Remote Work Coverage Gaps: What Your Clients' Policies Miss for Hybrid and Home Office Workers
Standard commercial policies were designed for employees who work at a fixed business location. When work shifts to a home office — partially or permanently — coverage gaps open across four distinct policy lines simultaneously: general liability, commercial auto, commercial property, and cyber. According to the Bureau of Labor Statistics American Time Use Survey (2023), more than 25% of employed Americans teleworked on an average workday. For most commercial policyholders, that shift was never reported to their carrier and never addressed in policy endorsements. The result is a collection of silent gaps that surface only at claim time. This guide walks through each gap category, the coverage mechanism that fails, and the endorsements or standalone policies that close the exposure.
Home Office General Liability: The Premises Gap
A standard commercial general liability (CGL) policy covers bodily injury and property damage arising out of the insured's operations at scheduled premises. The home of a remote employee is not a scheduled premise. If a business visitor — a client, vendor, courier, or subcontractor — is injured at an employee's home office during a business-related activity, the employer's CGL policy may disclaim coverage on grounds that the injury did not occur at an insured location.
The homeowner's policy is not a backstop. ISO Homeowners Form HO-00-03 contains a standard business pursuits exclusion removing liability coverage for bodily injury or property damage arising from business activities conducted at the home. The result: the injured party's claim sits in a gap between the employer's CGL and the employee's homeowners policy, and without specific action, neither policy responds.
The fix is an endorsement to the employer's CGL policy explicitly adding the employee's home as an insured location, or a blanket endorsement adding all employee home offices as covered premises. Some carriers offer this through a "temporary locations" endorsement; others require an explicit schedule amendment. Either approach works, but neither is automatic — it must be requested, quoted, and added before a claim occurs.
Business Owners Policies carry the same limitation: a home office is not a BOP-covered location unless specifically added. BOP forms typically cannot add residential premises as insured locations, which means the employer needs standalone CGL endorsement language — not a BOP extension — to close this gap.
Commercial Property: Equipment at Employee Homes
The commercial property policy covers business personal property at covered locations. Employee equipment used at a home office — laptops, monitors, docking stations, phones, and specialty hardware — is generally not covered under the employer's commercial property policy when located offsite at an employee's residence.
The homeowner's policy does not adequately substitute. ISO HO-00-03 limits coverage for business personal property on the residence premises to $2,500, and coverage for business property away from the residence is typically capped at $500. These sublimits rarely cover a single employee workstation, let alone a full employer-issued setup.
The solution is a commercial inland marine floater or equipment floater covering business personal property regardless of location. These policies are designed for property that moves between locations and can cover all employer-issued equipment at employee home offices on a blanket basis. The insured value should reflect current replacement cost — not book value. Equipment depreciates quickly on the balance sheet, and a claim settled at book value will not fund replacement.
For bring-your-own-device (BYOD) environments, a separate question arises: even though the employer may have no insurable interest in the employee's personal device, a lost or stolen personal device containing company data may trigger breach notification obligations and forensic response costs that fall on the employer's cyber policy regardless of who owns the hardware.
Non-Owned Auto Liability: The Most Commonly Omitted Coverage
When remote employees drive personal vehicles on business — to client meetings, a post office run, a supply pickup, or a co-working space — the employer faces auto liability exposure that a standard commercial auto policy does not cover without a hired and non-owned auto (HNOA) endorsement.
The personal auto policy (PAP) covers the vehicle owner, not the employer. If an employee causes an accident while driving a personal vehicle on a business errand and the injured party sues the employer, the employer's Business Auto Policy (ISO BAP) responds only if non-owned auto coverage — ISO Symbol 9 — is in force. A business auto policy without Symbol 9 provides no coverage for employee personal vehicle use. The employer faces direct liability exposure under the respondeat superior doctrine with no policy that responds.
For the commercial auto coverage structure, Symbol 9 (Non-Owned Autos Only) must be selected on the Business Auto Coverage Form, or a standalone HNOA endorsement (ISO CA 99 48) must be added to the CGL policy. For fully remote companies with no company-owned vehicles and no commercial auto policy, a standalone HNOA endorsement on the CGL is typically the right structure — it is lower premium than a full commercial auto policy and addresses the primary liability exposure directly.
HNOA is routinely omitted from small-business commercial placements because the question is not asked during the application or account review. The premium to add it is typically $500–$2,000 annually depending on employee count and business use frequency. The uninsured exposure is the full extent of any auto liability judgment the employer cannot cover out of pocket.
Cyber Risk: Home Network Exposure and Warranty Gaps
Remote employees connecting to corporate systems through residential WiFi networks present a materially different cyber risk profile than office-based workers. Home networks typically lack enterprise-grade firewall protection, are shared with personal devices running consumer software, and use consumer routers that may have default or unchanged credentials. A credential phishing attack, man-in-the-middle intercept, or malware infection that spreads from a personal device to a corporate system can enter through a home network endpoint.
Most cyber policies cover the employer's systems and data regardless of attack vector — a breach originating through a home network is covered in the same way as a breach originating through the office network. However, two specific issues arise for remote-heavy clients.
Sublimits on social engineering and employee error. The most common attack vectors in distributed work environments — credential phishing, pretexting, fraudulent wire transfer requests — are precisely the categories where cyber policies most frequently apply sublimited coverage. A policy with a $2 million aggregate limit may cap social engineering losses at $250,000. As detailed in Ransomware Coverage Gaps, sublimit exposure often produces a larger practical shortfall than outright coverage exclusions, and it is harder to explain to a client after the fact.
Network security warranties. Most cyber applications ask whether the employer uses multi-factor authentication (MFA), VPN, and endpoint detection and response (EDR) across all employee devices. If the employer cannot confirm these controls extend to home office endpoints — because the company relies on employee personal devices without centralized enforcement — the warranty response may not be satisfied. A carrier who discovers the actual control environment differs materially from what was represented at underwriting has grounds to dispute the claim. Verify the client's control posture extends to remote endpoints before binding.
For the full framework on evaluating whether a remote-heavy client's cyber policy structure is adequate, see Cyber Liability Coverage for Small Business.
Workers' Compensation: Multi-State Compliance for Distributed Teams
Workers' compensation covers injuries sustained by employees in the course and scope of employment. Courts in most states have consistently held that injuries at a home office during work hours are compensable workers' compensation claims — including trips and falls, ergonomic injuries, and equipment-related incidents.
Two practical issues follow. First, the employer must ensure their workers' compensation policy lists every state where remote employees work. Workers' comp is state-regulated; each state requires the employer to carry coverage for employees physically working in that state. A company domiciled in Texas with remote employees in California, New York, and Georgia that carries only a Texas workers' comp policy is uninsured for work injuries in those three states. Multistate remote workforces are a routine source of workers' comp compliance gaps, and many employers do not audit employee work locations annually as part of renewal.
Second, the employer cannot inspect and control a home office environment the way they would a company facility. OSHA applies general duty standards to home office work environments in most contexts. The inability to enforce ergonomic standards and physical safety controls increases claim frequency risk — particularly for employees working from makeshift setups — which should factor into experience modification rate projections.
Employment Practices Liability: Remote Conduct and Wage and Hour Risk
Remote work creates employment practices liability exposure that is distinct from traditional office EPLI risk. The most significant categories:
Digital conduct claims. Harassment and discrimination claims arising from behavior in video calls, messaging platforms, and email threads are increasingly common in remote environments. Most EPLI forms cover these claims under standard wrongful employment practices language.
Employee monitoring disputes. Employers who monitor home-based devices or track remote employee activity through screen capture, keystroke logging, or GPS tools face growing state-law exposure. Some states — including Connecticut, New York, and Delaware — require advance written notice of electronic monitoring. Failure to comply creates statutory liability regardless of whether the monitoring was for legitimate business reasons.
Wage and hour claims. Non-exempt remote employees who work irregular hours without proper timekeeping controls generate overtime liability that represents the most frequent EPLI claim category for remote-heavy employers. The critical point: most standard EPLI forms exclude wage and hour claims entirely. Wage and hour defense coverage — typically providing defense costs only, not damages — must be added by endorsement, and it remains sublimited (commonly $100,000–$250,000) on policies where it is available. The absence of this endorsement leaves the employer's most common remote-work labor law exposure completely uninsured.
Frequently Asked Questions
Does a homeowner's policy cover a home office for general liability purposes?
No. ISO Homeowners Form HO-00-03 contains a standard business pursuits exclusion that removes liability coverage for bodily injury or property damage arising from business activities at the home. A business visitor injured at an employee's home office is not covered under the homeowner's policy. The employer's CGL policy must specifically add the home office location to respond.
Is employer-issued equipment at employee home offices covered under a commercial property policy?
Not automatically. Standard commercial property policies cover business personal property at scheduled insured locations. The employee's residence is not a covered location without an endorsement or a separate inland marine equipment floater that covers property regardless of location.
Does a commercial auto policy cover employees who drive personal vehicles on business errands?
Only if the policy includes ISO Symbol 9 (Non-Owned Autos) on the Business Auto Coverage Form, or if a standalone HNOA endorsement is added to the CGL policy. A commercial auto policy without this symbol does not respond to employer liability claims arising from employee personal vehicle use.
Are remote employees covered by workers' compensation for home office injuries?
Generally yes — in most states, injuries at a home office during work hours are compensable workers' comp claims. The critical issue is multi-state compliance: the employer must carry workers' comp coverage in every state where remote employees are physically located, which is frequently not addressed when employees relocate or are hired in new states.
Does a cyber policy cover a breach that enters through a remote employee's home network?
Yes in most cases — cyber policies cover the employer's data and systems regardless of where the attack originates. However, social engineering and employee error sublimits commonly apply to the most frequent remote attack vectors, and network security warranties may be disputed if the employer's stated controls do not actually extend to home office endpoints.
What is the single most commonly omitted coverage for remote-heavy employers?
Hired and non-owned auto (HNOA). It is inexpensive, routinely skipped during placement because the question is not asked, and addresses an unambiguous employer liability exposure every time a remote or hybrid employee drives a personal vehicle on any business-related errand. CGL endorsements adding home office premises as insured locations are a close second.
Do EPLI policies cover wage and hour claims from remote employees?
Not by default. Standard EPLI forms exclude wage and hour liability — meaning unpaid overtime and misclassification claims, the most common labor law exposure for non-exempt remote workers, are typically not covered. Wage and hour defense-only coverage must be added by endorsement and is frequently unavailable or sublimited at $100,000–$250,000.
Arvori helps insurance brokers systematically identify and document remote work coverage gaps across commercial client accounts. Our platform surfaces policy-level exposures during account review, generates client-ready coverage gap summaries, and tracks endorsement status across your book of business. Learn how Arvori supports commercial lines brokers.