In partnership with brickbybrick, the #1 community for modern risk managers.
RiskStack
← All posts
Property ManagementCommercial Real EstateCOI Tracking

What Property Management Companies Get Wrong About COI Tracking

Multi-tenant complexity, vendor overlap, and tenant relationships make property management one of the trickiest verticals for COI compliance. Here are the five mistakes we see most often.

The RiskStack Team

Commercial real estate has a COI problem that nobody warned the industry about. As portfolios grew, as multi-location tenants became standard, as compliance scrutiny tightened, the simple "track our vendors' insurance" workflow turned into a hairy multi-dimensional mess.

We've spent enough time on calls with CRE risk managers to spot the patterns. Here are the five mistakes that show up most often — and what to do about them.

Mistake #1: Treating tenants and vendors as the same workflow

Tenants and vendors both need COIs. They have nothing else in common.

Tenants are long-term relationships. They sign leases. They have lawyers. They're sensitive to communication tone. A noncompliance email that goes out at the wrong time can become a lease dispute, a delayed renewal, or a phone call from the tenant's general counsel.

Vendors are transactional. They show up, do the work, leave. The communication tone can be more direct. The compliance bar is binary: are they covered today, yes or no.

A lot of CRE firms run both workflows through the same platform with the same automation rules — and end up sending vendor-style "we're holding your access" emails to a Fortune 500 tenant. That's the mistake.

The fix: pick a platform with workflow segmentation, communication review queues, and the ability to differentiate tenant and vendor processes.

Mistake #2: Letting the platform auto-send before you review

This is the Jones problem, and it's worth naming directly.

Some platforms — Jones being the most-cited example in customer interviews — automate outreach so aggressively that noncompliance emails go out before the property manager has a chance to review them. The intent is admirable: reduce manual work, accelerate compliance. The execution is a relationship grenade.

We've talked to risk managers who've left Jones specifically because of this. "Their auto-outreach sent noncompliance emails to our tenants before we could review them — damaged our landlord relationships," one CRE risk manager told us.

The fix: insist on review-before-send workflows. Automation is good. Automation that bypasses human judgment on tenant-facing communication is bad. TrustLayer's review queue model is the better pattern here — automated drafting, human approval, then send.

Mistake #3: Property-only tracking when you have multi-location tenants

A national tenant signs a lease in your Tampa property. They sign another in your Atlanta property. And another in Charlotte.

If your COI platform tracks per-property, you're asking the same tenant to upload the same policy three times. They will, eventually, refuse. Their risk team will email yours and ask why your system is so dumb. You'll have no good answer.

The fix: pick a platform that tracks at the tenant or entity level, with property-level visibility. The tenant uploads once. Your team sees compliance status across the portfolio. Everybody wins.

Mistake #4: Square-foot pricing that doesn't match how you think about risk

Some COI platforms price by total managed square footage. This sounds intuitive — more building, more risk, higher fee. In practice, it's misaligned with how property managers actually think about exposure.

Risk in CRE isn't measured in square feet. It's measured in tenants (lease counts), in vendors (counterparty count), in policy types (liability, auto, workers comp), and in entity structures (single property vs. portfolio LLCs).

A pricing model that doesn't match the unit you manage by creates friction at every renewal conversation. Your finance team can't predict costs as the portfolio shifts. The vendor's pricing logic feels arbitrary because it is.

The fix: prefer platforms with pricing that scales by certificate count, vendor count, or some other unit that maps to how you actually think about your business.

Mistake #5: Underestimating tenant communication quality

Generic communication from shared support inboxes is the silent killer of vendor and tenant trust. A platform that sends compliance reminders from "support@vendor.com" with messages that don't quite match the tenant's actual issue — wrong policy type cited, wrong renewal date referenced, wrong contact person — creates the impression that you, the property manager, don't have your act together.

Your tenants don't separate "the platform" from "the property management company." If the platform sends sloppy communication, your firm sent sloppy communication.

The fix: evaluate communication templates during the demo. Test the tone. Make sure your name, branding, and voice come through. Don't ship the platform's voice; ship yours.

Putting it together

CRE COI tracking is harder than it looks because the relationships are stickier, the structures are more complex, and the cost of a misfired email is higher than in transactional vendor management.

The good news: a few platforms in the category are designed with these dynamics in mind. Our comparison tool weighs vendor experience and workflow control as top criteria, which surfaces the platforms that handle CRE complexity reasonably well. Three minutes to fill out, shortlist at the end. Worth your time before the next renewal cycle.

Find your COI tracker in three minutes.

Eight questions, personalized shortlist. No sales calls.

Start My Comparison