How To Evaluate A Company

Thinking about buying a company, taking a strategic stake, or partnering with another business? Great opportunities do pop up - but before you sign anything, you’ll want a clear, structured way to evaluate the company in front of you.

In the UK, a solid evaluation (often called “due diligence”) goes beyond headline revenue or brand buzz. You’re checking legal compliance, contracts, liabilities, people, IP, data protection and the nuts and bolts that actually make the business work. Done well, this process protects you from nasty surprises and helps you negotiate a fair price.

In this guide, we’ll walk you through how to evaluate a company step by step under UK law, what to look for, which documents to request, and common red flags. We’ll also share how good legals fit into the process so you’re protected from day one.

Why Evaluate A Company Before You Buy, Partner Or Invest?

Evaluating a company isn’t about being pessimistic - it’s about buying with confidence. You’re answering three big questions:

• Is this business what it says it is (and worth what the seller claims)?
• What legal, financial or operational risks am I inheriting?
• What will I need to fix or negotiate before completion to protect my investment?

In the UK, your evaluation also needs to map to specific legal requirements and practices - from Companies House filings to UK GDPR, from consumer law to employment obligations. A thorough review lets you align price, deal structure and protections with reality.

Just as important, a systematic evaluation helps you avoid post-completion disputes. For example, if key client contracts aren’t transferable, or the business is missing a Privacy Policy despite collecting customer data, those issues carry cost and risk that need to be factored into the deal.

Step-By-Step Company Evaluation Checklist

Use this high-level checklist to structure your review. You can run these steps in parallel, but keeping them in this order helps you build the full picture efficiently.

1) Clarify Deal Scope And Structure

• Asset purchase vs share purchase: Are you buying selected assets (brand, stock, IP, customer lists) or the shares of the company (including its liabilities)? The legal protections and risks differ considerably between an Business Sale Agreement (asset purchase) and a Share Sale Agreement (share purchase).
• Minority investment or JV: If you’re taking a stake or forming a joint venture, plan governance up front (board seats, veto rights, dividend policy) and line up a fit-for-purpose Shareholders Agreement.
• Confidentiality: Before exchanging sensitive information, get a robust Non-Disclosure Agreement signed.

2) Request A Targeted Document List

Ask for the essentials first, then widen the net as needed:

• Corporate: Certificate of incorporation, Articles, share register, PSC register, board and shareholder resolutions, group structure chart.
• Financial: Last 3–5 years’ accounts, management accounts, cash flow, aged payables/receivables, tax filings, VAT/PAYE records, outstanding HMRC correspondence.
• Contracts: Top 20 customer/supplier agreements, leases, finance agreements, warranties, maintenance/support contracts, distributor and reseller agreements, software licences.
• Regulatory & legal: Licences and permits, key policies (privacy, cookies, AML where applicable), insurance schedules and claims history, ongoing disputes or complaints.
• Employment: Employee list, roles, salaries and benefits, template Employment Contract, Staff Handbook, bonus/commission plans, contractor agreements.
• IP & brand: Trade marks, domain ownership, IP assignments from staff/contractors, product registrations, evidence of ownership over logos, code and creative.
• Data & tech: Data maps, security standards, DPIAs where relevant, breach logs, third-party processors, cookies and tracking design.

3) Validate The Numbers And The Narrative

• Reconcile management accounts to filed accounts at Companies House.
• Match revenue claims to signed contracts and bank statements.
• Check seasonality, customer concentration and churn against pipeline reality.

4) Identify Legal Gaps And Transfer Issues

• Are critical contracts assignable or do they need consent/novation?
• Are there change-of-control clauses triggered by a share sale?
• Do licences and insurance policies transfer on completion?

5) Price And Protect

• Adjust price for capex catch-up, contingent liabilities or required hires.
• Bake protections into the deal: warranties, indemnities, escrow, earn-outs, completion accounts and post-completion covenants.

6) Plan Day-One Compliance And Integration

• Line up core documents (privacy, employment, supplier/customer terms) to ensure continuity and compliance.
• If you’re rebranding or expanding, consider whether to register a trade mark early.

Legal Due Diligence Under UK Law: What To Review

Legal DD is where many deals are won, lost or re-priced. Here’s a focused UK checklist - along with the laws it touches - to help you cover the essentials.

Corporate And Governance

• Companies House filings: Confirm that accounts and the Confirmation Statement are up to date under the Companies Act 2006.
• Share capital and rights: Review the Articles for pre-emption, drag/tag and transfer restrictions, and make sure the cap table matches reality.
• Board minutes and authority: Ensure material decisions were properly authorised and no undisclosed side agreements exist.

Contracts And Commercial Rights

• Customer and supplier agreements: Identify change-of-control clauses, exclusivity, termination for convenience and onerous SLAs.
• Transferability: Asset deals often require assignment or a Deed of Novation for key contracts - get a schedule in place and factor timings into completion.
• Consumer-facing businesses: Check compliance with the Consumer Rights Act 2015 (clear pricing, fair terms, refunds/returns) and advertising standards. If relevant, review your broader obligations under consumer protection laws.

Intellectual Property

• Ownership chain: Confirm assignments from employees/contractors for software, content and designs - gaps are common and fixable pre-completion.
• Registrations: Audit trade marks and domains; watch for lapsed renewals or registrations in the wrong entity.
• Third-party code and licences: Validate open-source use and commercial licences to avoid infringement risk.

Data Protection & Privacy

• UK GDPR/Data Protection Act 2018: Check legal bases for processing, data maps, privacy notices, processor contracts and international transfer mechanisms.
• Website compliance: Ensure a visible and accurate Privacy Policy, proper cookies consent and records of consent where required.
• Security and incidents: Review breach logs, DPIAs and technical controls; frequent or unreported incidents are red flags.

Employment

• Employment Rights Act 1996 compliance: Written particulars, working time, holiday accrual, national minimum wage and right-to-work checks.
• Status risks: Contractors misclassified as workers/employees can mean back pay and tax exposure.
• Incentives and restrictive covenants: Confirm enforceability and whether options or bonuses are triggered by the deal.

Regulatory, Health & Safety, Sector-Specific

• Licences and permits: Alcohol, food hygiene, FCA permissions, Ofcom or sector regulators depending on the business.
• Health and Safety at Work etc. Act 1974: Risk assessments, RIDDOR reports and any enforcement notices.
• Bribery Act 2010 and Modern Slavery Act statements (if thresholds apply): Confirm policies and training are in place and proportionate to risk.

Disputes, Insurance, Tax

• Claims and complaints: Assess exposure from current or threatened litigation and significant customer complaints.
• Insurance: Adequacy, exclusions and claims history for public/Product liability, professional indemnity and cyber.
• HMRC: VAT/PAYE compliance, time-to-pay arrangements, and any enquiries or penalties; confirm corporation tax filings and reliefs are correct.

If you want a structured, lawyer-led process, a scoped Legal Due Diligence Package can quickly surface issues, help you prioritise fixes and align protections with what you’ve found.

Financial And Commercial Red Flags To Watch

Your accountants will lead the financial review, but legal and commercial context matters. Keep an eye out for:

• Customer concentration: If 30–60% of revenue comes from one client, expect tougher warranties/earn-outs or a price adjustment.
• Negative cash flow masked by deferred revenue: Check contract terms, delivery obligations and refund policies.
• Unrecorded liabilities: Holiday pay accruals, dilapidations on leases, warranties and indemnities hidden in sales contracts.
• Inventory issues: Obsolescence, consignment arrangements, or stock titles retained by suppliers.
• Aggressive revenue recognition: Match invoices to contractual milestones and acceptance criteria.
• Short-dated leases and licences: Renewal risk can materially impact value or location-dependent businesses.

Valuation Methods (And How Legal DD Affects Them)

For smaller UK businesses, valuation commonly uses:

• EBITDA multiples: Adjusted for owner remuneration (SDE), add-backs and normalisation - but reduce multiples for high customer concentration or short contract terms.
• Revenue multiples: Used in fast-growing SaaS or marketplaces; depend heavily on churn, gross margin and customer lifetime value, all of which rest on the contract base.
• Asset-based: Appropriate for asset-heavy businesses (plant, property, vehicles) or where earnings are volatile.
• Discounted Cash Flow: Sensitive to assumptions; legal risks (e.g. unassignable contracts, licence gaps) should be reflected in discount rates or scenario cases.

As you tighten valuation, translate legal findings into numbers - capex to remedy compliance, run-rate for new hires (e.g. DPO support), expected churn from non-transferable contracts, or one-off costs to bring policies and insurance up to scratch.

People, Policies And Operational Risks

Businesses are built by people and processes. A smooth handover and day-one compliance will protect value and keep momentum.

Key People And Retention

• Founder dependency: If the owner holds critical relationships or unique know-how, consider transitional consultancy, earn-out conditions and clear handover plans.
• Retention: Identify must-keep staff and align incentives; review notice periods and restrictive covenants for protection.

Policies, Systems And Controls

• Policies: Privacy, data retention, information security, whistleblowing, anti-bribery and employment policies should be real and in use - not just PDFs on a server.
• Handbook & training: A clear Staff Handbook and onboarding programme reduce HR disputes and operational risk.
• Tech stack & access: Who holds admin rights? Map out credentials, disaster recovery and vendor dependencies.

Integration And Transfer Practicalities

• Contracts and data: Plan assignments/novations and explain changes to customers; don’t move personal data without a legal basis and proper notices.
• Brand and assets: Confirm who owns domains, social media handles and creative; if you’re rebranding, line up new filings and consider early trade mark protection.
• Policies and processes: If your standards are higher than the target’s, identify quick wins for day one (e.g. rolling out a compliant Privacy Policy and consistent employment templates).

Locking In The Deal: Protections And Paperwork

Once you’re happy with the evaluation, your contracts should reflect what you’ve discovered.

Typical Buyer Protections

• Warranties and indemnities: Tailored to the risks you found (e.g. IP ownership, tax, data protection, undisclosed liabilities).
• Escrow/retention or earn-out: Hold back part of the price pending certain outcomes or the discovery period.
• Conduct covenants: Keep the business in the ordinary course between exchange and completion; restrict leakages.
• Restrictive covenants: Non-compete and non-solicit clauses to protect goodwill.

Which Agreement Do You Need?

• Assets: A Business Sale Agreement to set out exactly what’s transferring (and what’s not), plus TUPE and novation schedules where needed.
• Shares: A Share Sale Agreement covering title, warranties, tax and completion mechanics.
• Minority deals: A robust Shareholders Agreement for governance, exits and protections.

Before you exchange sensitive information at any stage, put an NDA in place, and if you’re taking on the seller’s customer base or systems, line up any required Deeds of Novation in your completion checklist.

Day-One Documents

Don’t forget the basics you’ll want from day one:

• Updated Privacy Policy and cookies disclosures aligned with your practices.
• Consistent Employment Contract templates, plus a coherent Staff Handbook and incentive letters.
• Supplier and customer terms that reflect your service levels, liability caps and payment terms.

Common Pitfalls (And How To Avoid Them)

• Relying on “paper value”: Always tie back to contracts, cash and compliance. If it isn’t documented, discount it.
• Skipping transfer mechanics: Missed change-of-control or non-assignable contracts can stall or kill value - plan assignments and consents early.
• Underestimating compliance fixes: Budget real time and cost for data, employment and consumer-law gaps.
• Forgetting integration: Value can leak post-completion without a practical 30/60/90‑day plan.
• DIY documents: Templates rarely fit your risk profile - get key deal documents tailored to your circumstances.

Key Takeaways

• Evaluate a company with a clear structure: confirm the deal type, gather core documents, validate the numbers and map legal risks to price and protections.
• Legal due diligence should cover corporate governance, contracts, IP, data protection, employment, tax, regulatory and insurance - and tie each finding to a practical fix.
• Reflect your findings in the paperwork: the right mix of warranties, indemnities, escrow/earn‑outs and completion mechanics in a tailored asset or share sale agreement.
• Plan assignments, consents and novations early so critical contracts and data can legally transfer on day one.
• Line up day-one compliance: privacy notices, employment documents and standard terms so you’re protected from day one.
• If you want a streamlined process, a scoped Legal Due Diligence Package and tailored transaction documents will save time and reduce risk.

If you’d like help evaluating a company, structuring your deal or preparing the right documents, our team can guide you through the process. You can reach us at 08081347754 or team@sprintlaw.co.uk for a free, no‑obligations chat.