Deal
Due diligence

IP, trademarks and IT contracts in due diligence in a company acquisition

IP and IT in due diligence: existence and ownership of trademarks and patents, chains of transfer, licences, open-source compliance and change-of-control clauses.

BRANDAUER Rechtsanwälte
Your law firm

BRANDAUER Rechtsanwälte

Salzburg law firm for corporate, company and transaction law

Every transaction is handled by a coordinated team of lawyers, legal staff and specialists. In company acquisition matters we look at structure, contract, tax and liability together.

24 June 2026 · Mag. Bernhard Brandauer, Rechtsanwalt

In many companies the real value lies not in machinery or stock but in intangible assets: in the brand, in patents, in self-developed software and in the contracts that secure the ongoing IT operation. It is precisely these values that are often reviewed too late and too superficially in due diligence.

This post shows what matters in the review of intellectual property rights and IT in due diligence. The focus is on the existence and ownership of the protective rights, the chains of transfer for employee inventions and external developers, the licence and IT contracts including change of control as well as open-source compliance in software.

From a lawyer perspective the IP and IT review decides whether the buyer actually acquires the central values of the target company. It also provides the basis for the appropriate warranties in the company purchase contract.

Classify your IP and IT risks

Are the rights and contracts of the target company secured?

Answer one or two questions on ownership and contracts. You receive an initial classification of the most important points to check for IP and IT.

Already know you want to get in touch? Go straight to the enquiry form.

01 Question 1

Is it secured that the key trademarks, patents and the software belong to the target company itself?

Trademarks are often registered to the founder, or software was developed by freelancers. Without a complete transfer to the company, the buyer lacks the right.

All paths at a glance

Overview of all answers.

01

If ownership of the central rights is unclear, the purchase lacks its foundation.

If a trademark is registered to the founder, or software was developed by external parties without an effective transfer of rights, the buyer may acquire a company without the rights to its most important asset. Clarify the chain of transfer before signing: register extracts for trademarks and patents, written transfers of rights from contractors and the treatment of employee inventions. Our post on the due diligence checklist offers context.

Only once ownership is fully documented can the appropriate warranties be negotiated in a meaningful way.

02

Ownership and contracts are clarified, now the protection in the purchase contract matters.

If ownership, licences and IT contracts are cleanly reviewed, the IP side of the transaction is well set up. Anchor the result in a dedicated IP and IT warranty catalogue: existence and ownership of the protective rights, freedom from third-party rights, validity of the key licences and compliance with the open-source obligations. How such a catalogue is built is shown in the post on the warranty catalogue in the company purchase contract.

A short legal review ensures that the warranties actually cover the risks identified.

03

The review of the contracts is incomplete, sharpening it is advisable.

As long as licence and IT contracts are not reviewed systematically, change-of-control risks and hidden open-source obligations remain undetected. Complete the list of the key contracts, check every change-of-shareholders clause and clarify whether consents from contractual partners must be obtained for completion. How such conditions fit into completion is covered in the post on the conditions to completion.

Have open contracts reviewed before signing. A termination right discovered later can reduce the value of the transaction.

Existence and ownership of the protective rights

At the start of the IP review stands a simple question: which protective rights exist, and who owns them? Captured are trademarks, patents, designs and copyrights, for instance in software and advertising material. For registered rights, the relevant registers provide information on the owner, the term and possible encumbrances. With trademarks and patents a look into the respective register is especially worthwhile, because the registered owner does not always coincide with the target company.

A frequent weak point is the chain of transfer. Trademarks often still stand in the name of the founder, software was developed by freelancers or agencies, and inventions originate from employees. In all these cases the right must have passed effectively to the company. With employee inventions the rights of claim and an appropriate remuneration must be clarified; with external developers an express transfer of rights in the contract is needed.

If this chain is missing, the buyer may acquire a company that does not hold the rights to its most important asset. How such findings fit into the overall review is shown in the post on the due diligence checklist.

Licence contracts and open-source compliance

Alongside the company own rights count the licences with which the company uses or grants rights. Inbound licences secure access to third-party technology or software; outbound licences bring revenue and bind the company towards its licensees. To be checked are the term, the scope, the transferability and any minimum licence fees.

With self-developed software, open-source compliance deserves particular attention. Anyone who uses free components under a copyleft licence may be forced to disclose their own source code or to pass on the software under the same conditions. A clean record of the components used together with their licence terms therefore belongs to every technical due diligence.

Domains, trade secrets and unregistered know-how must also be captured. Domains should be registered to the company; trade secrets protected by appropriate measures. We explore the concept of due diligence on our focus page on due diligence.

IT contracts, cloud and change of control

The ongoing operation today hangs on a range of IT and cloud contracts: hosting, software as a service, maintenance and support. These contracts must be checked for their materiality and for their continuation after the acquisition. A failure of a central cloud platform shortly after closing can hit the operation hard.

Change-of-control clauses deserve particular attention. They give the contractual partner a termination or consent right if control of the company changes. Such clauses appear in licence, IT and also financing contracts. Where consent is needed for completion, it belongs to the conditions to completion, as the post on the conditions to completion shows.

Whether these clauses apply at all depends on the structure of the acquisition. In a share deal the rights and contracts remain with the company, yet a change of owner at the level of the shares may trigger exactly the change-of-control clauses. In an asset deal the rights must be transferred individually, which for registered protective rights requires a re-registration in the register. The differences between the two structures are covered in the post on share deal and asset deal.

The most important points

What matters in IP and IT in due diligence

These points decide whether the buyer actually acquires the central values. Check each one individually.

Points to check on IP and IT in due diligence with recommended drafting and possible risk
Point Recommended Possible risk
Ownership Registers and contracts prove the right Protective rights demonstrably stand in the name of the company Trademark still registered to the founder
Chain of transfer Documented without gaps Rights of employees and external parties effectively transferred Software developed without a transfer of rights
Open source Components and licences captured Copyleft obligations identified and observed Hidden duty to disclose source code
IT contracts Key contracts reviewed Continuation of the cloud after closing secured Failure of a central platform after the acquisition
Change of control Clauses assessed individually Necessary consents obtained before completion Hidden termination right of the contractual partner

The materiality of a contract is not measured by its volume alone. Even an inexpensive contract can be indispensable if it secures a central technical function.

Caution with incomplete chains of rights: Whoever overlooks a trademark registered to the founder, software without a transfer of rights or a hidden change-of-control clause risks acquiring a company without the rights to its most important asset. Have the IP and IT side reviewed before signing. Booking an initial consultation (72 euro) can quickly bring clarity.

Appropriate warranties and the question of structure

The findings of the IP and IT review flow into a dedicated section of the warranty catalogue. Common are warranties on the existence and ownership of the protective rights, on freedom from third-party rights, on the validity of the key licences and on compliance with the open-source obligations. Identified risks can be covered by a targeted indemnity, for example in an ongoing infringement dispute.

How far the buyer depends on these warranties also turns on the structure. In a share deal the rights remain with the company; the buyer takes them over indirectly with the shares. In an asset deal the individual rights are transferred; registered protective rights then require a re-registration in the trademark or patent register. These differences are illuminated in the post on share deal and asset deal.

A growing part of the IP and IT review also touches data protection. Where software and cloud process personal data, the GDPR applies. How these requirements fit into due diligence is covered in the post on data protection due diligence. An initial assessment of the overall risks is provided by our M&A transaction risk profile.

Frequent questions

IP, trademarks and IT contracts in due diligence.

Why is ownership of the trademark so important? +

If the trademark is registered to the founder or another person instead of the company, the buyer in a share deal acquires a company without the right to its own brand. The chain of transfer must therefore be documented without gaps, from the register to the contracts with employees and external developers. Only then can appropriate warranties be agreed in a meaningful way.

What does open-source compliance mean in a company acquisition? +

If the self-developed software uses free components under a copyleft licence, a duty may arise to disclose the company own source code or to pass on the software under the same conditions. Due diligence therefore captures which components are used under which licences, so that the buyer can assess the risk.

How do change-of-control clauses affect the transaction? +

A change-of-control clause gives the contractual partner a termination or consent right if control of the company changes. Such clauses can be triggered in a share deal and often affect central licence, IT and financing contracts. Where consent is needed for completion, it belongs to the conditions to completion of the purchase contract.

Topics
IPTrademarksIT contractsOpen sourceDue diligence

Structuring a deal, reviewing a contract, securing the risks?

When buying a company, structure, review and contract decide. Call us directly or send an email, callback within one business day.

Contact

A direct line to the firm.

Address

BRANDAUER Rechtsanwälte GmbH Giselakai 51 5020 Salzburg