Part 1: AI, Risk, and Reps: A Practical Guide for German Start-ups Raising International Venture Capital - From Model Docs to Market Reality

Orrick Legal Ninja Snapshots
18 minute read | April.08.2026

Prefer to listen?
Enjoy this text-to-speech recording of this article:

As artificial intelligence reshapes industries, venture capital documentation has to evolve quickly to address new risks and opportunities. The latest iterations of both the NVCA Model Documents and BVCA standard forms introduced sophisticated AI-related representations and warranties that reflect investors' growing focus on AI governance, data usage and regulatory compliance.

For German founders raising capital from international investors – or simply preparing for future rounds and that desired big-ticket M&A exit – understanding these new expectations isn't optional.

Drawing on our experience advising on both sides of the Atlantic, including direct involvement in the BVCA working group that shaped the latest UK standards, this two-part mini-series provides German entrepreneurs with practical insights into navigating the new AI representation landscape. In the Anglo-Saxon legal world, people draw an astonishingly fine line between "representations" and "warranties" – a distinction that tends to cause puzzled looks in German contract negotiations and usually ends up tossed into the same synonym bucket during translation. Since we don’t intend to venture into the murky depths of Common Law here, and German practice typically lumps both terms together under "guarantees" anyway, we’ll simply refer to them as "warranties" for the sake of simplicity.

We'll decode what these clauses actually mean, why investors care and how to position your company for success in an increasingly AI-conscious funding environment.

This Legal Ninja Snapshot …

This two-part mini-series is structured as follows:

Part 1 presents the new AI warranties in the BVCA and NVCA model documentation and how they are redefining venture capital due diligence
Part 2 gives German founders guidance on how to future-proof their start-ups for US investors' and buyers' due diligence
- VI. The German Twist: Why Copy-Paste Won’t Cut It
- VII. Wrap-up and Future Proofing

…and Much More in OLNS#9 and OLNS#13

For comprehensive background information on raising capital from investors and M&A processes, we refer you to our OLNS#9 – Venture Capital Deals in Germany and our OLNS #13 – M&A in German Tech.

I. The New Due Diligence Reality: AI Risks Investors Can't Ignore

The artificial intelligence era isn't just changing how start-ups operate – it's rewriting the playbook for venture capital and M&A transactions. AI-native companies are reaching unicorn status at breakneck speeds, building their entire business models around machine learning capabilities. While we're not (yet) in a world where a chatbot assisted solo founder can conjure up a billion-dollar company overnight, the impact of AI on the start-up landscape is undeniable.

This transformation touches every corner of start-up life. Off-the-shelf AI tools let founders experiment and iterate faster than ever, but a real competitive edge seems to come from building proprietary AI systems using carefully curated datasets. With that, questions about data provenance, model training and algorithmic transparency move from the engineering machine floor to the board room (okay, that was a bit cheesy).

But it is true – here's where things get interesting for investors and buyers: the old diligence checklists no longer cut it. Now, investors and acquirers are digging deeper, scrutinizing how start-ups manage AI-related risks, from data access and model explainability to ethical use and regulatory compliance. Whether you're raising your next round or prepping for an exit, your AI strategy and governance might well be front and center in the evaluation process. We’ve seen that, as this new wave of AI deals began, investors and buyers often struggled to accurately price the market – leading in some instances to complex price adjustments, convoluted anti-dilution provisions and layered liquidation preferences. Today, with the bar for due diligence and warranty coverage set higher than before, founders need to watch out for new pitfalls that can arise from these more rigorous processes.

II. Decoding the Three Clusters of AI Risk

For founders trying to attract investors, this means you will have to understand the risks they are concerned about and address them early on in your growth trajectory.

We find it helpful to break down the legal and regulatory landscape into three interconnected clusters (or, if you prefer, buckets) that capture the essence of AI-related risk:

Training corpus integrity is fundamentally about the data feeding your AI. Are you sourcing it lawfully, protecting sensitive information and respecting user consent when required to do so? This means ensuring that only compliant data goes into your AI system. Getting this wrong opens you up to potential data protection law breaches, intellectual property (IP) rights violations and other regulatory compliance risks. Your AI output can become biased or inaccurate in ways that pose serious business risks based on your training data selection and training methods.
System integrity covers how your AI operates and how you manage it on an ongoing basis. Are you using AI tools within legal boundaries, maintaining clear governance policies and planning for what happens if critical technology becomes unavailable? This is crucial because without proper backup and continuity plans, losing access to key AI technology could disrupt your business, expose you to compliance risks and affect your company’s reputation and roadmap. As an element of system integrity, consider data separation measures and model hosting structures to ensure that proprietary data stay segregated from broader uses with third parties. Privacy and data protection of user data also can be an issue of system integrity and making clear rules of the road for when user interaction data can be used for improving models.
Output integrity focuses on what your AI delivers, particularly when it comes to the generation of IP. This gets complicated, since IP laws were generally designed to protect human creations. Purely AI-generated content is usually ineligible for IP protection. The good news is that some AI outputs may at least qualify for trade secret protection if treated accordingly. In any case, you must also ensure you're not infringing on anyone else's IP, and if you're claiming IP rights regarding AI outputs, you'd better be able to prove those rights actually exist.

Of course, this cluster framework is a simplification – AI governance is a tangle of edge cases, overlapping jurisdictions and evolving standards that resist neat categorization. But thinking in terms of training corpus, system and output integrity gives you a practical roadmap for navigating the maze of legal requirements and risk management.

With this structure in mind, let's look at how recent AI developments have changed the way investors and buyers approach warranties in VC and M&A deals – and what that might mean for the future.

III. The Purpose of Warranties

Venture capital investors – and even more so, buyers in M&A transactions – aren't just looking at your pitch deck and codebase. They want legal assurances that your business is what you say it is, especially when it comes to AI. Enter the world of warranties. Without getting lost in legal jargon, here's the gist: warranties are formal promises in your transaction documents that certain facts about your company are true, and if they turn out not to be, you're on the hook to fix it (or pay for it). They're essential in venture capital and M&A deals because they give investors and buyers confidence that you've done your homework and a legal remedy if you haven't. When they're well-crafted, warranties build trust, clarify obligations and they set clear liability limits.

If you're drafting or reviewing warranties, it's smart to start with the model documents from the industry's heavyweights. In the US, the National Venture Capital Association (NVCA) has set the gold standard since 1973 with its widely used "NVCA Model Legal Documents." These are the go-to templates for American VC deals and often serve as a reference point for international investors. If you want to learn more about the NVCA model docs and how they compare to German market practices, our OLNS#11 – Bridging the Pond is a great starting point.

Across the Pond, the British Venture Capital Association (BVCA) plays a similar role in the UK. While BVCA templates aren't quite as universally adopted as their NVCA counterparts and continue to be up for continued adjustments and negotiations, they've gained significant traction and are increasingly influential in cross-border deals.

Both the NVCA and BVCA have recently updated their model documents to address the growing importance of AI. The NVCA's Stock Purchase Agreement and the BVCA's Subscription Agreement now include comprehensive AI-specific warranties – essentially, checklists and toolkits for tackling AI risks in VC transactions. For M&A, AI related representations have equally become market, and are often more detailed and robust than the warranties in the NVCA and BVCA forms for earlier stage companies. Buyers often differentiate between AI reps for target companies using AI (deployers) and targets offering AI products or services (developers). The representations roughly follow the clusters of AI risk described earlier and you need to expect scheduling obligations around training data sources, related contracts and proprietary AI systems and third-party AI systems too. To ensure you are not running into a scheduling burden when you are in the middle of the transaction (that is, if you are the target), it is recommended that you implement an internal tracking system from the get-go.

In Germany, the legal equivalent to the US Stock Purchase Agreement or the English Subscription Agreement is the Investment Agreement, which typically contains a broad set of warranties given by the company and (here German market standards still annoyingly differ from international standards) the founders. In order to understand how the German market approach to AI-related warranties will likely develop, it is helpful to understand the NVCA and BVCA approaches as they will be the reference point for Anglo-American investors and their legal counsels when pulling up German investment documents.

IV. NVCA vs. BVCA: How Do Their AI-Related Warranties Stack Up?

As AI becomes a core value driver (and risk factor) for start-ups, both the NVCA and BVCA have updated their model documents to help investors get comfortable with AI-related exposures. But how do their approaches compare, and which is more company- or investor-friendly? Let's break it down with our three-cluster framework: training corpus, system and output integrity.

1. General Scope and Strictness: Different Philosophies

The NVCA Stock Purchase Agreement takes a focused approach, zeroing in on the use of generative AI tools – think large language models and image generators. The reps are relatively general: they require unconditional guarantees for using generative AI tools ("in [material] compliance with the applicable license terms, consents, agreements and laws.") with little room for knowledge qualifiers or carve-outs.

The BVCA, by contrast, casts a much wider net. Its warranties explicitly cover all AI and machine learning technologies, not just generative models. While the BVCA language is broader and there is more focus on processes (seems to be a European thing…), it is also in some instances more pragmatic: for example, it explicitly contemplates the option of warranting (material) compliance with AI legislation only "as far as the Company is aware.” In plain English, you're only on the hook for what you actually know (or should know), and you’re judged on the fundamental compliance areas that actually matter – a softer landing for founders. It is worth noting that the new-style BVCA contains a lot more square brackets than prior iterations – a positive in the sense that some of this softer, more founder-friendly language is accessible – but not a guarantee that it won’t be up for negotiation by investors.

2. Training Corpus Integrity: Focused vs. Detailed

NVCA warranties do not explicitly address training corpus integrity and issues around the legality of the underlying data collection. However, this should not be mistaken for a free pass because the associated risks are still covered through the NVCA’s more general warranties such as on compliance with laws and non-infringement of third-party IP rights.

The BVCA, meanwhile, goes into more detail. In particular, the BVCA warranties are explicit about the legality of data collection (including web scraping), demand robust processes for disclosure and audit regarding data provenance and require compliance with license terms for all third-party data. In short: the BVCA wants to know not just what your training corpus is made of, but exactly how you made it. This aligns with the BVCA's new approach to disclosure – they want to ensure information flow from company to investor (the other purpose of warranties) as opposed to solely having warranties that deal with risk allocation. Furthermore, the BVCA explicitly requires that AI systems do not produce inaccurate or biased results, which is tied to the quality of the training corpus.

3. System Integrity: Basic vs. Detailed

On system integrity, the NVCA requires that generative AI tools are used in material compliance with all relevant license terms, consents, agreements and laws. This is a baseline check to ensure your AI systems aren't ticking legal time bombs.

The BVCA, however, layers on more detail. It explicitly references the EU AI Act and data protection rules and goes further by requiring that AI systems do not pose a risk or cause harm. The BVCA also demands that companies have documentation and governance policies in place to ensure ethical use, transparency, and readiness for regulatory scrutiny – including the ability to provide human-readable explanations for AI-driven decisions if a regulator comes knocking. This is a clear nod to the EU's evolving regulatory landscape and the growing expectation that companies can "show their work" when it comes to AI, though interesting to see that investors' expectations on "standard" policies here have yet to be aligned.

4. Output Integrity: Different Focus

When it comes to output integrity, the NVCA and BVCA diverge. NVCA reps require confirmation that generative AI tools haven't been used to develop any material IP in a way that could materially compromise your ownership or rights therein – an explicit nod to IP ownership risks. The BVCA doesn't address IP in its AI reps as directly, but it does require general compliance with applicable laws, which would include laws covering IP rights, and covers IP ownership in its more general IP reps. Notably, the BVCA puts more emphasis on the fairness, accuracy and non-harmful nature of AI outputs, reflecting a broader European focus on ethical and societal impacts.

5. The Verdict

In summary, the BVCA warranties are more specific than the NVCA's. The BVCA approach requires companies to be more proactive, with explicit documentation and governance obligations, and applies to all AI tools, not just generative models. The NVCA warranties, while stricter in their guarantees, are narrower in focus. For founders, the BVCA approach means more paperwork and processing, but also more flexibility (thanks to optional knowledge qualifiers). For investors, the NVCA warranties offer more certainty – at least for the specific risks they cover – while the BVCA warranties provide a more holistic but potentially softer risk allocation.

V. Same, Same, But Different? Why AI-Specific Warranties Matter

When looking at the warranties in both the NVCA and BVCA model form documents, one might wonder what's really new here. Don’t these warranties mainly cover "old" risks using new packaging with some AI terminology sprinkled on top?

To some extent, the answer is "yes" – and yet it's advisable to prepare for specific AI-related warranties. There's certainly overlap between the AI-specific warranties and the catalogues dealing with data privacy, cybersecurity and IP rights that have been standard for years.

But don't underestimate the signaling effect of providing potential investors or buyers with specific warranties covering AI. It signals awareness and understanding of AI-related risks. Holding yourself out as an AI startup (and which startup isn't an AI startup these days?) comes with the expectation that you can be more specific in your contractual promises around AI in an acquisition, especially now that the market-defining NVCA and BVCA templates provide specific AI-related warranties.

Besides this signal, there's also a solid practical reason for AI-specific warranties: AI actually enhances and transforms traditional privacy, IP and other risks in ways that merit specific attention and targeted disclosures.

1. AI-Amplified Data Protection and Privacy Risks

AI systems are data-hungry by design, requiring massive datasets often obtained through web scraping, API calls or user-generated content aggregation. This creates risk for personal information that goes beyond traditional data processing:

Scale and Scope: AI training can involve billions of data points, making it challenging to verify that the data used for training has been sourced in compliance with applicable laws.
Cross-Border Complexity: Training datasets often span multiple jurisdictions, creating compliance challenges under different data privacy regimes (e.g., GDPR, UK GDPR, CCPA, CPRA).
Data Persistence: Once a model has been trained with personal information, removing that data's influence from the model weights is extremely difficult-a process known as "machine unlearning"-creating ongoing compliance risks.

The BVCA reps explicitly address these challenges by requiring robust data collection processes and transparency about data provenance, reflecting the reality that AI models can inadvertently ingest personal information, copyright protected or otherwise proprietary information at scale. This isn’t just a theoretical risk: Both IP rights holders and regulators are increasingly scrutinizing how AI training data is collected, and a single misstep can lead to regulatory action, reputational damage, IP infringement claims or investor concern.

2. Enhanced System Vulnerability

AI systems introduce new attack vectors and vulnerabilities that traditional cybersecurity measures weren't designed to handle:

Adversarial Attacks: Malicious actors can manipulate input data to trick AI systems into producing incorrect or harmful outputs.
Model Inversion: Sophisticated attackers can reverse-engineer models to extract sensitive training data, potentially exposing personal information or trade secrets.
Poisoning Attacks: Bad actors can contaminate training data to compromise model performance or introduce backdoors.
Dependency Risks: AI systems often rely on third-party models, APIs or cloud services, creating single points of failure and vendor lock-in risks.

The complexity of deep learning systems makes these vulnerabilities particularly difficult to anticipate and mitigate, which is why the BVCA's emphasis on documentation and governance policies isn't just bureaucratic box-ticking – it's essential for risk management.

3. IP Complexities: The New Frontier

This is where AI-specific reps become truly essential. Here is just a small selection of potential risks that need to be addressed:

Ownership Uncertainties: Most IP laws require human author- or inventorship, often leaving AI-generated works without any dedicated IP protection. When humans and AI collaborate (e.g., AI-assisted coding, design or writing), determining ownership becomes complex and clear internal labelling and tracking systems are important.
Infringement Risks: Large language models can sometimes generate outputs that are identical or highly similar to the training data, potentially leading to IP infringement claims. AI systems trained on artistic works might generate outputs that copy or strongly resemble a human-authored work. For example, AI-generated logos or designs may resemble third-party trademarks or design rights.
Practical Challenges: How do you check AI training data and outputs for legal compliance? Do you have appropriate processes in place for ensuring that material work results benefit from IP protection "despite" the use of AI tools during development?

Here, the legal framework is rapidly evolving. Just a few highlights:

Sui Generis Protection: New forms of IP protection specifically for AI-generated works are being debated in some jurisdictions, e.g., in the European Union and on the Member State level, the United Kingdom and China.
Evolving Case-law: Courts are grappling with whether or under what circumstances AI training constitutes permissible use of copyrighted training data.

The NVCA's explicit focus on ensuring AI hasn't compromised ownership or rights reflects these real uncertainties. Unlike traditional IP warranties that assume human creation, AI-specific warranties must address the fundamental question of whether protectable rights exist at all.

4. Algorithmic Bias and Fairness: Mathematical Discrimination

Unlike human decision-making, AI operates through mathematical predictions based on patterns in historical data. This creates unique discrimination risks:

Bias Amplification: AI systems can amplify existing societal biases present in training data, making discrimination more systematic and widespread.
Proxy Discrimination: AI might use seemingly neutral factors (like zip codes or educational institutions) that correlate with protected characteristics.
Feedback Loops: Biased AI decisions can create new biased data, perpetuating and worsening discrimination over time.
Opacity: Complex AI systems can make it difficult to identify, explain, or correct discriminatory outcomes.

The algorithm doesn't "see" discrimination – it simply optimizes for patterns that may be inherently unfair. This is why specific provisions addressing algorithmic fairness aren't just about compliance; they're about protecting the company's reputation, market position and social license to operate.

Authors

Dr. Sven Greulich, LL.M. (Cantuar), EMBA Partner, Mergers & Acquisitions, Technology Companies Group

Düsseldorf

See my bio

Practice:

Technology & Innovation Sector
Mergers & Acquisitions
Technology Companies Group

vCard

See full bio

Dr. Sven Greulich, LL.M. (Cantuar), EMBA Partner

Düsseldorf

His clients include technology companies of all stages as well as venture capital and corporate venture capital investors. Together with an international and interdisciplinary team, he also supports scaleups and multinationals in their expansion projects, with a particular focus on cross-border transactions between Germany and the USA.

Sven’s goal is to build bridges for his clients between Germany, Silicon Valley, and other international technology hubs, helping them achieve successful growth in the global market. His legal and business background, entrepreneurial spirit, and experience from more than 400 financing rounds and M&A projects across various industries enable him to fully understand his clients’ strategic and commercial objectives and to develop creative solutions to achieve them.

Sven volunteers with entrepreneur groups at the WHU Otto Beisheim School of Management, the RWTH Aachen, the Technical University of Munich and the Karlsruhe Institute of Technology; he regularly lectures at the WHU and the RWTH incubation and innovation centers. In 2020, he launched the Founder Legal Boot Camp, a unique free-of-charge seminar program that educates aspiring founding teams from technical and business universities about all relevant legal pitfalls in the areas of company formation, financing, and the initial growth phase. Organized in collaboration with Germany’s leading startup universities, the Founder Legal Boot Camp now takes place three times a year in Düsseldorf, Munich, and alternately in Karlsruhe/Stuttgart.

Sven's work has been repeatedly awarded, inter alia

Chambers ranks him as one of the top 3 venture capital lawyers in Germany (2025);
the leading German market publication JUVE - since 2019 - ranks Sven as one of Germanyʹs top 15 attorneys for venture capital, the highest recognition for this category awarded by JUVE (2025/2026);
Legal500 Deutschland includes Sven as “frequently recommended” for M&A (mid-sized deals) as well as private equity (mid-sized deals) and ranks him as a “leading partner” for venture capital (2025); and
Handelsblatt/Best Lawyers list Sven as a Best Lawyer in the category Venture Capital (2025), and Sven also received their award "Venture Capital Lawyer of the Year – Western Germany" (2025); and
in the 2017 edition of its Innovative Lawyers Report Europe, the Financial Times named Svenʹs work to connect start-ups with Germanyʹs Mittelstand (mid-sized companies) a standout “for making bridges between Silicon Valley and Germany”.

Sarah Schaedler Partner, Technology & Innovation, Technology Transactions

San Francisco

See my bio

D:+1 415 773 5474
E: [email protected]

Practice:

Technology & Innovation
Technology Transactions
Intellectual Property
Strategic Advisory & Government Enforcement (SAGE)
Artificial Intelligence

vCard

See full bio

Sarah Schaedler Partner

San Francisco

Sarah’s practice focuses on structuring and negotiating the intellectual property aspects of complex corporate transactions, including mergers and acquisitions, business divestitures, and commercial transactions where software and technology are the principal assets as well as stand-alone strategic licensing matters. Sarah also advises clients on their Artificial Intelligence (AI) strategy and roadmap implementation with a focus on the procurement and negotiation of AI contracts.

Sarah routinely advises on carve-outs and business separation transactions and helps clients with structuring and implementing their intellectual property and technology separation and integration roadmaps.

Sarah has counseled several companies in their preparation for a divestiture and understands the issues a buyer is focused on in the context of intellectual property matters. She regularly helps companies implement remediation steps around their intellectual property assets to help them to a successful closing.

She has significant experience advising private equity funds on investments involving companies that are driven by technology and innovation, as well as intellectual property reliant consumer product companies and companies that are stepping into digitalization.

As a member of Orrick’s AI leadership group, Sarah is involved in Orrick’s AI practice strategy and thought leadership projects related to AI matters.

Jamie Moore Partner, Technology Companies Group, Fintech

London

See my bio

D:+44 20 7862 4610
E: [email protected]

Practice:

Technology & Innovation Sector
Technology Companies Group
Fintech

vCard

See full bio

Jamie Moore Partner

London

Jamie acts for both early and late stage companies in intellectual property rich sectors and those who invest in them, including some of the most active venture capital funds, corporate or individual investors.

Jamie has a passion for disruptive technologies, innovation and entrepreneurial business. He has acted on countless transactions across a broad range of sectors both in the UK and internationally, but is most known for his experience in acting on investments into fintech and Artificial Intelligence companies.

Jamie has deep knowledge of the practice area in which he operates and market trends, which he leverages to provide clear and concise advice on a range of corporate issues taking high growth technology companies from start-up through to exit.

He presents on corporate law and venture capital to clients and at seminars in the City, including practitioners’ conferences on practical legal issues in venture capital transactions and SEIS/EIS investments.

An active participant in the venture capital community, Jamie Moore has contributed to industry standard form documentation, acted as a mentor for various Seedcamp portfolio companies and hosted office-hours for the Barclays' TechStars cohort.

Orrick's Deal Flow Report Series - European Tech Deal Term Review

Benedikt Migdal Partner, Technology Transactions, Intellectual Property

Düsseldorf

See my bio

D:+49 211 3678 7164
E: [email protected]

Practice:

Technology & Innovation Sector
Technology Transactions
Intellectual Property
Patents
Trade Secrets Litigation
Strategic Advisory & Government Enforcement (SAGE)
Life Sciences & HealthTech

vCard

See full bio

Benedikt Migdal Partner

Düsseldorf

Benedikt advises on structuring and negotiating the IP aspects of corporate transactions, including M&A, divestments and venture investments as well as of commercial transactions where intellectual property rights and know-how are key assets. His work encompasses, for example, IP licensing and technology transfer agreements, engineering services agreements, transition services agreements, R&D collaborations, and IP aspects of contracts throughout the life sciences sector.

Benedikt is also an experienced patent and trade secret litigator and has represented German and international clients from a range of industries in complex disputes, especially concerning patents and know-how in the fields of mobile telecommunication/connectivity and the life sciences.

Based on his extensive experience in both IP transactions and litigation, he deeply understands the full range of legal and economical issues that technology-driven companies are challenged with in context with IP. This also includes IP-related competition law issues, such as FRAND-requirements for licensing and enforcing standard essential patents as well as issues arising in connection with EU regulations concerning technology transfers.

Robert Weinhold Counsel, Cyber, Privacy & Data Innovation, Intellectual Property

Düsseldorf

See my bio

D:+49 211 3678 7158
E: [email protected]

Practice:

Technology & Innovation Sector
Cyber, Privacy & Data Innovation
Intellectual Property
Strategic Advisory & Government Enforcement (SAGE)
Technology Companies Group
Technology & Innovation
Technology Transactions

vCard

See full bio

Robert Weinhold Counsel

Düsseldorf

Robert has always been fascinated by new technologies and digitization. Pursuing his fascination, he focused his legal studies on media law, intellectual property law and data protection law. Prior to working at Orrick, he also gained experience by founding a company that provided a software as a platform solution and working for a German venture capital investor. His legal advice on technology transactions—in particular, SaaS and IP agreements, e-commerce-related topics, related assistance in mergers and acquisitions or core data privacy—thus reflects not only his legal experience but also his experience and fascination with new technology. Being an IT and IP lawyer with a very commercial mindset, Robert drafts and negotiates all sorts of IT and IP agreements, for small to medium companies and large multinationals. He advises on privacy compliance—in particular drafts, privacy policies, and national as well as international data processing agreements—or provides his knowledge with the assessment of the IP/IT and privacy matters in M&A transactions.

He joined Orrick in 2017 after working as a scientific researcher in the field of Data Privacy.

Related Areas

Markets

Germany