed to the exception queue with full pre-populated data, reducing CSR handling time on those requests from 30 minutes to 8 minutes. Total monthly CSR time on COI processing dropped from 142 hours to 32 hours—110 hours reclaimed for renewal preparation and new business processing.
Phase 4: Handle Exceptions Efficiently
The 10–20% of COI requests that can't be automated fully still benefit from a structured exception workflow. The goal is to minimize the time a CSR spends on each exception, not to eliminate exceptions entirely.
Exception categories and handling:
| Exception Type | Typical Frequency | Manual Handling Time | Automated Pre-Fill Time |
|---|---|---|---|
| Lapsed policy | 3–5% of requests | 25–35 min | 8–12 min |
| Non-standard AI language | 5–8% of requests | 20–30 min | 7–10 min |
| Umbrella layer display | 4–6% of requests | 30–45 min | 10–15 min |
| Coverage limit mismatch | 2–4% of requests | 20–30 min | 8–12 min |
US Tech Automations handles the exception routing step—reading the request fields, running the exception checks against AMS data, and surfacing the right pre-populated form to the CSR—so the CSR starts from a data-complete record rather than a blank screen.
COI Workflow Performance Benchmarks
Before and after metrics are the clearest proof that a COI automation project is working. According to Forrester's 2023 Insurance Agency Efficiency research, agencies that automate certificate processing report measurable gains within the first 60 days. The table below shows the performance ranges agencies typically achieve after full deployment:
| Metric | Manual Workflow | Automated Workflow | Target After 90 Days |
|---|---|---|---|
| Average turnaround (standard requests) | 2–4 hours | 6–12 minutes | < 15 minutes |
| Automation rate (% handled without CSR) | 0% | 80–90% | ≥ 80% |
| Exception handling time (per request) | 25–40 minutes | 8–12 minutes | < 15 minutes |
| Monthly CSR hours on COI | 80–160 hours | 25–40 hours | < 40 hours |
| Delivery confirmation rate | 85–92% | 97–99% | ≥ 97% |
| Cost per certificate (labor + overhead) | $18–$32 | $4–$7 | < $8 |
COI automation ROI payback: 45–60 days at 10+ daily requests, based on labor-hour recapture at a $28–$35/hr fully-loaded CSR cost. According to McKinsey's 2024 Insurance Operations Benchmark, agencies that automate high-volume transactional workflows recoup implementation costs within two billing cycles on average.
Phase 5: Monitor and Optimize
Once the workflow is live, three metrics determine whether it's performing correctly:
Automation rate: What percentage of requests are completed without CSR intervention? Target: 80%+.
Average turnaround time: For automated requests, target under 15 minutes. For exceptions, target under 2 hours.
Delivery confirmation rate: What percentage of emails are confirmed received? Target: 97%+. Anything below that indicates deliverability issues worth investigating.
Review these monthly for the first 90 days after launch. The most common optimization: adding certificate holder addresses to the AMS as they come in, which reduces "holder not found" exceptions over time.
Tool Comparison: Applied Epic vs. AMS360 vs. Orchestration Layer
| Tool | Automation Capability | Setup Complexity | Best For |
|---|---|---|---|
| Applied Epic (native) | High—full API for cert generation | High—requires configuration or integration developer | Agencies with IT resources and full Applied Epic deployment |
| Vertafore AMS360 (native) | Moderate—built-in cert module | Moderate | Mid-size agencies already on AMS360 |
| Applied Epic + US Tech Automations | Highest—intake + AMS + delivery + exceptions | Moderate with platform assistance | Agencies wanting structured intake and orchestration without in-house dev |
| AMS360 + US Tech Automations | Highest | Moderate | Same as above for AMS360 shops |
When NOT to use US Tech Automations: If your agency has fewer than 5 COI requests per day and your AMS's native certificate module already handles generation adequately, adding an orchestration layer creates overhead that doesn't pay back at that volume. Applied Epic's native workflow tools are sufficient for agencies with a technical administrator who can configure them. The orchestration layer earns its cost when the intake channel is unstructured, when multi-AMS or multi-carrier environments create mapping complexity, or when exception routing requires logic the native AMS can't handle.
Decision Checklist: Are You Ready to Automate?
Before starting implementation, verify:
- AMS has API access enabled (Applied Epic or AMS360)
- API credentials are available and documented
- Current COI request volume is 5+ per day
- A web form can be deployed to capture structured intake
- Exception categories have been defined
- A CSR is designated as exception handler
- Delivery confirmation tracking is available (SendGrid or equivalent)
FAQ
What is a certificate of insurance request handling workflow?
It's the end-to-end process—from receiving a certificate request to delivering the ACORD 25 document—that an agency runs every time a client, contractor, landlord, or lender needs proof of coverage. Automation replaces the manual steps with a triggered sequence that runs without CSR intervention for standard requests.
How do I connect my AMS to an automated COI workflow?
Both Applied Epic and AMS360 provide API access for certificate generation. The connection requires API credentials from your AMS vendor and a workflow platform that can call the certificate generation endpoint. Most agencies use either an internal developer or a platform like US Tech Automations to build and maintain this connection.
Can I automate COI delivery for additional insured requests?
Yes, for standard additional insured language. Requests that require non-standard AI endorsements—specific legal language, blanket AI forms, or project-specific wording—should route to the exception queue for CSR review before generation.
What's the ACORD 25 form and why does it matter?
ACORD 25 is the standardized certificate of liability insurance form used across the US insurance industry. Most certificate requesters require the ACORD 25 format. Automated generation populates this form template with live policy data, eliminating the manual data entry step.
How long does it take to implement a COI automation workflow?
For an agency with AMS API access and an existing web form tool, the core workflow can be live within 2–4 weeks. The exception handling configuration typically adds another 1–2 weeks of testing. Full production deployment with monitoring takes 4–6 weeks from project kickoff.
Does this playbook work for agencies handling multiple carriers?
Yes, but multi-carrier schedules (e.g., GL from one carrier, WC from another, umbrella from a third) require additional mapping work in phase 2. The automation handles single-carrier policies more simply; multi-carrier certificates should be in the exception category initially and moved to automated as the mapping is validated.
What are the E&O implications of automated COI delivery?
Automation can reduce E&O exposure by creating a complete audit trail (intake record, AMS query, generation timestamp, delivery confirmation). The E&O risk increases if the automation delivers certificates with stale or incorrect policy data—which is why the AMS integration must pull live data on every request, not from a cached copy.
Further Reading
Automating certificate of insurance request generation — the technical generation step in detail
Review request automation for insurance agencies — apply the same automation thinking to post-renewal reviews
Review request workflow for agencies — complementary workflow in the client communication stack
COI workflow end-to-end — the broader workflow this playbook fits into
NAIC Reporting and Audit Trail Benefits
Automated COI workflows create a compliance benefit that manual workflows cannot match: a complete, timestamped audit trail for every certificate issued. Each record captures when the request was received, which policy data was queried (including the policy effective and expiration dates at query time), when the ACORD 25 was generated, and when the delivery email was confirmed received.
This matters for E&O protection and for regulatory compliance in states that require certificate issuance records. According to NAIC guidance on agency record-keeping, certificate issuance is a transactional record that should be retained for at least as long as the underlying policy—typically 5–7 years in most jurisdictions. An automated workflow that logs every step creates a defensible audit record without requiring a CSR to manually document each transaction. For agencies handling hundreds of certificates per month, that's a meaningful compliance improvement.
The Payback Timeline
For an agency at 10 COI requests per day, the automation infrastructure typically reaches payback within 45–60 days: the labor hours reclaimed exceed the implementation cost before the first quarter ends. After payback, every subsequent month is a net labor savings of 30–50 hours—hours that can be redirected to renewal preparation, cross-sell outreach, or new commercial account development.
The agencies that have already done this don't go back. The ones that haven't are paying the equivalent of a part-time employee to copy data between systems.
Ready to see what the full COI automation workflow looks like for your AMS and team size? Explore the platform for insurance agencies.
About the Author
Helping businesses leverage automation for operational efficiency.
Related Articles
From our research desk: sealed building-permit data across 8 metros, updated monthly.