← All resources

Checklist · 9 min read

Data room readiness: a sell-side preparation checklist

What a deal-ready data room actually contains, organized by workstream, with the buyer's reason for each request and the gaps that most often delay a process. A preparation reference for sell-side advisors and their clients.

Most sell-side processes don’t slow down because of valuation disagreements. They slow down because the data room wasn’t ready when the buyer started asking. A missing reconciliation, a contract that can’t be found, a set of management accounts that doesn’t tie to the audited figures — each one stalls momentum, and lost momentum in a competitive process is lost leverage.

A deal-ready data room is not just a complete one. It is one where every document a buyer will ask for exists, is current, and reconciles to the others. This checklist organizes what that means by workstream, with the reason a buyer asks for each item, so the seller’s team can prepare deliberately rather than reactively.

Use it as a readiness gate before going to market. The goal is that when diligence requests arrive, the answer is already in the room.

How to read this checklist

Each section lists the documents a buyer’s diligence team will expect, and a short note on why — because the “why” tells you what the buyer is actually testing, and therefore how complete the document needs to be. An item that’s present but can’t answer the underlying question isn’t ready.

The single most common readiness failure cuts across every section: documents that exist but don’t reconcile to each other. Management accounts that don’t tie to the audited statements, a contract value that doesn’t match the revenue recognized, a headcount in the HR file that doesn’t match the payroll cost in the P&L. Buyers read reconciliation gaps as a signal about the quality of everything else.

1. Financial

The most heavily scrutinized workstream, and the one where readiness gaps cost the most credibility.

  • Audited financial statements (typically 3 years) — the baseline buyers anchor to; their absence raises immediate questions.
  • Management accounts (monthly, current) — tests how the business is run and whether recent performance supports the story.
  • Reconciliation of management accounts to audited statementsthe most common gap; an unexplained difference reads as a control weakness.
  • Trial balance / general ledger accesslets the buyer’s QoE team trace figures to source.
  • Revenue detail by customer, product, and period — tests concentration, durability, and the growth narrative.
  • EBITDA normalization schedule with support for each add-back — the single most negotiated schedule; every adjustment needs a rationale and a source.
  • Working capital analysis (monthly, to show seasonality) — drives the working-capital peg in the deal.
  • Aged debtors and creditorstests collectability and supplier terms.
  • Budget vs. actual for recent periods — tests management’s forecasting credibility.

2. Tax

Quiet until it isn’t; an unresolved tax exposure can reprice or delay a deal late.

  • Corporate tax returns and computations (typically 3+ years) — establishes the compliance baseline.
  • VAT/sales tax filings and reconciliationstests indirect-tax exposure.
  • Payroll tax compliance recordsa frequent source of latent liabilities.
  • Correspondence with tax authorities / open enquiriesunresolved enquiries are priced as risk.
  • Transfer pricing documentation (if cross-border) — increasingly scrutinized in multi-jurisdiction deals.
  • Record of prior reorganizations or distributionstests for historical structuring risk.

Where deal structure and clean title get tested.

  • Cap table and shareholder registerestablishes who actually owns what and who must sign.
  • Articles, shareholder agreements, option schemessurfaces consent rights, drag/tag, and dilution.
  • Material contracts (top customers and suppliers) — tests revenue durability and change-of-control exposure.
  • Change-of-control provisions flagged across contracts — a buyer needs to know what a sale triggers.
  • Litigation: current, threatened, and recentunsurfaced litigation is a trust-destroying discovery.
  • Intellectual property register and chain of title — tests that the company owns what it claims to.
  • Insurance policies and claims historytests residual risk and coverage adequacy.
  • Permits, licenses, and regulatory approvalstests the right to operate.

4. Commercial

Where the equity story meets the evidence.

  • Customer contracts and renewal termstests the durability behind the revenue.
  • Customer concentration analysisa buyer will compute this regardless; better to present it.
  • Churn / retention data by cohort — the proof behind any recurring-revenue claim.
  • Pipeline and bookingssupports forward growth assumptions.
  • Pricing history and policytests whether growth came from volume or unsustainable discounting.
  • Market and competitive positioning materialsgrounds the market section of the IM.

5. HR / organization

Where key-person and culture risk lives.

  • Org chart with reporting linestests management depth below the founder.
  • Employee census (role, tenure, compensation) — must reconcile to payroll cost in the P&L.
  • Key employee contracts and incentive arrangements — tests retention risk on the people who matter.
  • Non-compete and confidentiality coveragetests whether value can walk out.
  • Pension and benefit obligationssurfaces off-balance-sheet liabilities.
  • Contractor vs. employee classificationa common latent liability, especially across borders.

6. Operations / IT

Where the “how the business actually runs” questions get answered.

  • Key operational processes and dependenciestests fragility and transferability.
  • Supplier list and concentrationthe supply-side mirror of customer concentration.
  • Technology stack and systems documentation — tests integration cost and key-system risk.
  • Data protection / security posture (e.g. GDPR, SOC 2 status) — increasingly a gating diligence item.
  • Capex history and forward requirementstests whether reported EBITDA is sustainable or under-invested.

The readiness test

A data room can contain every document on this list and still not be ready. Readiness has three properties beyond completeness:

Currency. Every document reflects the latest position, not a version from when preparation began. A live process generates updates — a new month, a signed contract, a resolved dispute — and a room that drifts out of date undermines itself.

Reconciliation. The documents agree with each other. The headcount ties to payroll, the contract values tie to recognized revenue, the management accounts tie to the audited statements. Internal consistency is what separates a room that builds confidence from one that erodes it.

Traceability. Every figure in the financial summary can be walked back to the source document it came from. When the buyer’s team asks “where does this number come from?”, the room answers in a click, not a scramble.

These three properties are exactly what’s hardest to maintain by hand across a live process, because they require continuously re-checking a moving set of documents against each other. A readiness review done once, on a static snapshot, decays the moment the next document lands. The teams that run the cleanest processes treat readiness as a continuous state of the data room, not a one-time pre-launch task.

Further reading

  • Standard diligence request lists published by mid-market advisory and accounting firms
  • Quality of Earnings methodology references on normalization support
  • Prior NaS_OS resources on data-room red flags and source-traceability frameworks

Ready to evaluate NaS_OS on your own data room? Explore the product or browse the blog.

Apply for Access