Home/Glossary/Software Due Diligence
M&A Software Glossary

What is software due diligence?

Software due diligence is the buyer side review that maps and quantifies a target software licensing position and audit exposure before a transaction closes.

What is software due diligence? It is the part of buy side diligence that examines a target software estate to find the licensing and audit exposure that standard financial and legal review usually miss. It looks at what the target is licensed to run, what it actually runs, and the gap between the two. That gap is where inherited liability lives, and it is almost always latent and unquantified until a publisher audit surfaces it after close.

What software due diligence covers

Software due diligence builds an effective license position for the publishers that audit hardest, tests it against real deployment, and sizes the worst case and likely settlement for any shortfall. It also reads the contracts themselves for change of control and assignment terms that the transaction can trigger, because deal structure decides which clauses bite. The output is a quantified exposure the deal team can price, allocate to the seller, or remediate before signing rather than inherit silently.

Why software due diligence matters to buyers

The licensing position of an acquired company is a liability nobody has mapped. It sits off the balance sheet, outside the quality of earnings analysis, and unowned by the deal team until it surfaces. A change of ownership resets the audit clock at the major publishers, so acquired companies are routine audit targets in the first year or two after close. SAP pursued AB InBev for a reported 600 million dollars and Diageo for a reported 60 million over disputed and inherited licensing, the latter confirmed in the English High Court in SAP UK Ltd v Diageo Great Britain Ltd in 2017 (as of June 2026). Diligence is how a buyer sizes that risk before a vendor prices it instead.

Which publishers carry the most risk

Oracle, SAP, Microsoft and IBM are the long standing audit leaders, with Broadcom owned VMware, Salesforce and ServiceNow increasingly active as of June 2026. A competent review prioritises these names, reconstructs entitlement against usage, and scales the depth to the deal timeline. The floor is always a quantified exposure for the tier one publishers, because that is what moves price or supports a protection.

Same exposure, found before signing vs after closeA bar comparison of found before signing: a negotiating lever against found after close: a sunk cost.Same exposure, found before signing vs after closeindexed, post close cost = 100Found before signing: a negotiating leverleverFound after close: a sunk cost100
What software due diligence delivers to a deal team
DeliverableWhat it answersHow the deal team uses it
Effective license positionEntitlement against usageSizes the compliance gap
Cost to cureWhat fixing the gap costsSupports a price chip or holdback
Change of control reviewWhich clauses the deal triggersPlans consent and timing
Audit risk rankingWhich publishers will testSequences post close work

Key takeaways

  • Software due diligence finds the licensing and audit exposure that financial and legal review do not own.
  • The same exposure is a lever before signing and a sunk cost after close, so timing is everything.
  • Oracle, SAP, Microsoft, IBM and increasingly Broadcom VMware, Salesforce and ServiceNow drive the risk.
  • The output is a quantified number the deal team can price, allocate, or remediate.

Recommendations for buyers

  1. Commission it before signing. Run the review while you still hold the leverage to adjust price or negotiate protections.
  2. Prioritise the tier one publishers. Build the effective license position for the names that audit hardest first.
  3. Quantify, do not flag. Insist on a worst case and likely settlement number, not a list of concerns.
  4. Carry the baseline into integration. Reuse the diligence position to accelerate post close reconciliation.

Related reading: see the M&A software glossary hub, plus effective license position and latent licensing liability.

Frequently asked questions

What is software due diligence in simple terms?
It is a buyer side review of a target software contracts and usage to find where the company is not compliant with its licenses and to size what fixing that will cost, before the deal closes.
How is software due diligence different from IT due diligence?
IT due diligence assesses systems, architecture and technical risk. Software due diligence focuses on licensing and audit exposure: entitlement against usage, change of control clauses and the quantified cost to cure any gaps.
When should software due diligence happen?
Before signing, while the buyer still has leverage to adjust price or negotiate protections. Findings discovered after close become a post close cost rather than a negotiating chip.
Which vendors carry the most audit risk?
Oracle, SAP, Microsoft and IBM are the long standing audit leaders, with Broadcom owned VMware, Salesforce and ServiceNow increasingly active as of June 2026. A change of ownership raises the likelihood of a review.

Request a confidential software M&A risk assessment.

Map and quantify the licensing exposure in your target or portfolio before it becomes a post close audit. Independent, buyer side, paid only by the acquirer.

Talk to a software M&A advisor