IP Due Diligence for AI Investors and Acquirers

AI IP is a sprawling, multi-faceted landscape. It encompasses everything from the core algorithms and trained models to the vast datasets that fuel them, and even the “inventions” the AI itself might generate.

Failing to conduct rigorous IP due diligence in the AI space is akin to buying a car without checking if the engine belongs to someone else. It’s a recipe for costly litigation, devaluation, and a significant blow to your strategic objectives.

Ownership and Inventorship:

The foundational question in AI IP due diligence is simple: who genuinely owns the intellectual property that drives the company’s AI capabilities?

Proprietary AI Models and Algorithms:
- Employee & Contractor Agreements: Meticulously review all employment agreements, consulting contracts, and independent contractor agreements. Do these contracts contain robust IP assignment clauses that explicitly transfer all rights to inventions, software, and data developed by individuals during their tenure or engagement to the company? This is paramount for ensuring the company truly owns the AI it builds in-house.
- “Work for Hire” Doctrine: Understand how “work for hire” rules apply in different jurisdictions for content or software developed by contractors. Ensure that any AI components developed by external parties are explicitly assigned to the target company. Work for hire terms should always be combined with an assignment due to the uncertainty of whether work for hire will apply to AI components.
- Co-development and Joint Ventures: If the AI was developed in collaboration with other entities (universities, research institutions, other companies), examine all collaboration agreements, joint venture agreements, and research grants. These documents will dictate ownership stakes, licensing rights, and potential restrictions on use or commercialization. Are there any “co-owners lurking in the shadows” that could dilute your ownership or create future conflicts?
- “Human Authorship” for Copyright & Patentability: Current IP laws, particularly in the US, generally require human inventorship for patents and human authorship for copyright. If the AI system itself “generates” inventions or creative works, the legal status of that IP is murky and evolving. Assess the company’s strategy for addressing this, and whether they have clear policies and contracts that designate human involvement (e.g., for the prompt engineer, the model trainer) to establish a claim to the IP.
Data Ownership and Licensing:
- Provenance of Training Data: AI models are heavily reliant on training data. Investigate the source of all data used to train the AI models. Was it legally acquired? Is it publicly available, licensed from third parties, or proprietary data collected by the company?
- Data Licensing Agreements: For any licensed data, scrutinize the terms of the data licensing agreements. Do these licenses grant the necessary rights for the data to be used for AI training, commercial deployment, and potential re-licensing post-acquisition? Are there any restrictions on future use, modification, or distribution of the models trained on this data?
- Data Collection Compliance: Ensure that the data used for training was collected in compliance with all relevant privacy laws and terms of service. Unauthorized data collection or use could lead to significant legal liabilities (e.g., GDPR, CCPA violations), which directly impact the value and usability of the AI model.
- Data-Generated IP: If the AI generates new data or insights, who owns that generated data? This needs to be clearly defined in contracts and internal policies.

Patentability and Patent Landscape:

Patent Portfolio Review:
- Specificity and Technicality: AI patents are often challenged on grounds of being too abstract or lacking a “technical” application. Assess whether the company’s patents adequately describe the AI invention in sufficient technical detail to meet patentability criteria (novelty, non-obviousness, utility) and avoid abstract idea rejections.
- Claim Scope: Evaluate the scope of the patent claims. Are they broad enough to cover various implementations of the AI, yet specific enough to be defensible against prior art?
- Validity and Enforcement: Conduct a validity analysis of existing patents. Are there any prior art issues or other weaknesses that could lead to their invalidation? Assess the enforceability of the patents against potential infringers.
- International Protection: Does the company have patent protection in all relevant jurisdictions where it operates or plans to expand?
Freedom to Operate (FTO): Navigating the Minefield
- Third-Party Infringement Risk: Owning patents does not guarantee the ability to use the technology without infringing on others’ IP. Conduct a thorough FTO analysis to identify any third-party patents or IP that the target company’s AI system might infringe upon.
- Competitive Landscape: Analyze the IP portfolios of competitors. Are there any blocking patents that could limit the target’s ability to commercialize its AI or force costly licensing agreements?

Trade Secret Protection:

Many of the most valuable aspects of AI, like specific model weights, architectures, and proprietary training datasets, are often protected as trade secrets rather than patents.

Identification of Trade Secrets: Does the company clearly identify and document its trade secrets? This includes algorithms, model training methodologies, unique datasets, and specific applications.
Reasonable Measures for Secrecy: Trade secret protection hinges on the owner taking “reasonable measures” to keep the information secret. Evaluate the company’s internal security protocols:
- Access Controls: Are access to sensitive code, data, and models restricted on a “need-to-know” basis?
- Confidentiality Agreements: Are robust Non-Disclosure Agreements (NDAs) in place with all employees, contractors, partners, and any third parties who have access to trade secret information?
- Cybersecurity: Assess the cybersecurity measures in place to prevent unauthorized access, theft, or disclosure of trade secrets.
- Employee Onboarding/Offboarding: Are there clear policies and procedures for managing trade secret access for new hires and ensuring the return or deletion of all proprietary information upon employee departure?
Impact of AI Transparency Regulations: Be aware that emerging AI regulations (like the EU AI Act) may require disclosure of certain technical documentation, which could potentially impact trade secret protection. Assess how the company plans to balance transparency requirements with trade secret safeguarding.

Open Source Software (OSS) Compliance:

Almost all AI systems incorporate open-source software. While beneficial for development speed, OSS comes with specific licensing obligations that, if mishandled, can lead to serious IP risks.

OSS Audit: Conduct a comprehensive audit of all open-source components used in the AI system’s codebase. This requires specialized tools and expertise.
License Identification and Compliance:
- Copyleft Licenses (e.g., GPL, AGPL): Identify any “copyleft” licenses. These can be particularly problematic as they often require the distribution of the entire source code of a derivative work, potentially forcing the disclosure of proprietary AI models or algorithms.
- Permissive Licenses (e.g., MIT, Apache): While generally less restrictive, even permissive licenses have attribution and notice requirements that must be met.
- Compatibility: Ensure that the various open-source licenses used are compatible with each other and with the company’s commercialization strategy.
Remediation and Risk Mitigation: If non-compliance is found, assess the scope of the problem and the feasibility and cost of remediation. This could involve re-architecting parts of the system, acquiring commercial licenses, or open-sourcing proprietary code.

Licensing and Commercialization Rights: Monetizing the AI

Beyond ownership, understanding the company’s ability to license and commercialize its AI is key.

In-Licensing Agreements: If the company licenses third-party AI models, data, or components, review the terms of these licenses. Are they perpetual? Are there usage restrictions (e.g., field of use, geographic limitations, user caps) that would impact your business plan?
Out-Licensing Agreements: If the company licenses its AI to customers or partners, analyze the terms of these agreements. Are the terms favorable? Are there any clauses that could inadvertently grant rights to your core AI IP?
Future Monetization Models: Consider how the current IP rights align with potential future monetization strategies (e.g., SaaS, on-premise deployment, API access, embedding in new products).

Conclusion

IP due diligence for an AI company is a specialized and intensive undertaking. It requires a blend of legal expertise in IP and data privacy, coupled with deep technical understanding of AI systems. By meticulously examining ownership, patent landscapes, trade secret protections, and open-source compliance, investors and acquirers can gain clarity on the true value and defensibility of the AI, identify critical risks, and ensure that AI is truly yours to control and monetize. Don’t let the allure of AI innovation overshadow the fundamental need for robust IP scrutiny.

Register now for your free, tailored, daily legal newsfeed service.

IP Due Diligence for AI Investors and Acquirers

Filed under

Topics

Laws

Industries

Popular articles from this firm

2026 Overview of AI Use in Employment Decisions *

When Insurance Won’t Cover AI: Why Carriers Are Adding Exclusions, And Why AI Governance Is Now Essential *

Negotiating Liability in AI Contracts *

When Grok Went off the Rails: A Wake-Up Call for AI Governance in the Age of Indirect Prompt Injection *

𝐍𝐞𝐠𝐨𝐭𝐢𝐚𝐭𝐢𝐧𝐠 𝐀𝐈 𝐏𝐞𝐫𝐟𝐨𝐫𝐦𝐚𝐧𝐜𝐞 𝐒𝐭𝐚𝐧𝐝𝐚𝐫𝐝𝐬 𝐚𝐧𝐝 𝐒𝐋𝐀𝐬 *

Professional development

Related practical resources PRO

Related research hubs

Artificial intelligence

USA

IT & Data Protection

Copyrights