diff --git a/tools/gen_brokerage_table.sh b/tools/gen_fi_table.sh
similarity index 97%
rename from tools/gen_brokerage_table.sh
rename to tools/gen_fi_table.sh
index 72a7336..9f6e3f0 100755
--- a/tools/gen_brokerage_table.sh
+++ b/tools/gen_fi_table.sh
@@ -1,5 +1,7 @@
 #!/bin/bash
 
+# lobbying data to incorporate in the future: https://disclosurespreview.house.gov/
+
 typeset -r db_file=$(mktemp --dry-run --suffix=.db)
 
 table_populate()
@@ -137,7 +139,7 @@ insert into fiTbl (fi_kind,name,url,cispa,dt,aws)                 values ("insur
 insert into fiTbl (fi_kind,name,url,cispa,dt,aws,antitor)         values ("insurer","Allied","https://www.alliedinsurance.com",1,1,1,1);
 insert into fiTbl (fi_kind,name,url,cispa,dt,antitor,notes)       values ("insurer","Allstate","https://www.allstate.com",1,1,1,"akamai hosted");
 insert into fiTbl (fi_kind,name,url)                              values ("insurer","American Family","https://www.amfam.com");
-insert into fiTbl (fi_kind,name,url,notes)                        values ("insurer","American Modern","https://www.amig.com","**Google Cloud-hosted**");
+insert into fiTbl (fi_kind,name,url,cflogin,notes)                values ("insurer","American Modern","https://www.amig.com",1,"**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd");
 insert into fiTbl (fi_kind,name,url,cispa,dt,notes)               values ("insurer","Ameriprise Financial","https://www.ameriprise.com",1,1,"akamai hosted");
 insert into fiTbl (fi_kind,name,url,antitor)                      values ("insurer","Amica","https://www.amica.com",1);
 insert into fiTbl (fi_kind,name,url,dt)                           values ("insurer","Berkshire Hathaway","https://berkshirehathaway.com",1);
@@ -148,7 +150,7 @@ insert into fiTbl (fi_kind,name,url,alec,dt,notes)                values ("insur
 insert into fiTbl (fi_kind,name,url,dt)                           values ("insurer","First American Insurance Agency","https://www.faiagency.com",1);
 insert into fiTbl (fi_kind,name,url,parent,dt)                    values ("insurer","Foremost","http://www.foremost.com","Farmers",1);
 insert into fiTbl (fi_kind,name,url,alec,dt,notes)                values ("insurer","Geico","https://www.geico.com",1,1,"akamai hosted but transactional site ecams.geico.com is not.");
-insert into fiTbl (fi_kind,name,url,parent,notes)                 values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not.");
+insert into fiTbl (fi_kind,name,url,parent,notes)                 values ("insurer","Gen Re","https://www.genre.com","Berkshire Hathaway","akamai hosted, but transactional site www.genre-connect.com is not. The documentation (""Knowledge"" link) is CloudFlared.");
 insert into fiTbl (fi_kind,name,url,dt,notes)                     values ("insurer","National General","https://www.nationalgeneral.com",1,"formerly GMAC");
 insert into fiTbl (fi_kind,name,url,dt)                           values ("insurer","Grange Mutual","https://www.grangeinsurance.com",1);
 insert into fiTbl (fi_kind,name,url,parent)                       values ("insurer","Harleysville Group","https://www.harleysvillegroup.com","Nationwide");
@@ -165,7 +167,7 @@ insert into fiTbl (fi_kind,name,url,antitor,dt)                   values ("insur
 insert into fiTbl (fi_kind,name,url,antitor,notes)                values ("insurer","Safe Auto","http://www.safeauto.com",1,"**Tor-hostile** sign-in page despite Tor-friendly landing page.");
 insert into fiTbl (fi_kind,name,url,parent,antitor,notes) values ("insurer","Safeco","https://safeco.com","Liberty Mutual",1,"akamai hosted");
 insert into fiTbl (fi_kind,name,url,dt,notes)                     values ("insurer","Selective","https://www.selective.com",1,"pushes CloudFlare javascript, but apparently execution is optional.");
-insert into fiTbl (fi_kind,name,url,dt)                           values ("insurer","Shelter Insurance","https://shelterinsurance.com",1);
+insert into fiTbl (fi_kind,name,url,dt,notes)                     values ("insurer","Shelter Insurance","https://web.archive.org/web/shelterinsurance.com",1,"CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.");
 insert into fiTbl (fi_kind,name,url,antitor,alec,cispa,dt,notes)  values ("insurer","State Farm","https://www.statefarm.com",1,1,1,1,"edgecast-hosted");
 insert into fiTbl (fi_kind,name,url,aws,dt)                       values ("insurer","Stewart Information Services Corporation","https://www.stewart.com/en.html",1,1);
 insert into fiTbl (fi_kind,name,url)                              values ("insurer","The General","https://thegeneral.com");
@@ -376,7 +378,7 @@ EOF
     cat <<'EOF'
 # Why CISPA supporters are graylisted
 
-The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
+The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
 was a bill to bypass the 4th amendment to promote a system of unwarranted
 mass surveillance through information sharing between the government and private sector.
 Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@@ -419,7 +421,7 @@ In the end, you're the judge.
 
 Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
 The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
-Of course it's still favorable to choose a whitelisted financial institution.
+Of course it's still ethically favorable to choose a whitelisted financial institution if possible.
 EOF
 };#gen_md
 
diff --git a/usa_insurance_companies.md b/usa_insurance_companies.md
index 7895aa7..0c5740a 100644
--- a/usa_insurance_companies.md
+++ b/usa_insurance_companies.md
@@ -11,17 +11,16 @@
 | *insurer* | *ALEC member* | *Tor-hostile* | *sensitive info exposed to CloudFlare* | *supported CISPA* | *forced drug testing of staff* | *notes* |
 |---|---|---|---|---|---|---|
 |[Allianz](https://allianz.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**|
-|[American Modern](https://www.amig.com)|n|n|n|n|n|**Google Cloud-hosted**|
 |[Ameriprise Financial](https://www.ameriprise.com)|n|n|n|🕵|🧪|akamai hosted|
 |[Berkshire Hathaway](https://berkshirehathaway.com)|n|n|n|n|🧪||
 |[First American Insurance Agency](https://www.faiagency.com)|n|n|n|n|🧪||
-|[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not.|
+|[Gen Re](https://www.genre.com)|n|n|n|n|n|parent: Berkshire Hathaway; akamai hosted, but transactional site www.genre-connect.com is not. The documentation ("Knowledge" link) is CloudFlared.|
 |[Grange Mutual](https://www.grangeinsurance.com)|n|n|n|n|🧪||
 |Horace Mann|n|n|n|n|🧪|no website, only an access-restricted Facebook page|
 |[MetLife](https://www.metlife.com)|n|n|n|🕵|🧪|**Amazon AWS-hosted**; transactional site identity.metlife.com is not AWS|
 |[National General](https://www.nationalgeneral.com)|n|n|n|n|🧪|formerly GMAC|
 |[Selective](https://www.selective.com)|n|n|n|n|🧪|pushes CloudFlare javascript, but apparently execution is optional.|
-|[Shelter Insurance](https://shelterinsurance.com)|n|n|n|n|🧪||
+|[Shelter Insurance](https://web.archive.org/web/shelterinsurance.com)|n|n|n|n|🧪|CloudFlare name server is used, which means they can trivially flip a switch to become a CF site.|
 |[Stewart Information Services Corporation](https://www.stewart.com/en.html)|n|n|n|n|🧪|**Amazon AWS-hosted**|
 |[Travelers](https://www.travelers.com)|n|n|n|🕵|🧪|akamai hosted|
 
@@ -31,6 +30,7 @@
 |21st Century|n|n|n|n|n|parent: Farmers|
 |Allied|n|👁|n|🕵|🧪|**Amazon AWS-hosted**|
 |Allstate|n|👁|n|🕵|🧪|akamai hosted|
+|American Modern|n|n|🌩|n|n|**Google Cloud-hosted** landing page, which is CloudFlare-free but the transactional host my.doculivery.com is CFd|
 |Amica|n|👁|n|n|n||
 |Brown & Brown Insurance|n|n|🌩|🕵|n||
 |Esurance|n|n|n|n|n|parent: Allstate; akamai hosted|
@@ -167,7 +167,7 @@ The storm cloud (🌩) indicates that account access is resticted and exclusive
 
 # Why CISPA supporters are graylisted
 
-The [Cyber Intelligence Sharing and Protection Act](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
+The [Cyber Intelligence Sharing and Protection Act (CISPA)](https://en.wikipedia.org/wiki/Cyber_Intelligence_Sharing_and_Protection_Act)
 was a bill to bypass the 4th amendment to promote a system of unwarranted
 mass surveillance through information sharing between the government and private sector.
 Congress blocked the bill, but it was later reincarnated as CISA and it passed.
@@ -210,4 +210,4 @@ In the end, you're the judge.
 
 Financial institutions hosted on GAFAM (Google Amazon Facebook Apple Microsoft) are graylisted.
 The wrongdoing is indirect and in the end taking a security risk doesn't necessarily lead to a breach.
-Of course it's still favorable to choose a whitelisted financial institution.
+Of course it's still ethically favorable to choose a whitelisted financial institution if possible.