← Back to articles

Red Flags During Due Diligence: What Investors Worry About Most

Due diligence red flags are issues that investors discover during the review process that cause concern, require additional investigation, or—in severe cases—can cause them to walk away from a deal entirely. Understanding what investors worry about most allows you to proactively address issues before due diligence and to prepare explanations and solutions when issues are discovered.

Some red flags are deal-killers. Others are manageable if you have a clear plan to address them. The key is transparency: the worst outcome is when an investor discovers an issue you knew about but didn't disclose. Honesty, even about problems, is far better than hidden issues surfacing during due diligence.

Intellectual Property Red Flags

Founder inventions not assigned to the company: This is a critical issue. If your technology was developed by founders before the company was formed, and those inventions weren't explicitly assigned to the company, you may not own your own IP. Investors won't invest in a company that doesn't own its core technology.

Solution: Have all founders (including non-technical co-founders) sign IP assignment agreements immediately, assigning all past and future inventions to the company. If you're in a state like California where non-competes are unenforceable, ensure your assignments are written to maximize enforceability. Have a lawyer do this properly.

Undocumented open-source or third-party IP: If your product uses open-source libraries without proper documentation or licensing compliance, investors will flag this. GPL-licensed code (which requires you to open-source your entire product) in a proprietary product is a serious issue.

Solution: Conduct a code audit identifying all open-source or third-party dependencies. Ensure you're licensed to use them and that you're complying with their licenses. Document all dependencies and their licenses in your data room. Some licenses (MIT, Apache) are very permissive; others (GPL) are restrictive. Know what you're using.

Trademark or domain name disputes: If someone else has a trademark similar to your business name, or if you're using a domain name you don't own, investors will want clarity. If you're using a domain you're renting from someone else, what happens if they want it back?

Solution: Own your domain name (don't rent it). Conduct a trademark search to ensure you can safely use your business name. If there's a risk, either change your name or buy the trademark/domain from the current owner. Clarity here is important.

Customer or vendor IP claims: If a customer claims they own part of your product, or if there's any ambiguity about IP ownership, this needs resolution before due diligence concludes.

Solution: Get explicit written agreements with customers and vendors clarifying IP ownership. If a customer claims ownership, resolve this before fundraising.

Financial Red Flags

Unreconciled financial statements: If your P&L doesn't match your bank statements, or if there are unexplained discrepancies in your accounting, investors will flag this. This suggests either bookkeeping errors or intentional misrepresentation.

Solution: Reconcile all financial statements before due diligence. If there are discrepancies, explain them and correct them. Work with an accountant if needed. Clean, reconciled statements build trust; unreconciled statements raise questions about whether you know your own financials.

Declining revenue or customer growth: If your revenue is flat or declining, or if you're losing customers, investors will worry. This suggests product-market fit issues or market saturation.

Solution: Be transparent about it. If revenue has declined, explain why (market downturn, intentional focus on margin over volume, customer consolidation). Show your plan to restart growth. Honesty with a plan is better than hiding decline.

High burn rate without clear path to profitability: If you're burning significant cash each month with no clear path to profitability or sustainable growth, investors will be concerned. Burn rate needs to be justified by growth.

Solution: Ensure your burn is funding growth-driving activities. If you're burning $100K/month, that should be driving customer acquisition or product development, not just overhead. Show clear metrics around how you're deploying capital and what results you're seeing.

Customer concentration: If one or two customers represent 50%+ of revenue, this is a major risk. Losing a major customer could crater your business.

Solution: Diversify your customer base. If you're currently concentrated, make this a priority for the capital you're raising. In the near term, get written commitments from major customers that they'll continue as your customers (letters of intent or renewal commitments). Show growth in new customer acquisition.

High churn or unsubscribe rates: If you're losing customers faster than you acquire them, you have a growth problem masked by new customer acquisition.

Solution: Fix your product and customer satisfaction first. Measure and understand why customers are leaving. Once you've stopped the bleeding, measure improvements. Show investors that churn is declining and that you have a product your customers want to keep.

Undocumented or questionable revenue: If you have revenue from unclear sources (barter, non-standard transactions, related party), investors will want documentation and explanation.

Solution: Document all revenue sources and ensure they're real, sustainable, and from independent customers. Related party revenue (from founders, friends, family) is typically not counted as "real" revenue by investors.

Compliance and Tax Red Flags

Unpaid or overdue tax filings: Missing payroll tax filings or sales tax filings is a serious issue. Tax liability is a real liability that doesn't go away.

Solution: File all overdue returns immediately and pay any taxes owed. Work with a CPA to get current. Address this before fundraising if you can. If you discover missing filings during fundraising, file immediately and show the IRS/state that you're now compliant. Investors will want assurance that you've paid back taxes or have a payment plan.

Misclassification of employees vs. contractors: If you've classified people as contractors who should be employees (or vice versa), you may have wage and tax liability. Department of Labor can assess significant penalties.

Solution: Review your contractor agreements and ensure proper classification. If you've misclassified, work with counsel to remedy it (reclassify going forward, address back liability). This is fixable but needs attention.

Non-compliance with employment laws: Missing required posters, missing safety protocols, improper accommodation of disabilities, or other employment law violations can result in fines.

Solution: Audit your HR practices and employment agreements against federal and state law. Fix any obvious gaps. Some states are strict; ensure you're compliant with your state's requirements.

Legal and Governance Red Flags

Founders or key people with non-competes or restrictive covenants: If your CTO signed a non-compete with their previous employer and they're working for you, that company could sue. If you're sued, investors will get nervous.

Solution: Have key team members review any non-competes or restrictive covenants from previous employment. If there's a potential conflict, get legal counsel advice. Some states don't enforce non-competes; in others, they're enforceable. Address this proactively by getting confirmations that non-competes won't be enforced or getting letters from previous employers waiving enforcement.

Pending litigation or disputes: Lawsuits, regulatory investigations, or disputes with customers/vendors will be discovered and will cause concern.

Solution: Disclose all outstanding litigation upfront. Explain what the dispute is, your position, likely outcome, and financial exposure. Most startups have some dispute; the issue is hiding it. Show that disputes are being resolved and are unlikely to significantly impact the business.

Ambiguous cap table or equity disputes: If there's ambiguity about who owns equity, or if co-founders are in dispute about ownership, this needs resolution before funding closes.

Solution: Get a clean cap table with everyone's ownership clearly documented and agreed. If there are disputes, resolve them through negotiation or, if necessary, legal action. Investors won't invest if there's ambiguity about who owns the company.

Missing board meeting minutes or shareholder approvals: If major decisions (like issuing equity or bringing on investors) weren't formally authorized by the board, this is a governance issue.

Solution: Document all board decisions retroactively if needed. Have the board pass resolutions authorizing major actions. Going forward, have board meetings and maintain minutes. Proper governance signals you're thinking about corporate structure seriously.

Operational Red Flags

Key person dependency: If the company is dependent on one person (the founder or a critical employee), and that person could leave, investors worry about continuity. What happens if your CTO leaves? Your CEO? Your only salesperson?

Solution: Distribute knowledge and responsibility. Train team members on critical processes. Document important procedures. Have plans for hiring/backfill if key people leave. Insurance or bonus retention structures (equity vesting tied to staying) can also help. Show investors that you've thought about key person risk.

No documented HR or employment practices: If you have no employee handbook, no offer letter template, no clear compensation structure, investors will worry about chaos.

Solution: Create basic HR documentation: offer letter template, employee handbook, policy on time off and benefits. Nothing fancy required; just basic structure showing you've thought about employee management.

Undocumented or informal advisor/consultant relationships: If you have advisors or consultants without written agreements, and if they've contributed to the product, investors will worry about IP or obligation to compensate them.

Solution: Get written agreements with all advisors and consultants clarifying scope, compensation, and IP assignment. If someone has already contributed and you don't have an agreement, get one retroactively or compensate them for their contributions.

Technical Red Flags

No documentation or code repository: If your code isn't in a version control system or is inaccessible to your team, that's a red flag for technical maturity.

Solution: Get your code organized in a version control system (GitHub, GitLab). Document architecture and setup instructions. A organized codebase shows technical maturity.

Massive technical debt or poorly structured code: If investor CTOs review your code and find it's a mess, that signals either poor engineering or extreme time pressure. Either way, it's a concern.

Solution: Clean up before due diligence. Add comments, improve organization, add tests if you have time. You don't need perfect code, but code that's organized and maintainable shows technical competence.

Security vulnerabilities or data breaches: If you've had a security incident or your code has obvious security vulnerabilities, investors will flag this.

Solution: Conduct a security audit before due diligence. Fix critical vulnerabilities. If you've had a breach, disclose it fully and show what you've done to prevent recurrence. Security incidents aren't automatically deal-killers, but hiding them is.

No monitoring or alerting: If your systems have no monitoring and you don't know when something breaks until customers complain, that signals you're not ready for operating at scale.

Solution: Implement basic monitoring (alerts when your service is down or degraded) and logging. This shows you take operations seriously.

Market and Product Red Flags

Unclear value proposition or weak product-market fit: If investors don't understand what problem you solve or why customers need you, that's a problem.

Solution: Be crystal clear about your value prop. Show evidence of product-market fit: customers willing to pay, growing demand, retention. If you don't have proof of product-market fit yet, have a compelling hypothesis and plan to prove it.

Large existing competition with entrenched customers: If you're competing against well-funded incumbents and you don't have a clear differentiation, investors will worry about your ability to win.

Solution: Own your positioning and differentiation. Why are you better? What do you do that incumbents don't? Show traction that proves your approach is working.

Addressing Red Flags During Due Diligence

If an investor discovers a red flag you didn't disclose upfront, immediately:

1. Acknowledge it: Don't try to spin or downplay. "Yes, we discovered this issue..." shows you're being honest.

2. Explain it: Why did it happen? What was the context? Understanding helps investors judge severity.

3. Show your plan to fix it: What are you doing about it? Timeline for resolution? Cost? Investors want to see action, not excuses.

4. Provide transparency: Share documentation, test results, professional opinions (from lawyers, accountants, etc.) that support your position.

5. Adjust expectations if needed: If a red flag is significant, be willing to adjust valuation, terms, or timeline to reflect the additional risk.

Key Takeaways

• IP ownership is paramount: Ensure all founders and employees have assigned IP to the company. Missing IP assignments are deal-killers.
• Financial transparency is essential: Reconciled financials, clean documentation, and honest metrics build trust. Unreconciled financials or hidden decline destroy it.
• Tax compliance is non-negotiable: Missing tax filings or unpaid taxes are serious liabilities. Address proactively.
• Customer concentration is a risk: Diversify your customer base and get renewal commitments from major customers.
• Governance matters: Clean cap table, documented equity, board minutes, and formal decisions show maturity.
• Key person risk is real: Recognize it and address it through documentation, team development, and retention structures.
• Honesty beats hiding: When issues are discovered, honesty with a clear plan is far better than attempting to hide or minimize.

FAQ: Red Flags and Due Diligence

Q: If I have a red flag I've known about, should I disclose it proactively or wait for investor discovery?
A: Disclose it proactively. If you wait for discovery, it looks like you were hiding it, which damages trust. Proactive disclosure shows honesty and allows you to control the narrative. "We've identified this issue and here's our plan to fix it" is far better than investors discovering it and wondering why you didn't mention it.

Q: How serious are different red flags?
A: IP ownership issues and major financial problems (missing filings, significant liability) are the most serious. Some red flags (unorganized documentation, no employee handbook) are moderate and easily fixed. Others (declining revenue, high churn) are concerning but addressable with a clear plan. Severity depends on context and your solutions.

Q: Can a red flag kill a deal?
A: Yes, major IP issues, undisclosed litigation, or significant financial liability can kill a deal if left unresolved. But most red flags can be resolved or overcome if you address them directly and show a clear plan to fix them.

Q: If I find a red flag during due diligence prep, should I fix it before telling investors?
A: It depends on severity and timeline. If it's a quick fix (signing IP assignments), fix it before due diligence. If it's more complex (resolving legal dispute), disclose what you've found and show your plan. Don't hide it, but having solutions in progress looks better than just surfacing the problem.

Q: How do I know if something is a red flag before due diligence?
A: Be proactive. Review your own documents, financials, and operations for the issues listed in this guide. If something looks questionable to you, it'll definitely look questionable to investors. Address it before they find it.