OSHACore+
Safety citations, penalties, and repeat or serious violations. Your clearest read on workers' comp loss exposure and safety culture. Repeat lockout/tagout findings, like the ones on this account, signal chronic hazard and future claims, and they justify a harder WC price.
Form 5500Core+
The annual benefit-plan filing. It shows how many employees are actually on the plan, a hard cross-check against stated headcount and payroll exposure, plus how the plan is funded and when it renews. Essential for group benefits, and a quiet tell on true company size.
UCC filingsCore+
Liens lenders file against business assets. They reveal secured debt, equipment financing, and how leveraged the company is. A spike in filings can flag financial stress or encumbered collateral, which matters for credit-sensitive lines, surety, and overall financial condition.
FMCSA · SAFERCore+
The federal motor-carrier record: DOT authority, fleet size, inspections, and crash history. A bakery distributing its own product carries auto exposure, and this is where you price it. Unverified authority means unknown fleet risk riding on the policy.
OFAC · restricted listsCore+
Treasury sanctions and watchlist screening. A hit is not a pricing question, it is a hard stop: binding a sanctioned entity is a regulatory violation. This is the compliance gate that clears an account to be written at all.
Sec. of StateCore+
Confirms the entity is real, active, and in good standing, with its registration date and structure. It guarantees the policy attaches to a valid named insured. A lapsed or inactive status is an immediate flag on exactly who you are covering.
Property records
Verifies the insured locations, owned versus leased, and building characteristics. This is the foundation of property and BOP exposure: total insured value, COPE data, and whether the address being rated actually exists and operates.
Adverse mediaCore+
Continuous news scanning for litigation, breaches, recalls, and leadership trouble. It surfaces emerging risk before it reaches structured filings. The active class-action data-breach matter on this account came from exactly this kind of signal.
Digital footprintCore+
Domain age and email authentication, SPF, DKIM, and DMARC. A 26-year-old domain with clean records reads as an established, lower-fraud operator, while weak configuration is an early cyber-hygiene warning.