What Is Due Diligence? A Practical Guide For New Zealand Businesses

If you’re buying a business, raising investment, taking on a major supplier, or signing a long-term lease, you’ll probably hear the phrase “due diligence” pretty early on.

But what is due diligence, really?

In simple terms, due diligence is the practical process of checking the facts before you commit to a deal. It’s how you confirm you’re getting what you think you’re getting, understand the risks, and make sure your business is protected from day one.

Below, we’ll walk you through what due diligence involves in a New Zealand context, when you should do it, what to look for, and how to run a due diligence process that’s thorough (without becoming overwhelming).

What Is Due Diligence (And Why Does It Matter)?

Due diligence is a structured investigation you do before entering into a transaction. The goal is to verify key information, identify risks, and decide whether to proceed (and on what terms).

For small businesses and startups, due diligence usually happens in situations like:

• Buying or selling a business (share sale or asset sale)
• Raising capital (investors doing due diligence on your startup)
• Entering a joint venture or strategic partnership
• Signing a commercial lease or taking an assignment of a lease
• Engaging key suppliers or outsourcing critical parts of your operations
• Acquiring intellectual property (like software, a brand name, or a product design)

It matters because once the contract is signed, your options can be limited. Due diligence is your chance to spot red flags early, negotiate protections into the documents, or walk away if the risk simply isn’t worth it.

From a legal perspective, due diligence also helps you avoid situations where you’ve relied on incomplete (or misleading) information. In New Zealand, issues around misleading statements can intersect with laws like the Fair Trading Act 1986 and contract law principles around misrepresentation.

When Should You Do Due Diligence?

A good rule of thumb: do due diligence whenever you’re about to make a commitment that could be expensive, hard to unwind, or business-critical.

In practice, due diligence usually happens after:

• you’ve agreed commercial terms in principle (often in a heads of agreement/term sheet), and
• before the deal becomes unconditional and locked in.

If you’re buying a business, for example, it’s common for the agreement to be conditional on the buyer completing due diligence and being satisfied with the results. Once the conditions are met (or waived), the agreement may become unconditional and you’re committed.

That timing is important: if you wait until the deal is already unconditional, you’re no longer using due diligence as a risk-management tool-you’re just discovering problems you now have to live with.

If you’re in a buying process, it’s also worth having a clear plan for the documents early on (for example, an Legal Due Diligence scope) so you don’t burn time chasing information after deadlines are already looming.

What Does Due Diligence Cover For NZ Businesses?

Due diligence isn’t one single checklist that fits every deal. What you review depends on what you’re buying (or committing to), how big the transaction is, and what the risks are.

That said, most New Zealand due diligence processes fall into a few core areas.

1) Legal Due Diligence

Legal due diligence is about confirming the business is legally set up properly and identifying contractual, compliance, and dispute risks.

This often includes reviewing:

• Business structure and ownership (who owns what, and whether the seller has the right to sell it)
• Company records (for companies, this might include share registers, director resolutions, and key governance documents)
• Key contracts with customers, suppliers, contractors, and partners
• Employment arrangements (including whether agreements are compliant and whether there are disputes in the background)
• Leases and property arrangements
• IP ownership (trade marks, software, domain names, branding, content)
• Privacy and data handling (especially if the business collects customer data)
• Regulatory compliance relevant to the industry (licences, sector rules, health and safety obligations)

For example, if the business has staff, you’ll want to check whether there are signed Employment Contract documents in place, and whether any arrangements (like commissions, bonuses, or restraints) are clearly documented.

If the business collects personal information (names, emails, addresses, customer booking data), privacy compliance is often part of legal due diligence under the Privacy Act 2020. That can include reviewing whether there’s a fit-for-purpose Privacy Policy and whether the business has sensible practices around storage, access, and disclosures.

2) Financial Due Diligence

Financial due diligence is about verifying the numbers and understanding what the business’s financial position actually looks like.

This commonly includes:

• historical financial statements and management accounts
• bank statements and cashflow patterns
• customer concentration (are they relying on one big client?)
• debts, liabilities, and any unusual expenses
• tax compliance (often with an accountant)

Even if you’re not an accountant, you can still use the due diligence process to ask practical questions, like whether revenue is recurring, how seasonal the business is, and how reliable the margins are once owner drawings are accounted for. For anything tax-specific (and to confirm what’s actually been filed and paid), it’s usually best to have a qualified accountant or tax adviser involved.

3) Commercial And Operational Due Diligence

This is where you look at how the business runs day to day, and whether it can keep running after the deal completes.

Depending on the business, that may involve:

• systems and processes (including key software subscriptions)
• supplier reliability and lead times
• stock management and quality control
• customer service practices and complaint history
• staff capabilities and whether key roles are covered

For startups, operational due diligence may also include product roadmap, tech stack, and security practices (especially if you’re handling sensitive customer data).

4) Property And Lease Due Diligence

If the business operates from premises, the lease can be a make-or-break issue.

You’ll typically want to understand:

• the remaining lease term and any renewal rights
• rent review mechanisms and outgoings
• make good obligations at the end of the lease
• permitted use (does it actually allow your intended operations?)
• assignment rules (if you’re taking over an existing lease)

It’s common to get a Commercial Lease Review before you sign, especially if you’re committing to a long lease term or significant fit-out costs.

How Do You Run A Due Diligence Process Without Missing Key Risks?

Due diligence can feel like a mountain of documents, especially if you’re juggling the rest of your business at the same time.

A practical approach is to treat due diligence like a project, with a scope, timeline, and clear decision points.

Step 1: Define What You’re Actually Checking

Before you ask for documents, get clear on your goals. Ask yourself:

• What would make this deal a “yes” for us?
• What are the top 5 risks we’re most worried about?
• What must be true for the deal to work financially?
• What would be a dealbreaker?

This helps you avoid “document overload” where you collect everything but don’t focus on what matters.

Step 2: Request Documents Early (And Expect Gaps)

Most due diligence is based on what the other party provides. In a perfect world, it’s complete, organised, and up to date. In the real world, especially with small businesses, there are often gaps.

Gaps don’t automatically mean the deal is bad, but they do mean you should slow down and understand:

• why the document is missing, and
• what risk that creates for you.

For example, if key supplier agreements are “handshake deals” only, you might want those relationships formalised before completion (or a price adjustment to reflect the risk).

Step 3: Review The Transaction Structure (Asset Sale Vs Share Sale)

One of the biggest “high-level” due diligence items is understanding what you are buying.

• Asset sale: you purchase selected assets (like equipment, stock, customer contracts, IP), and the contract usually specifies which liabilities (if any) you’re taking on. Some obligations can still follow the business in practice (for example, where employees transfer, or where a contract is assigned on specific terms), so it’s important the deal documents match the commercial reality.
• Share sale: you buy the shares in the company, meaning you take ownership of the company as-is (including its assets and its existing liabilities, known and unknown).

This structure affects what you need to check. In a share sale, due diligence often focuses heavily on hidden liabilities, past compliance issues, employee risks, and any disputes sitting inside the company.

If you’re preparing a deal document (or reviewing one) it’s worth having the right contract in place for the structure you’re using, such as an Asset Sale Agreement (for an asset purchase) or a Share Sale Agreement (for a company acquisition).

Step 4: Turn Findings Into Negotiation Points (Not Just Notes)

Due diligence is only useful if it changes the outcome.

Common outcomes include:

• Proceeding as planned (you’re satisfied)
• Renegotiating price (risk discovered, value adjusted)
• Adding special conditions (e.g. key contracts must be signed before completion)
• Requesting warranties/indemnities from the seller
• Walking away (if the risk is too high)

For small businesses, the practical “win” is often getting clearer documentation and stronger protections in the contract so the risk doesn’t fall on you after settlement.

What Are Common Due Diligence Red Flags (So You Can Spot Them Early)?

Some issues are common in New Zealand SME deals. Seeing one red flag doesn’t always mean you should walk away, but it should prompt questions and careful drafting.

Unclear Ownership (Especially IP And Customer Data)

It’s surprisingly common for businesses to assume they “own” a website, logo, or software build, when in reality it was created by a contractor and never properly assigned.

If IP ownership isn’t documented, you may be paying for something the seller can’t legally transfer.

Missing Or Unenforceable Contracts

If the business’s major customer relationships are not backed by signed agreements (or the agreements are expired), revenue may be less stable than it looks.

The same applies to supplier deals, referral arrangements, and partnership arrangements. If it matters to the business, it should be documented.

Lease Problems

For premises-based businesses, red flags include:

• a short remaining term with no renewal rights
• rent reviews coming up soon (especially market reviews)
• strict “make good” obligations that could be expensive
• use clauses that don’t match actual operations

These issues are often fixable, but usually only if you identify them before you commit.

Employment And Contractor Misclassification

If the business relies heavily on contractors, due diligence should check whether they’re genuinely contractors or whether they could be treated as employees under NZ law (which can create backpay, holiday pay, and other employment risks).

Clear agreements help, but labels alone aren’t enough-it’s also about the reality of the working relationship.

Compliance Gaps (Privacy, Consumer Law, Health And Safety)

If the business sells to consumers, advertising and sales practices should align with the Fair Trading Act 1986 and Consumer Guarantees Act 1993 (for example, around misleading claims and guarantees).

If the business collects customer data, privacy compliance under the Privacy Act 2020 should be part of the picture (and not an afterthought).

And if the business has a workplace or physical operations, health and safety duties apply under the Health and Safety at Work Act 2015.

Due Diligence For Startups: What Investors Usually Look For

If you’re a startup founder, you may be on the other side of the table: an investor is asking you for documents as part of their due diligence.

It can feel intense, but it’s also a good sign-serious investors want to confirm the foundations are solid.

Startup due diligence commonly focuses on:

• Company structure (is the entity set up correctly?)
• Cap table and share issues (who owns what, and are there any messy promises?)
• Founder arrangements (what happens if a co-founder leaves?)
• IP ownership (does the company own the product and brand?)
• Key contracts (customers, suppliers, contractors)
• Privacy and security (especially if you process personal information)
• Employment and incentives (including any option plans or bonuses)

If you’re preparing for fundraising, it’s worth getting your “legal house” in order early. For example, having a clear Shareholders Agreement can help clarify decision-making, share transfers, and what happens if someone exits.

And if your company relies on custom rules (beyond the default Companies Act settings), an up-to-date Company Constitution can be important, especially when you start bringing on investors and issuing different classes of shares.

Investors aren’t looking for perfection. They’re usually looking for clarity, honesty, and sensible risk management.

Key Takeaways

• Due diligence is the process of checking key facts and risks before you commit to a deal, so you can negotiate protections, adjust price, or walk away if needed.
• Legal due diligence typically covers ownership, contracts, employment arrangements, leases, intellectual property, privacy compliance, and any disputes or liabilities.
• Financial and operational due diligence helps you verify the numbers, understand cashflow realities, and confirm the business can operate smoothly after completion.
• The transaction structure matters-what you need to check changes depending on whether it’s an asset sale or a share sale.
• Common red flags include missing contracts, unclear IP ownership, lease problems, misclassified contractors, and compliance gaps under NZ consumer, privacy, and health and safety laws.
• For startups, investor due diligence usually focuses on structure, cap table, founder arrangements, IP ownership, and key contracts-getting these right early can make fundraising smoother.

If you’d like help running due diligence, reviewing a deal, or getting your legal foundations in place before you commit, you can reach us at 0800 002 184 or team@sprintlaw.co.nz for a free, no-obligations chat.