IP Due Diligence in M & A

No applicable content-writing skills are available through the connected platforms. Proceeding directly with the blog regeneration.

IP Due Diligence in M&A

In an Indian M&A or fundraising deal, IP due diligence means independently verifying that the target owns, controls and can freely transfer every intellectual property right that drives its enterprise value — trademarks, patents, copyrights, source code, data rights and trade secrets. Weak IP diligence is the single most common cause of post-closing write-downs in technology and consumer-brand acquisitions. Run it systematically, translate every finding into SPA protections, and follow through with a structured post-closing integration.

Why IP Diligence Has Become the Deal-Critical Check

Intangible assets — brand equity, software, drug formulations, algorithms, training datasets — routinely account for 60 to 80 percent of enterprise value in Indian technology, pharma, consumer and fintech transactions. Three recent developments have made IP diligence even more pressing in 2026.

Regulatory expansion. The Digital Personal Data Protection Act 2023 (DPDP Act) treats customer personal data as a regulated asset with specific controller obligations. If a target's data is held under consent terms that do not extend to a new controller, the buyer cannot lawfully use that data post-closing without collecting fresh consent — eroding a material portion of what they paid for.

AI and copyright exposure. AI models trained on third-party content without licensing face mounting copyright infringement claims globally. India's Copyright Act 1957 does not contain a blanket "text and data mining" exception, meaning targets that trained models on scraped web data carry unquantified litigation risk.

Open-source enforcement. GPL and AGPL licence disputes are no longer exclusively a Western concern. Indian courts have granted interim injunctions in software IP matters, and acquirers of Indian SaaS companies are increasingly discovering that a core module was built on copyleft-licensed components — a potentially existential finding.

The economics of disciplined diligence are compelling. A buyer who discovers a chain-of-title defect before signing can demand a condition precedent that fixes it, negotiate a price chip, or structure a specific indemnity. A seller who runs vendor due diligence first arrives at the table with a clean IP house, defends the headline multiple and closes faster. An unresolved assignment gap or open-source contamination discovered mid-process can knock 5 to 15 percent off deal value in a single conversation.

Step 1 — Build the IP Asset Register Before the Process Starts

Both sides benefit from a current, registry-verified IP asset register. For targets, preparing it in advance of a process is one of the highest-return pre-deal activities. For buyers, it is the foundation of the diligence questionnaire.

Registered IP

The register should capture, at minimum: the asset class, governing statute, registration number, territory, status, renewal or annuity due date, and the registered owner's name exactly as it appears in the registry.

Verify every entry directly on the IP India portal (ipindia.gov.in). Do not rely on the target's self-reported register. Trademark renewals are easily missed; patent annuities lapse when finance teams do not flag them; and the registered proprietor name may differ from the current operating entity after a restructuring.

Unregistered IP and Trade Secrets

Unregistered rights frequently contain the most commercially sensitive material: proprietary source code, customer and supplier lists, pricing algorithms, formulations and know-how. For each, document: what it is and why it is valuable; who created it and when; what contractual and technical controls protect it; and whether any third-party data or content is embedded in it, and on what licence.

Step 2 — The IP Diligence Questionnaire: What to Request and Why

Issue a tailored IP questionnaire — not a generic M&A request list. Target each category of IP with specific document requests.

1. Registration certificates for all trademarks, patents, designs and copyrights, with current registry status confirmation.
2. Inventor assignment agreements — signed documents by which individual inventors assigned rights to the company under Rule 90 of the Patent Rules 2003. Patent applications filed in an individual inventor's name are extremely common in Indian startups and are the single most frequent chain-of-title defect.
3. Employee invention-assignment agreements — ideally embedded in each employment contract. Where absent, ask for standalone Deeds of Assignment.
4. Founder IP assignment agreements — pre-incorporation assignments by which co-founders transferred all IP created prior to the company's existence into the new entity. Many founding teams skip this step entirely.
5. Contractor and vendor IP assignment agreements. Section 17 of the Copyright Act 1957 vests first ownership in the author — the contractor — not the commissioning party, unless there is a written, signed assignment. This consistently surprises founders who assumed that paying for development work transferred copyright automatically.
6. All inbound licence agreements, noting: sub-licensability, change-of-control clauses and exclusivity terms.
7. All outbound licences, reseller agreements and material customer contracts, especially source-code escrow and exclusivity provisions.
8. Open-source software (OSS) inventory, including licence types and any compliance documentation.
9. All infringement notices, opposition proceedings, or litigation (threatened or pending) in the last five years.
10. Charges registered against IP assets under Section 77 of the Companies Act 2013, searchable on the MCA V3 portal (mca.gov.in). IP pledged as security must be satisfied before a buyer can take clean title.

Step 3 — Run Independent Registry Searches

Never rely solely on the target's disclosures. The buyer's counsel must independently search:

• Trade Marks Registry — by proprietor name and relevant classes; flag pending oppositions, rectification petitions and third-party applications for identical or deceptively similar marks.
• Indian Patent Office — granted and pending patents; lapsed patents where annuities were not paid (a lapsed patent can sometimes be restored by a competitor).
• MCA V3 — to identify charges registered against the target's IP assets.
• WIPO Global Brand Database — for international trademark registrations under the Madrid Protocol.
• WIPO PatentScope — for PCT applications covering key jurisdictions.
• Domain registrar lookups — run the brand name through major registrars and check key extensions (.in, .com, .co.in). Typosquat domains held by competitors or bad actors are a recurring headache in consumer-brand acquisitions.

For pharma and biotech targets, also search the Drug Controller General of India (DCGI) database for regulatory data exclusivity, drug master files and manufacturing licences tied to the target's products.

Step 4 — Open-Source Compliance: The Silent Liability

Open-source software (OSS) is the most consistently under-diligenced IP risk in Indian technology M&A. Most SaaS, fintech and healthtech products are built on OSS, and most teams do not maintain a formal Software Bill of Materials (SBOM).

The practical risk is licence contamination. Copyleft licences — especially GPL v2, GPL v3 and AGPL v3 — are "viral": if proprietary code links to or distributes a copyleft-licensed library, the distributor may be required to release the entire combined work's source code under the same licence. For a company whose valuation depends on proprietary software, this is an existential exposure.

Permissive licences — MIT, BSD-2, Apache 2.0 — impose far fewer restrictions. Apache 2.0 includes a patent grant, which matters in patent-sensitive verticals like medtech or semiconductors.

Recommended workflow:

1. Request the target's SBOM. If none exists, that is itself a red flag requiring immediate remediation before closing.
2. Run an automated OSS scan using FOSSA, Black Duck or an equivalent tool across all active repositories.
3. For each copyleft-licensed component, assess: how it is integrated (dynamic linking, static compilation, or isolated API call) and whether distribution to customers triggers the licence's obligations. Note that AGPL v3's "network use" clause means that running AGPL code as a hosted SaaS service accessed by external users may itself constitute distribution.
4. Prepare a written remediation plan for each non-compliant component: replacement, re-engineering the integration boundary, or obtaining a commercial licence from the OSS vendor.

Step 5 — Chain-of-Title: Where Deals Break Down

Chain-of-title is the unbroken documentary trail confirming that every IP right, from original creation through to the target company today, is validly owned. It is the most common source of deal-breaking surprises.

Four scenarios you will encounter

Founder moonlighting. The technical co-founder built the MVP while still employed at a multinational. Without a written release from the previous employer, that employer may have a colourable claim to the IP under its employment contract's IP-assignment clause.

Missing contractor assignment. A dev agency built the core platform under a time-and-materials contract with no IP-assignment clause. Under Section 17 of the Copyright Act 1957, the agency retains copyright. The target has a licence at best.

Inventor-company mismatch. Two granted patents are filed in the name of the founding CTO personally, not the company. On the IP India portal, the applicant is the individual. No formal assignment to the company has ever been recorded.

Departing employee gap. A key engineer with deep product knowledge left two years ago. Their employment contract contained an IP-assignment clause, but no specific Deed of Assignment was executed at departure, and the engineer is now unreachable.

How to fix chain-of-title gaps

Each scenario has a documentary solution: a Deed of Assignment signed by the assignor in favour of the company, for consideration (nominal Re. 1 is legally sufficient in most cases), executed on appropriate stamp paper, and filed with the relevant registry.

• Trademark assignment: File Form TM-P with the Trade Marks Registry with the prescribed fee (currently Rs. 9,000 per mark for companies, or as notified). Registry endorsement takes 3-6 months — plan accordingly if this is a condition precedent.
• Patent assignment: Record the assignment under Rule 90 of the Patent Rules 2003 by filing the assignment agreement with the Patent Office. File within six months of execution.
• Copyright assignment: Under Section 19 of the Copyright Act 1957, the assignment must be in writing and signed by the assignor. Copyright Office registration is optional but strengthens enforceability.

Where a fix cannot be completed before closing because the assignor is overseas, uncontactable or uncooperative, the SPA must include a specific indemnity covering the risk from the first rupee, without any basket deductible.

Worked Example: The Rs. 80 Crore SaaS Deal and the IP Haircut

Consider a B2B SaaS company with Rs. 20 crore ARR, valued at a 4× revenue multiple, giving a headline deal value of Rs. 80 crore. The buyer's IP diligence surfaces three issues.

Issue 1 — Unassigned founder patents. Two granted patents covering the core algorithm remain in the name of the founding CTO personally. The IP India portal confirms the applicant is the individual. The CTO is still with the business, so the immediate risk is limited — but post-acquisition, any falling-out with the buyer could put the product at risk. Fix: Deed of Assignment executed and filed as a condition precedent to closing. Cost: legal fees of approximately Rs. 1.5-2 lakh; no price impact.

Issue 2 — AGPL contamination in a core analytics module. An automated OSS scan finds that the product's reporting engine statically links an AGPL v3 library. The product is delivered as a hosted service, triggering the network-use clause. If a customer or open-source activist demands source-code disclosure, the company must comply or face licence termination and damages exposure. Remediation (replacing the module with a permissively-licensed alternative) is estimated at Rs. 35-45 lakh in developer time over 90 days. Buyer's response: Specific indemnity of Rs. 1 crore (capped at the higher-end estimate plus contingency), plus a post-closing covenant to complete remediation within 90 days, with Rs. 75 lakh of the purchase price held in escrow pending completion.

Issue 3 — Trademark opposition in Class 9. The brand is registered in Class 42 (software as a service), but a search reveals a third party has filed an application in Class 9 (computer software and hardware) for a phonetically similar mark. The opposition window is open. Buyer's response: Price chip of Rs. 3 crore, a warranty of no adverse order, and an indemnity for the cost of opposition proceedings (legal fees estimated at Rs. 8-12 lakh through a contested hearing).

Net outcome: Headline price adjusts from Rs. 80 crore to approximately Rs. 77 crore, with Rs. 75 lakh in escrow. The deal closes — because each issue was quantified and structured, rather than used as a reason to kill the process. Disciplined diligence and disciplined SPA drafting produced a result that served both parties.

Translating Diligence Findings into the SPA

The share purchase agreement is where diligence findings must become enforceable protections.

IP representations and warranties

Standard IP reps require the target to confirm that the IP schedule is complete and accurate; the target is the sole legal and beneficial owner of all scheduled IP; no IP is subject to any charge or encumbrance not disclosed; all employees, contractors and founders have assigned their IP rights to the company; and OSS has been used in compliance with applicable licences. Survival periods for IP reps should be 24 to 36 months post-closing — longer than general commercial reps, given how slowly registry disputes surface.

Specific indemnities for identified risks

Where a risk has been quantified during diligence — the AGPL exposure, an unresolved trademark opposition, a past infringement notice — a specific indemnity is preferable to relying on a warranty claim. Specific indemnities provide rupee-for-rupee coverage from the first rupee, bypassing the general warranty basket and deductible. They are the right tool when you know what the risk is and want full protection against it.

Escrow or price holdback

For material open items, require 5-15 percent of consideration to be held in an escrow account (with a reputed bank or counsel as escrow agent) and released only upon verified resolution of the issue. Tie the release mechanism to an objective milestone: filing of the remediation certificate, registry confirmation of the assignment, or a clean OSS audit report from an agreed tool.

Conditions precedent

For chain-of-title fixes that are executable before closing — such as a founder assignment where the assignor is cooperative and present — a condition precedent is cleaner than an indemnity. The deal does not close until the Deed of Assignment is filed and acknowledged by the registry. This eliminates the risk entirely rather than pricing it.

Common Mistakes That Destroy Post-Closing Value

• Treating OSS compliance as a technical matter. AGPL and GPL contamination is a legal liability with financial consequences. Counsel must be part of the OSS audit, not just the engineering team.
• Accepting the target's IP schedule without independent search. Registry searches regularly surface lapsed renewals, undisclosed third-party filings and charges not reported in the data room.
• Ignoring data rights under the DPDP Act 2023. Customer personal data is now a regulated asset. If consent was collected for one controller (the target), it does not automatically extend to the buyer. Audit data-processing agreements and consent architecture as part of every IP diligence exercise.
• Failing to review change-of-control clauses in material inbound licences. A critical SaaS tool or API licence that auto-terminates on a change of control can disrupt operations immediately post-closing — with the leverage now firmly on the licensor's side.
• Skipping domain and social-handle searches. A squatter holding the .in version of the brand's primary domain, discovered only after closing, is an avoidable distraction and negotiation.
• Not project-managing post-closing registry filings. Without a named owner and deadline, Form TM-P and Rule 90 filings drift for months, leaving IP formally registered in the seller's name while the buyer operates the business — a vulnerability the seller's creditors could theoretically exploit.

Post-Closing Integration: The 100-Day IP Sprint

Diligence protects you against what you know at signing. The 100-day integration programme protects the asset going forward. Assign a named IP Integration Manager — typically the buyer's General Counsel or a senior compliance officer — with authority across legal, engineering and finance functions.

The sprint should deliver:

1. Within 30 days: File all trademark assignment deeds (Form TM-P), patent assignments (Rule 90), and copyright assignment documentation with the relevant Indian and, where applicable, foreign registries.
2. Within 45 days: Obtain change-of-control consents from licensors of material inbound licences where consent was not pre-obtained as a condition precedent.
3. Within 90 days: Complete OSS remediation commitments made in the SPA; provide the agreed deliverable to the escrow agent to trigger holdback release.
4. Within 90 days: Re-execute IP-assignment and confidentiality agreements for all employees under the acquiring entity's standard template.
5. Within 90 days: Integrate the target's repositories into the buyer's ongoing SBOM scanning regime and OSS governance framework.
6. Within 100 days: Update all public-facing IP notices — copyright footers, trademark symbols (® where registered, ™ where not), privacy notices and terms of service — under the new entity name and updated controller identity.
7. Throughout: Hold a fortnightly status review against the programme milestones until every item is formally closed.

The marginal cost of a disciplined 100-day sprint — legal fees, engineering time, filing charges — is a rounding error relative to the deal consideration. The cost of neglecting it — lapsed registrations, licence terminations, DPDP Act penalties of up to Rs. 250 crore under the scale-based penalty framework — can materially erode the intangible value that justified the acquisition multiple in the first place.

Key Takeaways

• Prepare your IP register before the process opens. A current, registry-verified schedule is the single highest-return pre-deal activity for any target. It reduces friction, builds buyer confidence and supports the valuation multiple.
• Chain-of-title is the most common deal-delaying defect. Founder, contractor and departing-employee assignment gaps are all fixable — but only if discovered and addressed before signing. Identify them early; execute Deeds of Assignment; file with the registry.
• Open-source compliance is a legal liability, not just a developer hygiene issue. AGPL and GPL contamination in a distributed product can require proprietary source-code disclosure. Commission an automated OSS scan against every repository before the questionnaire goes out.
• Run independent registry searches. IP India, the Copyright Office and MCA V3 will surface discrepancies that the target's data room will not. Never skip this step.
• The SPA protection toolkit is layered. Use reps and warranties for general coverage; specific indemnities for identified, quantified risks; escrow holdbacks for material open items; and conditions precedent for fixable title defects.
• The DPDP Act 2023 makes customer data a regulated IP asset. Audit consent architecture and data-processing agreements in every transaction involving a target that holds consumer personal data.
• Post-closing integration is not optional. Assign a named owner, set hard deadlines, and complete all registry filings within 30 days of closing. The value the diligence protected at signing can only be sustained by disciplined execution after it.