Building Code Compliance Checklist for Risk Managers

The call comes at 8 a.m.: A building under corporate oversight has failed inspection. Undiscovered code violations now trigger regulatory fines, raise concerns about insurance coverage, and draw board-level scrutiny. A single compliance gap can jeopardize asset value, stakeholder trust, and create liability exposure measured in millions.

For risk managers, building code compliance is far more than a construction-phase responsibility. When implemented correctly, it can create documented evidence of due diligence that becomes critical when regulators, insurance carriers, lenders, or legal teams seek accountability.

Beginning January 2025, OSHA penalties climb to $16,550 per serious violation and $165,000 for willful or repeated violations, highlighting how quickly compliance failures escalate into executive-level concerns.

This checklist walks through verification protocols across all project phases, organized around what risk managers actually need: clear requirements, inspection checkpoints, and documentation that supports governance.

Why Building Code Compliance Matters 

• Prevents regulatory fines and OSHA penalties
• Protects insurability and premium positioning
• Preserves asset valuation
• Creates defensible audit documentation
• Reduces litigation exposure

What building code compliance means

Building code compliance establishes the documented, defensible baseline that regulators, insurers, and legal teams use to evaluate whether an organization met its obligations. Codes establish minimum standards for construction, renovation, occupancy, maintenance, and safety. Jurisdictions adopt these through local legislative authority, with the 2024 International Building Code (IBC) and associated I-Codes serving as the foundation for regulatory requirements across the United States.

Risk managers frequently encounter this critical distinction between the IBC and the International Existing Building Code (IEBC):

• 2024 IBC applies to new construction.
• 2024 IEBC applies to repairs, alterations, changes of occupancy, additions, and relocations.

Because most corporate facilities involve existing assets, IEBC provisions typically govern required work.

Beyond code selection, compliance spans every building system. Structural elements require compliance with load and resilience standards. Fire safety and egress systems need specific configurations. Mechanical, electrical, and plumbing (MEP) installations follow performance standards. Americans with Disabilities Act (ADA) accessibility, energy efficiency, occupancy classifications, and maintenance protocols all fall under the compliance umbrella. These systems interconnect, which means a deficiency in one area frequently affects others.

Code adoption and enforcement vary by jurisdiction. Local authorities adopt different editions, modify requirements, or enforce them through separate agencies. Verifying which code version applies, and who enforces it, is essential groundwork before any project moves forward.

Why compliance matters for risk managers

Documented compliance becomes evidence of reasonable care when accountability is demanded. Safety is foundational, but for risk managers, the documentation layer determines whether an organization can defend its decisions during audits, claims investigations, and litigation.

When regulators audit a facility, when insurance carriers investigate a claim, when lenders review a portfolio, or when board members request status updates, documented compliance separates organizations that can demonstrate due diligence from those relying on informal explanations.

Non-compliance creates substantial financial and operational exposure. IBHS research shows that properties meeting enhanced building standards experience fewer claims and less severe damage when claims occur. That translates directly to premium calculations and coverage availability.

From an asset-value perspective, compliance can strengthen market performance. Buildings that meet current codes typically require fewer corrective capital expenditures, support more predictable maintenance planning, qualify for stronger insurance terms, and command higher valuations. In short, compliance is not just about avoiding penalties; it protects the investment itself.

Building code compliance checklist: Phase-by-phase verification

Compliance failures rarely happen all at once. They accumulate across project phases when verification steps get skipped or documentation falls through the cracks. The checklist below follows a construction project from initial planning through occupancy, with specific checkpoints at each stage.

Phase 1: Pre-design and planning

Capturing compliance concerns early is significantly less costly than discovering them during construction or post-occupancy. This phase sets the jurisdictional and documentation foundation for every decision that follows. The records established here often become the first documents requested during audits, claims investigations, or board reviews.

Jurisdictional code requirements

Start by confirming which code version applies (IBC for new construction, IEBC for existing buildings). Verify zoning regulations, land-use restrictions, and permitted occupancy classifications. Identify geographic risk overlays such as seismic zones, flood plains, or wildfire interface areas. Document applicable energy requirements under the International Energy Conservation Code (IECC) or ASHRAE Standard 90.1, as these will drive mechanical, envelope, and lighting performance criteria.

Documentation protocol

Establish written project scope aligned with AIA Design Development before authorizing design work. Architect engagement should include jurisdictional code research, mandatory code compliance sheets covering fire-resistance requirements, occupancy classifications, and existing strategy documentation.

Create a compliance file structure for each asset. Include jurisdiction-specific code documentation, third-party certification for air barrier compliance, and special inspection requirements per IBC Chapter 17. This baseline documentation becomes essential for evaluating change orders and responding to regulatory inquiries. When disputes surface months or years later, these early records often determine whether an organization can substantiate its governance protocols.

Phase 2: Design and documentation

This phase produces the code compliance sheets with fire-resistive rated construction, occupancy classifications, exiting analysis, and finalized accessibility drawings. Design errors compound quickly: a missed fire-resistance requirement in drawings becomes a costly change order once construction begins. Auditors and claims investigators scrutinize whether design documentation aligns with constructed conditions, making accuracy in this phase critical for substantiated compliance.

Structural system compliance

Structural systems need to comply with IBC structural performance standards, including load, resilience, and environmental hazard criteria. Key requirements include:

• Design foundations and framing for site-specific wind, seismic, and soil conditions
• Specify fire-resistance ratings per IBC Tables 601 and 602 for structural frames, bearing walls, floor assemblies, and shaft enclosures
• Reference UL-listed assemblies with design numbers on all drawings
• Document special inspections per IBC Chapter 17, including required materials testing and inspection methods for structural systems

The project’s lead Registered Design Professional (RDP) develops the special inspection program and incorporates it into the construction documents. These four verification areas establish the documented chain of accountability that carriers examine first when processing claims. Risk managers who confirm each element during design avoid the expensive corrections and liability exposure that incomplete structural documentation creates.

Fire safety and life safety systems

Life safety design encompasses means of egress, suppression systems, fire alarms, and fire-resistive protection. Requirements include:

• Maintain minimum corridor width of 36 inches and door clear width of at least 32 inches
• Design automatic sprinkler systems to National Fire Protection Association (NFPA) 13 standards, including hydraulic calculations
• Configure fire alarm and detection systems per NFPA 72 requirements
• Install emergency lighting, exit signs, and ensure reliable fire department access
• Obtain manufacturer certifications for all fire-rated assemblies and materials

These five components form a coordinated life safety strategy that requires consistency across architectural, mechanical, electrical, and structural plans. Fire marshals and underwriters assess each element against documented specifications during inspections and coverage reviews. Complete life safety documentation protects organizations from the coverage disputes and penalties that gaps in this critical area trigger.

Accessibility requirements

Accessibility standards under the ADA and applicable state codes govern path-of-travel, clearances, and usable spaces. Design teams must address these key requirements:

• Accessible routes: max 5% running slope (1:20) without ramps
• Ramps: max 1:12 slope, minimum widths of 36 inches (residential) or 48 inches (commercial/bariatric)
• Doors: minimum 32-inch clear width
• Restrooms: fixture placement, turning radii, and maneuvering clearances per ADA
• Parking: correct number of accessible spaces, van spaces, signage, and striping
• Service counters: height and reach range compliance
• Communication elements: accessible alarms and notification devices

Verifying each accessibility element during design prevents expensive corrections after construction. In ADA litigation or regulatory reviews, the documentation trail established during this phase demonstrates reasonable care and supports credible compliance claims.

Energy efficiency compliance

Energy code compliance covers envelope performance, mechanical system efficiency, and lighting power density. Compliance documentation must address:

• Specify building envelope R-values, glazing performance, and insulation levels appropriate to the climate zone
• Verify HVAC system efficiencies meet jurisdictional SEER, EER, or AFUE standards
• Calculate lighting power density per IECC or ASHRAE 90.1
• Document air leakage control for building envelopes

Important update: Under IECC 2021 and ASHRAE 90.1-2019, code officials, registered design professionals, or approved agencies must complete air barrier verification. This requirement introduces new documentation responsibilities for owners and design teams. Risk managers should incorporate these verification protocols into compliance tracking systems now, before jurisdictional adoption creates retrofit obligations for non-compliant facilities.

Mechanical, electrical, and plumbing systems

Rimkus building envelope experts can provide third-party verification for MEP system installations, with compliance documentation that meets jurisdictional requirements and supports long-term facility performance. Verification protocols must address:

• Ventilation rates per ASHRAE Standard 62.1-2022:
  • Offices: 5 CFM/person + 0.06 CFM/sq ft
  • Retail: 7.5 CFM/person + 0.12 CFM/sq ft
  • Classrooms: 10 CFM/person + 0.12 CFM/sq ft
• Configure electrical grounding and bonding per NFPA 70 Article 250
• Install plumbing backflow protection per International Plumbing Code (IPC) Chapter 6 and ASME standards A112.18.1
• Address fuel gas system requirements under the International Fuel Gas Code

Inadequate MEP system documentation is one of the issues Rimkus engineers encounter most frequently during failure investigations. Missing or incomplete MEP records complicate insurance claims and make compliance difficult to demonstrate after the fact. Complete MEP documentation during design creates the verification baseline that strengthens an organization’s position when claims and disputes arise.

Permitting and pre-construction review

Submit complete construction documents to the authority having jurisdiction for code review. Verify that plan review confirms every design element complies with applicable IBC and International Fire Code (IFC) sections. Obtain approved building permits before construction begins. Document permit numbers, approval dates, and conditions of approval. Retain approved permit documents and all code compliance documentation as the construction baseline for change order evaluation. This permit documentation becomes the reference point when questions arise about whether constructed conditions match approved designs.

Phase 3: Construction and on-site compliance verification

Paper compliance means nothing if constructed conditions do not match approved plans. Discrepancies, shortcuts, and undocumented changes become compliance failures here. Identifying issues before finishes conceal them is critical for controlling risk and cost.

Inspection protocol requirements

The building official or designee conducts IBC Section 110 inspections. IBC Chapter 17 outlines additional special inspections for structural systems, materials, and life safety components.

The goal is identify non-conforming work before concealment. Once contractors install drywall or pour concrete, remediation becomes far more expensive and disruptive. Inspection tracking protocols established during construction create contemporaneous documentation that proves invaluable during claims investigations or compliance audits years later.

Site verification checkpoints

• Foundation and structural frame inspections occur before concealment
• MEP rough-in inspections verify system installation
• Fire protection system inspections cover sprinklers, alarms, and detection equipment
• Egress pathway verification and emergency lighting installation address life safety
• Energy code compliance testing includes air barrier verification and insulation installation

Document any deviations or change orders with code compliance re-review. Address inspection findings with corrective action before moving to the next phase. Maintain architect oversight with documented site visit reports. These checkpoint protocols transform construction oversight from informal monitoring into audit-ready documentation.

Phase 4: Final inspection and occupancy authorization

Certificate of occupancy approval requires all trade permits to receive final inspection, complete construction verification, and confirmation that all building systems are operational. The certificate and supporting documentation establish the baseline compliance record that auditors, carriers, and legal teams reference during investigations.

Final verification protocol

• Electrical, plumbing, mechanical, and fire protection trades complete final inspections
• Building systems commissioning reports document functional performance testing
• The authority having jurisdiction issues the certificate of occupancy
• Operations and maintenance documentation transfers to facility staff
• As-built drawings reflect actual constructed conditions
• Material certifications and warranty documentation establish manufacturer accountability
• Final special inspection reports cover structural and fire protection systems

Completing each verification step creates the comprehensive compliance record that protects organizational interests during audits, coverage renewals, and potential litigation.

Compliance documentation archive

The final documentation package should include:

• Building plans with all approved revisions
• Complete inspection reports with findings and corrective actions
• Permit records and certificate of occupancy
• Material certifications and equipment specifications
• Safety compliance records and testing documentation
• Commissioning reports for all building systems
• Professional certifications from registered design professionals and special inspection agencies

This archive becomes the audit-ready repository demonstrating reasonable care across the asset lifecycle. Organized, accessible compliance archives enable efficient responses when stakeholders request documentation.

Best practices and risk management protocols

Compliance verification is a governance function, not a construction afterthought. Integrating code compliance into investment workflows, re-inspection schedules, and professional engagement standards protects organizations from the accountability gaps that create liability exposure.

Plan for periodic re-inspections. Building systems age. Codes evolve. Facilities constructed under previous code editions may face retrofit requirements as jurisdictions adopt updated standards, particularly for energy efficiency and climate resilience provisions where federal funding is accelerating local adoption timelines. Organizations that maintain ongoing compliance monitoring avoid the costly surprises that catch unprepared asset owners.

Qualified professionals matter. Engaging experienced engineers helps mitigate risk, strengthen documentation, and support sound decision-making throughout the asset lifecycle. Independent third-party verification carries weight that internal assessments cannot match.

Rimkus can help

Rimkus Construction Advisory Services, backed by 40+ years of project oversight experience, 900+ technical specialists, and 110+ global offices, can provide independent verification at critical construction phases, creating documented audit trails for regulatory compliance and insurance underwriting reviews. Protect your property, insurability, and long-term asset value. Contact Rimkus to establish audit-ready building code compliance verification.

Frequently asked questions

What triggers code compliance requirements for existing buildings?

Any repair, alteration, change of occupancy, addition, or relocation triggers IEBC requirements, not IBC new construction standards. The threshold matters: routine maintenance typically falls outside code review, but work affecting structural systems, fire protection, or means of egress requires permit review and inspection. Risk managers should establish clear criteria for when facility modifications require code compliance evaluation to avoid triggering enforcement actions from unreported work.

How often should buildings undergo code compliance re-inspections?

Periodic re-inspection frequency depends on building age, occupancy type, jurisdictional requirements, and risk profile. Many jurisdictions mandate annual fire safety inspections, while structural and envelope assessments may follow three-to-five-year cycles. Buildings in high-risk categories, such as those with assembly occupancies or hazardous materials, typically require more frequent verification. Risk managers should establish formal, documented inspection schedules based on regulatory minimums, insurance carrier expectations, and the specific operational demands of each facility.

What documentation should risk managers prioritize for compliance audits?

The highest-priority documents include the certificate of occupancy, approved building permits with conditions, fire protection system inspection reports, and special inspection reports for structural systems. Beyond these core records, maintaining as-built drawings, commissioning reports, material certifications, and manufacturer warranties creates a comprehensive compliance archive. Organizations that organize these documents by building system and inspection date can respond to audit requests within hours rather than weeks.

This article aims to offer insights into the prevailing industry practices. Nonetheless, it should not be construed as legal or professional advice in any form.