Contracts & Intellectual Property — Law Reference

1. At a glance

Engineers, founders, and creators encounter contracts and IP every working day — even when they don’t notice. Every employment relationship is a contract. Every signed-in SaaS product is a click-wrap. Every line of code committed implicates copyright (and possibly patent and trade secret). Every product name implicates trademark. Every dataset used for AI training implicates copyright and (sometimes) database rights and privacy law.

This note is practical orientation for non-lawyers. It is not legal advice, does not form an attorney-client relationship, and does not substitute for jurisdiction-specific counsel. For any material decision — signing a meaningful contract, deciding whether to patent, responding to a cease-and-desist, structuring a fundraising — retain a licensed lawyer in the relevant jurisdiction.

The goal here is to give you enough vocabulary and conceptual framing to:

• Read a contract and identify which clauses matter and why
• Recognize when an issue is patent vs copyright vs trade secret vs trademark — and route the question to the right specialist
• Avoid the easiest mistakes (no IP-assignment clause; no carve-outs from indemnity; using competitor’s marks; shipping GPL into proprietary code)
• Have a productive conversation with counsel rather than wasting their time on basics

2. Sources of law

The legal system you’re operating in shapes everything that follows. The two big families:

2.1 Common law

Anglo-American tradition: judges make law through precedent (stare decisis), supplemented by statutes. Jurisdictions: United Kingdom, United States, Canada (except Quebec), Australia, New Zealand, India, Ireland, Singapore, Hong Kong, most former British colonies. Strong reliance on case reporters; appellate decisions bind lower courts in the same hierarchy.

Key features for the practitioner:

• A contract dispute is decided largely by looking at cases applying the same doctrine to similar facts.
• Statutes coexist with — and sometimes codify — common law principles (e.g., UCC Article 2 codifies sales-of-goods rules in the US).
• Briefs cite cases by name + reporter (Hadley v Baxendale (1854) 9 Exch 341; Alice Corp v CLS Bank 573 US 208 (2014)).

2.2 Civil law

Continental European tradition: codified statutes are primary; case law guides interpretation but does not formally bind. Jurisdictions: France, Germany, Italy, Spain, Netherlands, Switzerland, Latin America, China, Japan, South Korea, Taiwan, Russia, Turkey.

Key features:

• Civil codes (French Code civil 1804, German BGB 1900, Swiss ZGB, Chinese Civil Code 2020) provide systematic rules organized by topic.
• Judges apply the code; their reasoning is shorter and more deductive than common-law opinions.
• The reasoning style means you can often find the rule in the code itself rather than searching cases.

2.3 Mixed systems

Scotland, Quebec, Louisiana, South Africa, Israel, Philippines, Sri Lanka, Puerto Rico — blend civil-code substantive law with common-law procedure/precedent practice.

2.4 Federal vs state/province in federal systems

In federal systems the vertical division of authority is itself a major legal question:

• United States — contract law is primarily state law (each state has its own UCC adoption + common law). Patent, copyright, trademark (federal Lanham Act + state common law), bankruptcy, antitrust, securities are federal. Trade secret has both state (UTSA) and federal (DTSA 2016) tracks.
• Canada — contract law is provincial; patent, copyright, trademark are federal.
• Germany / EU — German civil law is federal (BGB), but EU law preempts in many areas (consumer protection, competition, IP harmonization, data protection).
• China — Civil Code 2020 is national; some IP courts (Beijing, Shanghai, Guangzhou, Hainan) handle specialized cases.

2.5 International law layer

Treaties and supranational agreements increasingly drive substantive rules:

• WIPO (World Intellectual Property Organization) — administers Paris Convention, Berne, PCT, Madrid Protocol, Hague Agreement, UPOV, and 26+ treaties.
• WTO TRIPS (1995) — minimum IP standards for all WTO members.
• UN UNCITRAL — model laws (Model Law on International Commercial Arbitration 1985 + amendments 2006); CISG 1980 (international sales of goods).
• New York Convention 1958 — recognition and enforcement of foreign arbitral awards in 170+ states.
• Hague Conventions — service of process, evidence, choice of court.

3. Contracts — formation

A contract is an enforceable agreement. The four classical common-law elements:

1. Offer — a manifestation of willingness to enter a bargain, made so that the other party understands assent will conclude it.
2. Acceptance — unequivocal agreement to the offered terms. The “mirror image” rule (acceptance must match offer) is relaxed under UCC § 2-207 for sales of goods.
3. Consideration — bargained-for exchange of legal value (Restatement (Second) of Contracts § 71). Past consideration and pre-existing duty are insufficient. Nominal consideration (“$1 and other valuable consideration”) is generally upheld in US practice.
4. Mutual assent / meeting of minds — both parties must understand the bargain in the same way. Misunderstanding can defeat formation (Raffles v Wichelhaus (1864) — the Peerless case).

Civil law uses causa rather than consideration — a lawful reason or purpose for the obligation. As a practical matter, a gift promise that is unenforceable for lack of consideration in the US can be enforceable in France.

Additional formation requirements:

• Capacity — minors, persons under guardianship, intoxicated parties may void.
• Legality — illegal subject matter (illegal gambling, prostitution where unlawful, illegal restraints on trade) renders contracts unenforceable.
• No defect of will — duress, undue influence, fraud, mutual mistake can void or render voidable.

3.1 Statute of frauds

Certain contracts must be in writing and signed to be enforceable. Categories (US common law + UCC § 2-201):

• Contracts for sale of real estate.
• Contracts not performable within one year.
• Promises to answer for the debt of another (suretyship).
• Contracts in consideration of marriage.
• Sales of goods $500 or more (UCC § 2-201).
• Modern: many states require writing for non-compete agreements, real estate brokerage commissions, lifetime employment.

A signed email or other electronic record generally satisfies the writing requirement under E-SIGN / UETA / eIDAS.

3.2 Electronic signatures

• US Federal E-SIGN Act 2000 (15 USC § 7001 et seq.) — electronic signatures and records have same legal effect as wet signatures, subject to consumer-consent rules.
• Uniform Electronic Transactions Act (UETA) — adopted by 49 states + DC (NY uses Electronic Signatures and Records Act, comparable).
• EU eIDAS Regulation (910/2014) — three tiers: simple electronic signature, advanced electronic signature, qualified electronic signature (highest, equivalent to handwritten).
• eIDAS 2.0 (Regulation 2024/1183) — adds European Digital Identity Wallet.
• Practical platforms — DocuSign, Adobe Sign, Notarize, SignNow, HelloSign (Dropbox Sign), PandaDoc.

Carve-outs that still require physical signing in many jurisdictions: wills, codicils, certain real-property instruments (varies by state), notarized documents.

4. Contract types

4.1 Employment

• At-will is the US default — either party can terminate at any time for any reason not otherwise unlawful (no discrimination, no retaliation for protected activity).
• Definite-term contracts are more common in Europe + Asia + Latin America. Terminating before term requires cause or severance.
• Non-compete clauses — variable by state. The FTC’s 2024 final rule banning most non-competes nationwide was blocked by the Northern District of Texas in Ryan LLC v FTC (Aug 2024); the FTC’s appeal is pending in the Fifth Circuit. Substantively: California (Cal Bus & Prof Code § 16600), Minnesota (since July 2023), North Dakota, Oklahoma, and (effective 2024-25) several others largely prohibit them; many other states limit by industry, income, or duration.
• Non-solicitation of employees + customers — generally more enforceable than non-competes, but California rejects employee-non-solicit (Edwards v Arthur Andersen, 44 Cal 4th 937 (2008); AMN Healthcare v Aya Healthcare, 28 Cal App 5th 923 (2018)).
• Non-disclosure / confidentiality — universally enforceable subject to reasonableness (scope, duration, definition).
• Garden leave — paid notice period during which employee is required to stay home; common in UK + EU finance; emerging in US for senior roles.
• Whistleblower carve-outs — DTSA § 7 (18 USC § 1833) requires employers to notify employees that confidentiality clauses don’t bar reporting suspected violations to a government agency, or recovery of statutory damages may be limited.

4.2 NDA

• Mutual vs unilateral — mutual when both parties exchange information; unilateral when only one party discloses (e.g., disclosing party shares with prospective vendor).
• Standard carve-outs from “confidential information”: (a) publicly known; (b) already in receiver’s possession; (c) independently developed without reference; (d) rightfully received from a third party; (e) legally compelled disclosure (with notice if permitted).
• Term — confidentiality obligation for 2-5 years for ordinary business info; perpetual for trade secrets is common.
• Residuals clause — a controversial provision saying that information retained in unaided memory of the receiver’s personnel can be used freely. Disclosing parties resist; receivers favor.
• Return-or-destroy on termination + certification.

4.3 Independent contractor vs employee

The classification matters for tax withholding, benefits, workers’ compensation, labor protections.

• California ABC test (AB 5, codified at Cal Lab Code § 2775) — worker is an employee unless: (A) free from control, (B) work outside usual course of business, (C) customarily engaged in independent trade.
• IRS Common-Law 20-factor test + the simpler three-category test (behavioral control, financial control, relationship).
• W-9 / 1099-NEC — US tax forms for contractor onboarding + year-end reporting (≥ $600).
• IR35 (UK) — off-payroll working rules; deemed employment for tax purposes if relationship resembles employment despite contractor status; reformed 2017 (public) + 2021 (private).
• EU Platform Work Directive 2024 — presumption of employment for platform workers meeting certain criteria.

4.4 SaaS / software

Modern SaaS contracts typically have a three-document structure:

• Master Services Agreement (MSA) — legal framework: payment, IP, confidentiality, liability, term, termination, governing law.
• Order Form — commercial specifics: which products, how many seats, price, term, key dates.
• Data Processing Addendum (DPA) — GDPR Article 28 controller-processor terms; international transfer mechanism (SCCs); sub-processor lists; security measures.

Plus:

• Service Level Agreement (SLA) — uptime targets (often 99.9% monthly; “four nines” + premium) + service credits + exclusions (force majeure, maintenance, beta features).
• End User License Agreement (EULA) — for desktop / on-prem / mobile software.
• Acceptable Use Policy (AUP).
• Security + Privacy whitepaper / SOC 2 / ISO 27001 as referenced exhibits.

Click-wrap vs browse-wrap enforceability —

• Click-wrap (user clicks “I agree”) — generally enforceable. ProCD v Zeidenberg, 86 F 3d 1447 (7th Cir 1996) — shrinkwrap upheld for non-merchant. Specht v Netscape, 306 F 3d 17 (2d Cir 2002) — passive scrolling insufficient. Meyer v Uber Technologies, 868 F 3d 66 (2d Cir 2017) — reasonably conspicuous click-wrap enforceable.
• Browse-wrap (continued use = consent) — often unenforceable; courts increasingly require affirmative manifestation. Nguyen v Barnes & Noble, 763 F 3d 1171 (9th Cir 2014) — link in footer alone insufficient.
• Auto-renewal laws — California Auto Renewal Law (Bus & Prof Code § 17600); Oregon, NY, Washington, Vermont, Illinois follow with variations; FTC’s “Click-to-Cancel” rule (2024) requiring symmetry between sign-up and cancellation was vacated by Eighth Circuit in Custom Communications v FTC (July 2025), but most state laws remain.

4.5 Sales of goods

• UCC Article 2 (United States) — goods transactions; default rules for warranties, delivery, risk of loss, remedies.
• CISG (United Nations Convention on Contracts for the International Sale of Goods, 1980) — applies to international sales between parties in different signatory states (US, China, EU members, Russia, Japan, most major economies; UK + India are notable non-signatories) unless excluded.
• Merchant rules — special standards for parties who deal in goods of the kind (UCC § 2-104).

4.6 License

A grant of permission to use IP, with conditions.

• Exclusive vs non-exclusive — exclusive gives the licensee the right to exclude even the licensor; non-exclusive allows multiple licensees.
• Sole — between the two: only licensee + licensor can use.
• Field of use, territory, term, sublicense rights — all should be explicit.
• Royalty vs lump-sum vs hybrid — royalty as % of net sales (define “net sales” carefully — what deductions?), lump-sum, milestone payments, equity (in startups).
• Most-favored-licensee (MFL) clause — licensee gets benefit of better terms granted to others; complicates future deals.
• Audit rights — licensor can audit licensee’s books on reasonable notice to verify royalty calculations.

4.7 Loan + security

• Promissory note — written promise to pay sum certain on demand or at definite time.
• UCC Article 9 (US) — security interests in personal property; filing UCC-1 financing statement perfects the interest.
• Lien priority — first to file (or first to perfect by possession for some collateral) generally wins; purchase-money security interests have super-priority.
• Loan covenants — affirmative (deliver financials), negative (no additional debt beyond cap; no asset sales), financial (leverage ratio, DSCR).
• Defaults + acceleration + remedies.

4.8 Real estate

• Sale — purchase agreement, due diligence, financing contingency, closing.
• Lease — triple net (NNN), gross, modified gross; commercial vs residential; assignment + subletting; tenant improvements.
• Recording — local jurisdiction filings perfect interest against subsequent purchasers.

5. Key contract clauses

Whether you’re a startup founder reviewing a vendor contract or an engineer reviewing your own employment agreement, these are the clauses that usually matter most.

5.1 Recitals

The “WHEREAS” clauses at the start. Not operative but provide context that can color interpretation. Be wary of recitals that contain operative obligations — courts may or may not enforce them.

5.2 Definitions

Capitalize defined terms (“Confidential Information,” “Services,” “Effective Date”). Define them once, use them consistently. The biggest source of disputes is ambiguous definitions — what counts as “net revenue,” what counts as a “user,” what is “the Software” (current version only? upgrades? derivatives?).

5.3 Term and termination

• Initial term + renewal: auto-renew (with notice requirement to avoid) vs evergreen vs none.
• Termination for cause — material breach + cure period (often 30 days); insolvency.
• Termination for convenience — either party can terminate on notice; check carefully who has this right + at what cost.
• Change of control — does it trigger termination or assignment limits?
• Transition assistance — outgoing vendor obligations on termination (typical for enterprise SaaS).
• Survival — confidentiality, IP, indemnification, limitations of liability survive termination.

5.4 Payment

Currency, schedule, taxes (gross-up?), late fees, disputed-amount procedure, true-up at year-end.

5.5 Warranties

• Express warranties — what’s affirmatively promised (the goods conform to spec; the software is free of malicious code; the licensor owns the IP).
• Implied warranties under UCC: merchantability (§ 2-314), fitness for particular purpose (§ 2-315), title (§ 2-312).
• Disclaimers must be conspicuous (UCC § 2-316) — “EXCEPT FOR THE EXPRESS WARRANTIES SET FORTH HEREIN, ALL OTHER WARRANTIES, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE, ARE DISCLAIMED.”
• AS-IS — common in open-source licenses + free-tier products.
• Survival — warranties typically survive for a defined period after delivery (12-24 months common).

5.6 Limitations of liability

The most negotiated clause in any commercial contract.

• Cap on total liability — typically fees paid in the prior 12 months; sometimes a multiple (2x, 3x); sometimes a hard dollar cap.
• Exclusion of consequential / indirect / special / lost-profits damages.
• Carve-outs from the cap — IP indemnification, confidentiality breach, gross negligence, willful misconduct, fraud, payment obligations, breach of data-security obligations.
• Super-cap for specific risks (data breach, IP) — e.g., total cap = 1× fees, but data-breach cap = 5× fees.
• Reciprocity — caps should generally be mutual; one-sided caps signal vendor strength.

5.7 Indemnification

• IP indemnification — vendor defends + indemnifies customer against third-party IP claims based on the deliverables. Standard exclusions: customer modifications, use outside scope, combination with third-party tech, use after notice to stop.
• Defense + settlement control — usually the indemnifying party controls defense + settlement (subject to consent rights for non-monetary terms).
• Procedures — prompt notice (without prejudice for late notice unless prejudiced); cooperation.
• Sole remedy — IP indemnification + replacement/refund is often customer’s exclusive remedy for IP infringement.

5.8 IP ownership + assignment

• Pre-existing IP — each party retains rights to what it brought.
• Work product — clearly state who owns what’s created during performance. For consulting / development services, work product typically assigned to customer; for SaaS, vendor retains ownership of platform with customer-data ownership reserved.
• Now-for-then assignment — “Contractor hereby irrevocably assigns to Customer all right, title, and interest in and to” — present-tense assignment is more effective than promise to assign in the future (Stanford v Roche, 563 US 776 (2011) — “agree to assign” defeated employee’s “hereby do assign” to Stanford).
• Employee invention statutes — California Lab Code § 2870, Illinois 765 ILCS 1060, Washington RCW 49.44.140, Delaware, Minnesota, Kansas, North Carolina, Utah — exempt inventions developed entirely on employee’s own time, without employer resources, and not related to employer’s business. Required written notice in CA, WA, IL.

5.9 Confidentiality

Definition (broad — anything marked or reasonably understood as confidential), exclusions (the five standard ones), use restriction, term, return-or-destroy.

5.10 Force majeure

Excuses non-performance due to events beyond reasonable control. Modern drafting after Covid-19 explicitly includes pandemics, epidemics, government orders, and (emerging) cyberattacks. AI-specific force majeure clauses (model service interruption from upstream provider) are appearing in 2024-26 enterprise contracts.

5.11 Assignment + change of control

• Anti-assignment — neither party may assign without consent.
• Common exceptions — assignment to affiliates, successor in merger / acquisition.
• Change of control — sometimes deemed assignment; sometimes a separate trigger giving counterparty termination right.

5.12 Governing law + venue + arbitration

• Governing law — which jurisdiction’s substantive law applies. Common picks: Delaware (corporate), New York (commercial), California, England & Wales (international).
• Venue / forum — where disputes are litigated.
• Arbitration — alternative to courts; binding; limited appeals.
• Federal Arbitration Act (FAA, 9 USC § 1 et seq.) strongly favors arbitration in the US (AT&T Mobility v Concepcion, 563 US 333 (2011); Epic Systems v Lewis, 584 US 497 (2018)).
• NY Convention 1958 — international arbitration awards enforceable in 170+ countries.
• Class-action waivers — generally enforceable in arbitration agreements (Concepcion); some narrow exceptions (Lamps Plus v Varela, 587 US 176 (2019)).

5.13 Notice

How formal notices are delivered (email + simultaneous physical mail; specific addresses; deemed-received timing). Easy to get wrong; matters for termination + indemnification triggers.

5.14 Severability

If one provision is unenforceable, the rest survive. Plus “blue-pencil” or reformation language for over-broad restrictive covenants.

5.15 Integration / merger

“This Agreement is the entire agreement; supersedes all prior or contemporaneous communications.” Excludes parol-evidence claims about side promises.

6. Remedies for breach

The default rule in common law: damages, not specific performance. The aim is to put the non-breaching party in the position they would have been in had the contract been performed.

6.1 Expectation damages

The default measure — benefit of the bargain. For a breached supply contract: cost to cover (UCC § 2-712) or market price minus contract price (§ 2-713).

6.2 Consequential damages

Losses beyond direct damages — lost profits, lost business opportunities. Limited by:

• Foreseeability — Hadley v Baxendale (1854) 9 Exch 341 — recoverable only if reasonably foreseeable at contracting; codified in UCC § 2-715(2)(a).
• Causation — but-for + proximate cause.
• Certainty — must prove with reasonable certainty, not speculation; new-business rule limits lost-profit recovery for ventures without track record.
• Contractual exclusion — most commercial contracts exclude consequential damages explicitly.

6.3 Specific performance

A court order compelling performance, rather than damages. Discretionary equitable remedy; available only when damages are inadequate. Typical contexts:

• Real estate (every parcel is unique).
• Unique goods (UCC § 2-716).
• Personal services contracts — courts will not order specific performance (13th Amendment + practical considerations); injunctions against working elsewhere may be available.

6.4 Rescission and restitution

Unwinding the contract and restoring the parties to status quo ante. Available for material misrepresentation, mutual mistake, etc.

6.5 Liquidated damages

Damages amount agreed in advance. Enforceable if (a) actual damages would be difficult to determine and (b) the amount is a reasonable forecast. Penalties — disproportionate amounts intended to punish — are unenforceable (Restatement § 356).

6.6 Mitigation

The non-breaching party must take reasonable steps to mitigate damages. Cover purchases at higher price recoverable; failure to mitigate reduces recovery.

6.7 Statute of limitations

• UCC Article 2: 4 years (§ 2-725).
• California: 4 years for written contract; 2 years for oral.
• New York: 6 years for contract; 4 years for UCC.
• Federal claims vary; many discrimination claims 180/300 days for EEOC charge.

7. Patents

7.1 Patentable subject matter

Under 35 USC § 101: “any new and useful process, machine, manufacture, or composition of matter, or any new and useful improvement thereof.”

Excluded by judicial doctrine: abstract ideas, natural phenomena, laws of nature.

• Bilski v Kappos, 561 US 593 (2010) — hedging method abstract; rejected machine-or-transformation as sole test.
• Mayo v Prometheus, 566 US 66 (2012) — natural law (drug metabolite levels) plus conventional steps unpatentable.
• Association for Molecular Pathology v Myriad Genetics, 569 US 576 (2013) — isolated naturally-occurring DNA unpatentable; cDNA patentable.
• Alice Corp v CLS Bank, 573 US 208 (2014) — abstract idea (intermediated settlement) implemented on generic computer unpatentable. The Alice two-step test now governs software/business-method eligibility analysis: (1) is the claim directed to an ineligible concept? (2) does it contain an inventive concept that transforms it into a patent-eligible application?

7.2 Other patentability requirements

• Novelty (35 USC § 102) — not anticipated by prior art; first-to-file regime post-AIA (March 16, 2013), replacing first-to-invent.
• Non-obviousness (35 USC § 103) — not obvious to a person of ordinary skill in the art (POSITA) at the time of invention; Graham v John Deere, 383 US 1 (1966) — factual inquiries; KSR v Teleflex, 550 US 398 (2007) — flexible test; teaching-suggestion-motivation not the only path.
• Utility — actual, specific, substantial.
• Enablement (35 USC § 112(a)) — spec must enable POSITA to make and use without undue experimentation; Amgen v Sanofi, 598 US 594 (2023) — genus claims must enable the full scope.
• Written description — separate from enablement post-Ariad v Lilly, 598 F 3d 1336 (Fed Cir 2010) (en banc).
• Definiteness (§ 112(b)) — claims must be reasonably clear; Nautilus v Biosig, 572 US 898 (2014).

7.3 Types of US patents

• Utility — functional inventions; term 20 years from earliest non-provisional filing.
• Design (35 USC § 171) — ornamental design; 15 years from issuance for applications filed on/after May 13, 2015 (previously 14 years).
• Plant — distinct and new asexually-reproduced plant varieties; 20 years.

7.4 Provisional application

• 12-month placeholder establishing a priority date.
• Lower fees; no formal claims required.
• Must be followed by non-provisional within 12 months to preserve priority.
• Critical strategy tool for startups balancing cost + early disclosure risk.

7.5 International filing

• Paris Convention 1883 — 12-month priority right; file in one member country, claim priority for filings in others.
• Patent Cooperation Treaty (PCT, 1970) — single international application; 30-month deadline (31 in some) to enter national phase; WIPO-administered.
• European Patent Convention (EPC) — EPO grants a European patent valid in designated states.
• Unitary Patent + Unified Patent Court (UPC) — launched June 1, 2023, EU; unitary protection in 17+ participating states; central enforcement.
• Direct national filings for non-PCT-strategy countries.

7.6 Patent prosecution

The back-and-forth with the patent office (USPTO in the US):

• Office actions — rejections + objections from examiner.
• Responses — amendments to claims + arguments distinguishing prior art.
• Final rejection — Request for Continued Examination (RCE) or appeal.
• PTAB Appeal — Patent Trial and Appeal Board (administrative appeal).
• Notice of Allowance + issue fee → patent grants.
• Continuations, divisionals, continuations-in-part (CIP) — strategy tools for related claim sets.

7.7 Patent infringement

• Direct infringement (35 USC § 271(a)) — making, using, selling, offering to sell, importing patented invention in the US.
• Indirect infringement — induced (§ 271(b)) requires intent (Global-Tech v SEB, 563 US 754 (2011) — willful blindness suffices); contributory (§ 271(c)) — selling component with no substantial non-infringing use, with knowledge.
• Doctrine of equivalents — infringement even when not literal, if differences are insubstantial; balanced against prosecution-history estoppel (Festo Corp v Shoketsu Kinzoku, 535 US 722 (2002)).
• Willfulness + enhanced damages up to 3× under § 284 (Halo Electronics v Pulse Electronics, 579 US 93 (2016)).
• Defenses — invalidity (§ 101, 102, 103, 112), non-infringement, inequitable conduct, laches/equitable estoppel (rare post-SCA Hygiene v First Quality, 580 US 328 (2017)).

7.8 Post-grant proceedings

• Inter Partes Review (IPR) — challenge validity at USPTO PTAB; established by America Invents Act 2011 (took effect Sept 2012). Limited grounds (§ 102, 103 based on patents + printed publications). Historical institution rates ~60%, invalidation rates among instituted ~70%+. Oil States v Greene’s Energy, 584 US 407 (2018) — IPR constitutional.
• Post-Grant Review (PGR) — broader grounds; within 9 months of issuance.
• Ex Parte Reexamination — older mechanism, requestor not party.

7.9 Major US patent venues

• District of Delaware — heavy patent docket due to corporate domicile.
• Eastern District of Texas — historically patentee-friendly.
• Western District of Texas (Judge Albright) — exploded in 2020-22 as preferred plaintiff venue; the district subsequently redistributed Albright cases to dilute concentration.
• District of Massachusetts — Boston biotech / tech.
• Northern District of California — Silicon Valley tech.
• Court of Appeals for the Federal Circuit — exclusive appellate jurisdiction over patent cases.
• International: Munich + Düsseldorf + Mannheim (Germany) — fast bifurcated proceedings; UK High Court (Patents Court + IPEC); UPC since 2023 + multiple divisions; Tokyo + Osaka IP High Courts (Japan); Beijing IP Court (China).

7.10 Standard-Essential Patents (SEPs) + FRAND

When a patent is essential to practicing a technical standard (cellular: 3GPP — LTE, 5G, 5G-Advanced; WiFi: IEEE 802.11; video: H.264, H.265, AV1 patent pools; audio: AAC, MP3), Standard-Development Organizations require holders to license on Fair, Reasonable, and Non-Discriminatory (FRAND) terms.

• Major SEP holders — Qualcomm, Nokia, Ericsson, InterDigital, Huawei, Samsung, LG, Philips, IDCC, Sun Patent Trust.
• Pools + licensing administrators — Avanci (automotive cellular), Via Licensing, MPEG LA, Sisvel, Access Advance.
• Disputes — Apple v Samsung (2011-18 saga, multi-jurisdiction), FTC v Qualcomm, 969 F 3d 974 (9th Cir 2020), Huawei v ZTE (CJEU 2015, Case C-170/13), Unwired Planet v Huawei [2020] UKSC 37 — UK Supreme Court endorsed global FRAND rate-setting jurisdiction.

8. Copyrights

8.1 Subject matter

Original works of authorship fixed in a tangible medium of expression (17 USC § 102(a)). Categories: literary, musical, dramatic, pantomime + choreographic, pictorial + graphic + sculptural, motion pictures + audiovisual, sound recordings, architectural.

Software is copyrightable as a literary work — Apple v Franklin, 714 F 2d 1240 (3d Cir 1983); Computer Associates v Altai, 982 F 2d 693 (2d Cir 1992) — abstraction-filtration-comparison for non-literal copying. Oracle America v Google, 593 US 1 (2021) — Google’s use of 11,500 lines of Java SE API declarations in Android was fair use; the Court assumed but did not decide that the declarations were copyrightable.

8.2 Rights granted

Under 17 USC § 106:

1. Reproduction.
2. Preparation of derivative works.
3. Distribution.
4. Public performance (literary, musical, dramatic, choreographic, audiovisual).
5. Public display (literary, musical, dramatic, choreographic, pictorial, graphic, sculptural, audiovisual stills).
6. Digital audio transmission of sound recordings.

Plus moral rights for visual art (VARA, 17 USC § 106A) — narrower than EU moral rights.

8.3 Term

• US works created on/after Jan 1, 1978 — life of author + 70 years; joint works = life of last surviving author + 70.
• Works made for hire + anonymous + pseudonymous — 95 years from publication or 120 from creation, whichever ends first.
• Pre-1978 works — complex transition rules under Sonny Bono Copyright Term Extension Act 1998. Works first published 1929 entered public domain Jan 1, 2025 (continuing through future years).
• EU + UK — life + 70 for most categories; life + 70 from death of last surviving co-author for joint works.

8.4 Berne Convention + WIPO Copyright Treaty

• Berne (1886, last revised 1971) — 180+ member countries; automatic protection without registration formality; national treatment; minimum standards.
• WIPO Copyright Treaty (WCT, 1996) — Berne-plus, including computer programs + databases.
• TRIPS (1995) — enforcement standards.
• US registration — not required but provides benefits: presumption of validity, statutory damages (§ 504(c), up to $150,000 per work for willful infringement), attorneys’ fees (§ 505) — only available if registered before infringement or within 3 months of first publication.

8.5 DMCA + Online Liability

• 17 USC § 512 (DMCA safe harbor) — service providers immune from monetary liability for user-uploaded infringing content if they (a) lack actual knowledge, (b) act expeditiously on takedown notices, (c) have a registered DMCA agent, (d) terminate repeat infringers.
• Notice-and-takedown — copyright owner sends § 512(c)(3) notice; provider removes; user can counter-notice; provider restores absent suit within 10-14 days.
• Viacom v YouTube, 676 F 3d 19 (2d Cir 2012) — specific knowledge required for liability.
• BMG v Cox Communications, 881 F 3d 293 (4th Cir 2018) — ISP lost safe harbor for not terminating repeat infringers; Sony v Cox, 93 F 4th 222 (4th Cir 2024) — $1B verdict vacated, remanded for new damages trial.
• EU DSM Directive 2019/790 — Article 17 imposes greater obligations on large platforms (best efforts to license + filter); Article 4 text-and-data-mining exception with opt-out for commercial TDM.
• EU Digital Services Act (Reg 2022/2065) — broader platform duties for illegal content.

8.6 Fair use (US)

17 USC § 107 — four-factor balancing test:

1. Purpose + character of use — including commercial vs nonprofit and transformativeness.
2. Nature of copyrighted work — published vs unpublished; factual vs creative.
3. Amount + substantiality used — quantitative + qualitative.
4. Effect on potential market for the copyrighted work + derivatives.

Key modern cases:

• Campbell v Acuff-Rose, 510 US 569 (1994) — 2 Live Crew’s parody of “Oh Pretty Woman”; transformativeness centered.
• Authors Guild v Google, 804 F 3d 202 (2d Cir 2015) — Google Books snippet display was fair use.
• Andy Warhol Foundation v Goldsmith, 598 US 508 (2023) — narrowed transformativeness; commercial licensing of “Orange Prince” silkscreen was not fair use because purpose paralleled Goldsmith’s original photo licensing.
• Hachette v Internet Archive, 115 F 4th 163 (2d Cir 2024) — controlled digital lending of full books not fair use.

8.7 AI training fair use — the 2023-26 litigation frontier

A cluster of cases is reshaping the doctrine in real time. Key complaints + status as of mid-2026:

• The New York Times v Microsoft + OpenAI (SDNY, filed Dec 2023) — verbatim memorization + market substitution theory; motion-to-dismiss largely denied 2024; discovery ongoing through 2025-26.
• Authors Guild v OpenAI (SDNY, consolidated with George RR Martin, John Grisham, et al.) — class action.
• Sarah Silverman v OpenAI / Meta (ND Cal) — narrowed at MTD stage; vicarious + DMCA § 1202 CMI claims dismissed.
• Concord Music Group + Universal Music v Anthropic (MD Tenn 2023, transferred ND Cal 2024) — song lyrics training.
• Getty Images v Stability AI — US (D Del) + UK (High Court trial 2024-25); judgment in UK case Nov 2025 split (some claims succeeded on trademark/training, others rejected on copyright); appeals pending.
• RIAA (UMG, Sony Music, Warner Music) v Suno + Udio (D Mass + SDNY, June 2024) — audio training + output reproduction.
• Pearson v OpenAI (announced 2024) — textbooks.
• Reddit v Anthropic (CA Superior, June 2025) — contract + unfair competition (not pure copyright).
• Bartz v Anthropic (ND Cal) — Judge Alsup 2025 partial summary judgment: training itself was fair use, but Anthropic’s use of pirated copies (Library Genesis) was not.

Net practical takeaways as of mid-2026:

• The input question (is training itself fair use?) trends toward yes for legitimately-acquired works, with output overlap and market harm as the key risk factors.
• Use of pirated source corpora (LibGen, Anna’s Archive, Z-Library) is a serious aggravating factor.
• Output memorization / reproduction is a separate infringement risk.
• DMCA § 1202 (removal/alteration of copyright management information) claims are mostly being narrowed at MTD or summary judgment.

8.8 EU Copyright

• DSM Directive 2019/790 — Article 3 (TDM for scientific research, no opt-out), Article 4 (TDM for any purpose, with rightsholder opt-out via machine-readable means); the EU AI Act incorporates this opt-out by reference for generative-AI training (Art 53(1)(c)).
• InfoSoc Directive 2001/29 — base reproduction + communication rights.
• Database Directive 96/9 — sui generis right for substantial investment in databases.
• Software Directive 2009/24 — special rules for computer programs; reverse engineering for interoperability permitted (Art 6).

8.9 Open-source licenses

Permissive — minimal restrictions on combination:

• MIT — attribution only; one of the simplest.
• BSD-3-Clause — attribution + no-endorsement.
• BSD-2-Clause — attribution only.
• Apache 2.0 — attribution + patent grant + NOTICE file + termination on patent litigation.
• ISC — minimal, similar to MIT.

Copyleft — combination triggers obligation to license under same license:

• GPL-2.0 / GPL-3.0 — strong copyleft; derivative works must be GPL.
• AGPL-3.0 — closes the SaaS loophole; network use triggers obligation.
• LGPL-2.1 / LGPL-3.0 — weak copyleft; library link doesn’t trigger if dynamic.
• MPL-2.0 — file-level copyleft; modifications to MPL files must be MPL, but combination with proprietary code allowed.

Other patterns:

• Source-available but not OSI-approved: BSL (Business Source License, MariaDB / Sentry / CockroachDB), SSPL (MongoDB), Elastic License (post-2021), Functional Source License (FSL, Sentry 2023), AGPL with CLA flexibility.
• Creative Commons — CC0 (public domain dedication), CC-BY (attribution), CC-BY-SA (share-alike), CC-BY-NC (non-commercial — incompatible with most open-source), CC-BY-ND (no derivatives — incompatible with software).
• SPDX identifiers — standardized license tags (e.g., “SPDX-License-Identifier: Apache-2.0”).

License compatibility — the practical question is whether you can combine two differently-licensed components. GPL-3 incompatible with GPL-2-only; Apache 2 compatible into GPL-3 but not GPL-2; AGPL pulls SaaS combinations.

9. Trademarks

9.1 Function

Source identifiers — marks that consumers associate with a particular origin of goods or services. The legal foundation is consumer protection (avoiding confusion) + producer goodwill protection.

9.2 Strength spectrum

From weakest to strongest (the Abercrombie spectrum from Abercrombie & Fitch v Hunting World, 537 F 2d 4 (2d Cir 1976)):

1. Generic — the common name for the product itself; unprotectable (“aspirin,” “thermos,” “escalator,” “trampoline” — all genericide victims).
2. Descriptive — describes a feature; protectable only with secondary meaning (the public associates it with the source). E.g., “Holiday Inn,” “American Airlines.”
3. Suggestive — requires imagination to connect to the product; inherently distinctive. E.g., “Coppertone” for sunscreen, “Greyhound” for buses.
4. Arbitrary — common word unrelated to product. E.g., “Apple” for computers, “Camel” for cigarettes.
5. Fanciful — coined word. E.g., “Kodak,” “Xerox,” “Exxon,” “Verizon.”

9.3 Registration

• United States — USPTO Principal Register (full benefits) + Supplemental Register (limited; for descriptive marks without secondary meaning yet).
• Application bases: actual use in commerce (§ 1(a)) or intent to use (§ 1(b)).
• Madrid Protocol — single international application via WIPO designating up to 130 countries.
• Examination — likelihood of confusion + descriptiveness + genericness + scandalous matter (the scandalous bar was struck down in Iancu v Brunetti, 588 US 388 (2019); the disparagement bar in Matal v Tam, 582 US 218 (2017)).
• Publication + opposition — 30-day window for third parties to oppose at TTAB.
• Renewal — § 8 declaration of use (between 5-6 years and at each 10-year renewal); § 9 renewal every 10 years.

9.4 Symbols

• TM — unregistered trademark claim (any common-law mark).
• SM — service mark (less common in practice).
• ® — federally registered (US); use only after registration issues.

9.5 Trade dress

Protection extends to the look-and-feel of products + packaging + decor (Two Pesos v Taco Cabana, 505 US 763 (1992)) — but must be non-functional (TrafFix Devices v Marketing Displays, 532 US 23 (2001)). Product design trade dress requires secondary meaning (Wal-Mart v Samara Bros, 529 US 205 (2000)).

9.6 Infringement — likelihood of confusion

Multi-factor analysis under the Polaroid factors (Polaroid Corp v Polarad Electronics, 287 F 2d 492 (2d Cir 1961)) — strength of mark, similarity of marks, proximity of goods, likelihood of bridging the gap, actual confusion, defendant’s good faith, quality of goods, sophistication of buyers. Other circuits use parallel formulations (Ninth: AMF v Sleekcraft; Federal: DuPont).

9.7 Dilution

The Trademark Dilution Revision Act (TDRA) 2006 protects famous marks from blurring (impairing distinctiveness) + tarnishment (harming reputation), regardless of likelihood of confusion. Famousness threshold is high — household-name marks.

9.8 Genericide

When the brand name becomes the common term for the product, protection is lost. Cautionary tales: aspirin, escalator, thermos, trampoline, dry ice, kerosene, zipper. Active defense (Google v Elliott, 860 F 3d 1151 (9th Cir 2017) — “google” still a trademark despite verb use).

9.9 Cybersquatting

• UDRP — Uniform Domain-Name Dispute-Resolution Policy administered by ICANN; arbitrated by WIPO, NAF, ADNDRC, others.
• ACPA — Anticybersquatting Consumer Protection Act 1999 (15 USC § 1125(d)); statutory damages + transfer.

10. Trade secrets

10.1 What is a trade secret

Information that:

• Derives independent economic value from not being generally known or readily ascertainable.
• Is subject to reasonable efforts to maintain secrecy.

Examples: source code, customer lists, manufacturing processes, formulas (Coca-Cola formula), pricing strategies, supplier relationships, internal financial data, ML model weights + training data + hyperparameters in many cases.

10.2 Legal framework

• Defend Trade Secrets Act of 2016 (DTSA, 18 USC § 1836) — federal civil cause of action; ex parte seizure remedy in extraordinary circumstances; concurrent with state law.
• Uniform Trade Secrets Act (UTSA) — adopted by 48 states + DC (New York and North Carolina have variants).
• EU Trade Secrets Directive (2016/943) — harmonized minimum protection across EU.
• Economic Espionage Act 1996 (18 USC § 1831-1832) — criminal trade-secret theft; 1831 (foreign government benefit), 1832 (commercial).

10.3 Misappropriation

Acquisition by improper means — theft, bribery, misrepresentation, breach of duty, espionage, electronic intrusion. Disclosure or use of trade secret known to be acquired improperly. Reverse engineering of lawfully-acquired products is not improper means.

10.4 Notable cases

• Waymo v Uber — Otto / autonomous-vehicle source code; settled Feb 2018 for ~$245M equity.
• DuPont v Kolon Industries — Kevlar para-aramid fiber; $920M verdict (2011), criminal indictment of Kolon execs, settled with restitution.
• Epic Systems v Tata Consultancy — $940Mjuryaward,reducedto$420M (7th Cir 2020).
• ZeniMax v Oculus — Oculus VR; $500M jury verdict (2017), reduced; settled 2018.
• Apple v Rivos + Apple v Andrea Goh + serial Apple silicon team poaching suits 2022-25.
• Skillz v Voodoo (2024) — mobile gaming trade secrets.

10.5 Practical protection program

• NDAs (employees + contractors + business partners).
• Access controls — RBAC + least privilege + audit logs.
• DLP (Data Loss Prevention) — Microsoft Purview, Forcepoint, Symantec.
• Tagged confidentiality classifications + watermarking.
• Employee training + exit interviews + return-of-property certification.
• Onboarding interviews + acknowledgment that new hire isn’t bringing prior employer’s secrets.
• Network segregation + USB blocking for sensitive areas.
• Physical security + visitor logs + escort policies.

11. Choice between IP regimes

The same innovation can sometimes be protected by multiple regimes — or by none. The strategic question is which trade-offs make sense.

Asset	Patent?	Copyright?	Trade secret?	Trademark?
Software source code	Rarely (Alice)	Yes	Often	Brand on UI
Compression algorithm	Yes, if novel	Code only	Possible until disclosure	No
Search algorithm	Hard post-Alice	Code only	Strong (Google)	Brand only
Product industrial design	Design patent	Limited	No	Trade dress
Brand name + logo	No	Logo art	No	Yes (primary)
Customer list	No	Compilation thin	Yes	No
Coca-Cola formula	No (would disclose)	No	Yes (forever)	“Coca-Cola” mark
ML model weights	Hard	Unclear (US Copyright Office)	Yes	No
Training-data corpus	No	Compilation thin	Often (commercial value)	No

Key trade-offs:

• Patent: 20-year exclusivity but requires full public disclosure + filing costs + uncertainty of grant + risk of invalidation. Independent invention does not defeat (you can sue anyone practicing).
• Trade secret: potentially forever (Coca-Cola formula since 1886) + no filing + no disclosure, but no protection against independent discovery or reverse engineering + lost the moment information leaks.
• Copyright: free + automatic + long (life + 70) but doesn’t protect underlying ideas, functions, methods — only the specific expression.
• Trademark: brand identity protection; renewable forever as long as use continues + no genericide.

The frontier examples in 2024-26:

• ML model weights — OpenAI / Anthropic / Google DeepMind closed-weights treated as trade secret; Meta’s Llama family treated as copyright + license; output indemnity provisions in API terms.
• Training-data corpora — typically trade secret + claimed dataset rights, even when scraped from public web.

12. AI + IP — 2024-26 state of play

12.1 AI training and fair use

See § 8.7 above. Net summary as of mid-2026:

• Training itself trending toward fair use for legitimately-acquired works.
• Pirated source corpora (LibGen, Anna’s Archive) is a serious risk amplifier — Bartz v Anthropic split the question on source legitimacy.
• Output memorization / reproduction risk remains distinct.

12.2 Authorship + AI-generated content

• US Copyright Office Guidance — “Works Containing Material Generated by Artificial Intelligence” (March 16, 2023); follow-up Part 1 (July 31, 2024) + Part 2 on Copyrightability (January 2025) + Part 3 on Training (anticipated). Position: human authorship is required; AI-generated portions are not protectable; human selection / arrangement / modification can be.
• Zarya of the Dawn — Kris Kashtanova’s graphic novel; Copyright Office issued partial registration (March 2023) — text + arrangement protected, individual Midjourney-generated images not.
• Thaler v Perlmutter, 687 F Supp 3d 140 (DDC 2023), aff’d, 130 F 4th 1116 (DC Cir 2025) — AI cannot be sole author; human authorship required for copyright.
• UK + EU position similar — human author required, with the UK’s “computer-generated works” provision (CDPA 1988 § 9(3)) under review.
• China — Li v Liu (Beijing Internet Court 2023) recognized copyright in AI-assisted output where human contribution was sufficient; outlier among major jurisdictions.

12.3 EU AI Act

Regulation (EU) 2024/1689, in force August 1, 2024; risk-tiered application phased through 2027.

• Prohibited practices (Art 5) — social scoring, subliminal manipulation, exploitation of vulnerabilities, indiscriminate scraping of facial images for biometric DB, real-time remote biometric ID in public spaces (with narrow exceptions).
• High-risk systems (Annex III) — employment, education, credit scoring, critical infrastructure, law enforcement, migration, biometric, healthcare in certain uses. Require conformity assessment + risk management + data governance + human oversight + accuracy + cybersecurity + post-market monitoring.
• General-Purpose AI models (Chapter V) — transparency, copyright compliance (Art 53(1)(c) — written policy + opt-out respect), summary of training content (Art 53(1)(d)).
• GPAI with systemic risk (≥ 10^25 FLOPs training compute as of 2024-26 threshold) — additional evaluation, adversarial testing, incident reporting, cybersecurity.
• Transparency obligations (Art 50) — AI-generated synthetic content must be labeled in machine-readable form; deepfakes disclosed.
• Penalties up to 7% of global annual turnover or €35M for prohibited practices.

12.4 Patent inventorship

• United States — Thaler v Vidal, 43 F 4th 1207 (Fed Cir 2022) — under Patent Act “individual” means natural person; AI cannot be named inventor.
• United Kingdom — Thaler v Comptroller-General, [2023] UKSC 49 — same conclusion; AI cannot be inventor under Patents Act 1977.
• EPO — Boards of Appeal: AI not eligible as inventor.
• Australia — Thaler v Commissioner of Patents, [2022] FCAFC 62 (Full Federal Court) — reversed initial trial decision; AI cannot be inventor.
• South Africa — granted Thaler’s DABUS patent (formal examination only, no substantive review of inventorship).

12.5 AI output liability

Practical allocation in commercial deals as of 2024-26:

• User generally responsible for ensuring AI output use doesn’t infringe third-party rights — this is the default in most generative-AI EULAs.
• Vendor indemnities for paid customers — Microsoft Copilot Copyright Commitment (Sept 2023), Google “Generative AI Indemnification” (Oct 2023), OpenAI “Copyright Shield” (Nov 2023), Adobe Firefly indemnity, Anthropic indemnity for Claude paid customers; common conditions: use guardrails not disabled, no intentionally circumvention, prompt-by-prompt not bulk training, prompt notice + cooperation, vendor controls defense.
• Open-weights models (Llama, Mistral, Gemma) — typically no vendor indemnity; user assumes risk.

13. Privacy + data + AI regulation

13.1 GDPR (EU)

Regulation (EU) 2016/679, in force May 25, 2018.

• Scope (Art 3) — processing of personal data of EU residents, regardless of processor location.
• Lawful bases (Art 6) — consent, contract necessity, legal obligation, vital interest, public task, legitimate interest.
• Principles (Art 5) — lawfulness/fairness/transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity/confidentiality, accountability.
• Data subject rights (Arts 15-22) — access, rectification, erasure (“right to be forgotten”), restriction, portability, objection, no automated decision-making (Art 22).
• Special categories (Art 9) — health, race, ethnic origin, political, religious, biometric for ID, genetic, sexual orientation — heightened requirements.
• DPIA (Art 35) — Data Protection Impact Assessment for high-risk processing.
• DPO (Art 37) — required for public bodies + large-scale special-category + systematic monitoring.
• Breach notification (Art 33) — 72 hours to supervisory authority.
• Fines (Art 83) — up to 4% global annual turnover or €20M for serious violations; lower tier 2% / €10M.

13.2 US state + sectoral privacy

• CCPA + CPRA (California) — Cal Civ Code § 1798.100 et seq.; opt-out of sale + share; sensitive personal info opt-out; rights of access + deletion + correction; CPPA enforcement.
• Virginia VCDPA, Colorado CPA, Connecticut CTDPA, Utah UCPA, Texas TDPSA, Oregon OCPA, Montana MCDPA, Iowa ICDPA, Delaware DPDPA, Tennessee TIPA, Indiana ICDPA, Florida FDBR + 20+ more states (as of 2026) — modeled on CCPA/Virginia template; opt-out + transparency + data-broker registration + universal opt-out signal recognition.
• HIPAA (45 CFR Parts 160, 162, 164) — health-care privacy + security; covered entities + business associates.
• GLBA (15 USC § 6801) — financial-institution privacy + safeguards.
• FERPA (20 USC § 1232g) — student educational records.
• COPPA (15 USC § 6501) — children under 13 online.
• FCRA (15 USC § 1681) — consumer reporting agencies.
• TCPA (47 USC § 227) — phone + SMS marketing.
• VPPA (18 USC § 2710) — video privacy; major modern revival via streaming + pixel-tracking class actions (2022-26).

13.3 EU AI Act + AI governance

See § 12.3.

Companion frameworks:

• NIST AI Risk Management Framework (AI RMF 1.0) — voluntary; Govern + Map + Measure + Manage functions.
• NIST AI RMF Generative AI Profile (July 2024).
• ISO/IEC 42001:2023 — AI Management System.
• ISO/IEC 23894:2023 — AI risk management.
• OECD AI Principles (2019, updated 2024).
• G7 Hiroshima AI Process (2023+) — Code of Conduct for advanced AI developers.

13.4 US state AI laws (selected)

• Colorado SB 24-205 (AI Act, effective Feb 2026) — high-risk AI consumer impact disclosure + risk management.
• NYC Local Law 144 (AEDT, effective July 2023) — bias audit + notice for automated employment decision tools.
• Utah AI Policy Act (S.B. 149, 2024) — disclosure for regulated occupations.
• California SB 1001 (chatbot disclosure for sales/electioneering, 2019).
• Illinois Artificial Intelligence Video Interview Act (2020) + amendments.
• Texas TRAIGA (2025) — AI governance.
• State AGs + FTC Section 5 — enforcement via existing consumer-protection and civil rights statutes.

13.5 Cross-border data transfers

• EU SCCs — Standard Contractual Clauses (2021 modernized version); module-based depending on transfer scenario.
• BCRs — Binding Corporate Rules; intra-group transfers.
• EU-US Data Privacy Framework (DPF) (July 2023, replacing Privacy Shield struck down in Schrems II (CJEU C-311/18, 2020)); challenged at General Court but still in force as of 2026.
• UK extension + UK-US data bridge.
• Adequacy decisions for ~15 countries (Andorra, Argentina, Canada commercial, Faroe Islands, Guernsey, Isle of Man, Israel, Japan, Jersey, NZ, Republic of Korea, Switzerland, UK, Uruguay, US-DPF).

14. Antitrust + competition (brief)

See planned Law/antitrust-and-competition for depth. Headlines for the engineering / startup reader:

• US: Sherman Act § 1 (concerted restraint) + § 2 (monopolization), Clayton Act § 7 (mergers), FTC Act § 5 (unfair methods of competition + unfair/deceptive practices), Robinson-Patman Act § 2 (price discrimination — newly revived under FTC 2024-25), HSR Act premerger notification.
• EU: Article 101 TFEU (cartels + agreements), Article 102 (abuse of dominance), EU Merger Regulation (139/2004), Digital Markets Act (DMA, 2022).
• UK: Competition Act 1998, Enterprise Act 2002, Digital Markets Competition and Consumers Act 2024.
• Recent landmark matters:
  • US v Google (DDC) — search monopolization; liability finding August 5, 2024 (Mehta J); remedies trial 2024-25; final remedies opinion August 2025.
  • US v Google (E.D. Va.) — ad-tech; liability finding April 17, 2025.
  • FTC v Meta — Onavo / Instagram / WhatsApp acquisitions; trial began April 14, 2025.
  • FTC v Amazon — marketplace; filed Sept 2023; trial 2026.
  • Epic v Apple / Google — Epic largely lost vs Apple (9th Cir 2023, cert denied 2024) but won 2024 contempt ruling on App Store guidelines; won jury verdict vs Google December 2023.
  • DOJ v Apple (D NJ, filed March 2024) — smartphone monopolization.
  • Visa / Mastercard interchange — long-running multidistrict litigation.
  • DMA enforcement — Apple, Google, Meta, Microsoft, ByteDance, Amazon designated gatekeepers (2023+); multiple ongoing non-compliance investigations.

15. Contract drafting tips

Practical guidance distilled from countless hours of red-lining:

15.1 Define every term — and capitalize defined terms

If “the Software” matters, define it precisely (current version? specified release? updates? derivatives?). Inconsistent capitalization signals sloppy drafting and creates ambiguity.

15.2 Allocate risk explicitly

Risk allocation is the substance of commercial contracts. Three levers in combination:

• Limitation of liability — caps absolute exposure.
• Indemnification — shifts third-party claim risk.
• Insurance — Cyber + Tech E&O + General Liability requirements with minimums, additional-insured status, waiver of subrogation, primary/non-contributory language.

15.3 Reps + warranties + survival

What’s a representation (statement of past/present fact, gives rise to misrepresentation claim) vs a warranty (continuing promise, breach gives rise to contract claim). Survival period — typical 12-24 months for ordinary reps; survive indefinitely for fundamental reps (authority, organization, ownership of IP) + capped/uncapped accordingly.

15.4 Termination scenarios

Draft for all of:

• For cause + material breach + cure period.
• For convenience — and who has the right, on what notice.
• Change of control.
• Insolvency.
• Failure to meet specific milestones / SLAs. And the cleanup obligations: data return, transition assistance, license tail rights, perpetual licenses to deliverables already paid for, refund of prepaid fees.

15.5 IP assignment that actually works

For work-for-hire / consulting:

• Use present-tense “hereby irrevocably assigns” — not “agrees to assign” (the Stanford v Roche trap).
• Cover all moral rights waiver where local law permits; in jurisdictions where moral rights are inalienable (France, Germany), use license + non-assertion.
• Carve out pre-existing IP explicitly + grant license to use it in deliverables.
• Comply with employee-invention notice statutes (CA Lab Code § 2870 etc.) — explicit notice in offer letter / NDA / IIPA.
• Cover third-party IP in deliverables — open-source disclosure obligation, scan tools (Black Duck, Snyk, FOSSA, GitHub Advanced Security).

15.6 Confidentiality

Definition (broad and conduct-based, not just marking-based), exclusions (the five standard ones), use restriction, term (perpetual for trade secrets), return-or-destroy with certification.

15.7 Boilerplate matters

Boilerplate clauses bite when things go wrong. Pay attention to:

• Governing law + venue + arbitration.
• Notice mechanics + addresses.
• Assignment limits.
• Survival.
• Counterparts + electronic signature.
• Equitable relief without bond.
• Independent contractor (no employment / agency / partnership / fiduciary).
• No-third-party-beneficiaries unless intended.
• Entire agreement / merger.
• Anti-waiver.

15.8 Source-code escrow + open-source policy + audit rights

For licensees of critical proprietary software: source-code escrow with NCC Group / Iron Mountain / EscrowTech, release triggers (insolvency, abandonment, breach), verification.

For licensors / customers building products: written open-source policy + automated license scanning + approved-license list + CLA process for inbound contributions + maintained SBOM (CycloneDX or SPDX).

Audit rights — scope (records vs systems), frequency (annual; on triggered event), notice, conducted by independent auditor, confidentiality, cost allocation (auditee pays if material overpayment found).

15.9 Modern AI contract terms

The 2024-26 generation of vendor contracts increasingly includes:

• Model + dataset disclosure — version, training cutoff, base model, fine-tuning data.
• Usage restrictions — no training on customer data (default for paid B2B AI); no use of outputs to train competing models; volume limits.
• Output ownership — typically customer owns outputs; non-exclusive rights and similar-output disclaimer (multiple users may receive substantially similar outputs from similar prompts).
• Indemnification — IP indemnity for outputs in defined scope (see § 12.5).
• Privacy posture — DPA + zero-data-retention options + processing locations.
• Evaluation rights — customer right to red-team + audit + benchmark.
• Termination assistance — model freeze, export of fine-tunes, transition of conversation history.

16. Negotiation tactics + frameworks

16.1 BATNA + ZOPA

From Fisher + Ury, Getting to Yes (1981, 3rd ed 2011 with Bruce Patton). The core framework:

• BATNA — Best Alternative To a Negotiated Agreement. Your walk-away. Strong BATNA = strong position.
• ZOPA — Zone of Possible Agreement. Overlap between your reservation prices.
• Principled negotiation — separate people from problem; focus on interests, not positions; invent options for mutual gain; insist on objective criteria.

16.2 Integrative vs distributive

• Distributive — fixed pie; one side’s gain is the other’s loss (price negotiation in isolation).
• Integrative — expand the pie; trade across issues with different valuations (e.g., licensee accepts higher royalty in exchange for exclusivity in narrow field).

16.3 Anchoring + framing

• Anchoring — the first number quoted disproportionately influences the final outcome. Studied extensively by Tversky + Kahneman; replicates in laboratory + field.
• Framing — same proposal worded differently produces different responses. Loss aversion: “you’ll save $X"vs"yo{u}^{\prime }lllose$X” — the loss frame is roughly twice as motivating.

16.4 Drafting dynamics

• First draft control — whoever provides the initial draft anchors the deal; their preferred positions become the default unless negotiated out.
• Blackline / redline — track-changes against the prior version; conventions: red for changes, blue for queries, yellow highlight for open issues.
• Markups vs deal points — separate the verbose track-changes from the principal-level deal-point list (5-10 items) that decision-makers review.

17. Dispute resolution

17.1 Litigation

• Federal vs state court — federal-question jurisdiction (28 USC § 1331), diversity jurisdiction (28 USC § 1332) requiring complete diversity + > $75,000.
• Procedure — pleadings + motion practice + discovery + summary judgment + trial + appeal. Modern federal civil procedure governed by Federal Rules of Civil Procedure (FRCP).
• Discovery — depositions, interrogatories, requests for production, requests for admission, expert disclosures. Proportionality (FRCP 26(b)(1) post-2015 amendments).
• E-discovery — Sedona Conference principles + commentary; predictive coding (technology-assisted review, TAR) endorsed by court since da Silva Moore v Publicis (SDNY 2012).
• Class actions — FRCP 23; CAFA 2005 (28 USC § 1332(d)) — federal jurisdiction over class actions ≥ $5M aggregate + minimal diversity.
• Multidistrict Litigation (MDL) — 28 USC § 1407 — JPML transfers related federal cases to single judge for pretrial.

17.2 Arbitration

• Forums — AAA + ICDR (international AAA), JAMS (commercial), ICC (international), LCIA (London), HKIAC (Hong Kong), SIAC (Singapore), ICSID (investor-state under World Bank).
• Rules — institutional rules + UNCITRAL Arbitration Rules (ad hoc).
• FAA — Federal Arbitration Act 1925 (9 USC § 1-16) — strong policy favoring arbitration; limited grounds for vacatur (§ 10).
• NY Convention 1958 — recognition + enforcement of foreign awards in 170+ countries; narrow grounds for refusal.
• Pros: speed (relative), confidentiality, expertise, finality.
• Cons: limited discovery, no precedent, cost (arbitrator + institution fees), constrained appeal.
• Class-action waivers — generally enforceable (Concepcion, Epic Systems).

17.3 Mediation

Non-binding facilitated negotiation. Often contractually required (multi-tier dispute clauses) before arbitration / litigation. Increasingly mandatory pre-trial in many courts.

18. Software + tooling

18.1 Contract lifecycle management (CLM)

• Ironclad — workflow + AI playbook + repository.
• LinkSquares — AI extraction + analytics + workflow.
• Lexion — acquired by Docusign in 2024.
• Evisort — acquired by Workday in 2024.
• DocuSign Insight + CLM — built around the signature platform.
• Agiloft — configurable CLM.
• Conga + ContractWorks + ContractPodAi + SirionLabs.

18.2 AI contract review

• Spellbook — generative AI drafting and review in Word.
• Harvey AI — OpenAI-backed legal LLM (2024 product launches); deployed at Allen & Overy, PwC Legal, A&O Shearman.
• Robin AI — contract review automation.
• LegalSifter, LawGeex, Klarity, Eigen Technologies.

18.3 Legal research

• Westlaw (Thomson Reuters).
• Lexis + Lexis+ AI (LexisNexis).
• Bloomberg Law — strong for transactional + practice notes.
• Casetext — acquired by Thomson Reuters June 2023, integrated as CoCounsel.
• Fastcase + vLex (merged 2023 as vLex).
• Free + low-cost: CourtListener (Free Law Project), Justia, Google Scholar, government databases (PACER, USPTO, EUIPO, EPO).

18.4 IP-specific tools

• Patent search: PatSnap, Derwent, Patbase, Lens.org (free), Google Patents (free).
• Trademark search: TrademarkNow, CompuMark, USPTO TESS / TSDR.
• IP management: AppColl, FoundationIP, CPA Global / Clarivate IPfolio, Anaqua.
• Open-source compliance: Black Duck, Snyk, FOSSA, GitHub Advanced Security, OSS Review Toolkit (ORT).

18.5 E-signature

DocuSign, Adobe Sign, HelloSign / Dropbox Sign, PandaDoc, SignNow, OneSpan, Notarize (RON — remote online notarization).

19. Cross-references

• _index — this library overview
• corporate-finance-and-markets — entity structure, capital structure, M&A, securities
• microeconomics-foundations — antitrust economic foundations + market definition
• auth-authz — consent management, RBAC, audit logs (privacy engineering)
• transformer-architecture — what training data actually is + how it’s used (relevant to fair-use analysis)
• quality-systems-iso9001 — regulatory compliance frameworks; intersection with product liability + FDA QSR + ISO 13485 + IEC 62304

20. Citations

Primary authorities

• Restatement (Second) of Contracts (American Law Institute 1981).
• Uniform Commercial Code (ALI / Uniform Law Commission), especially Articles 1, 2, 9 with Official Comments.
• US Patent Act, 35 USC §§ 1-390.
• US Copyright Act, 17 USC §§ 101-1511.
• Defend Trade Secrets Act, 18 USC § 1836-1839.
• Lanham Act, 15 USC §§ 1051-1141n.
• Federal Arbitration Act, 9 USC §§ 1-16.
• E-SIGN Act, 15 USC §§ 7001-7031.
• Uniform Trade Secrets Act (ULC 1979/1985).
• Uniform Electronic Transactions Act (ULC 1999).

EU + International

• Regulation (EU) 2016/679 (GDPR).
• Regulation (EU) 2024/1689 (AI Act).
• Directive (EU) 2019/790 (DSM Copyright Directive).
• Directive (EU) 2016/943 (Trade Secrets).
• Regulation (EU) 910/2014 + 2024/1183 (eIDAS + eIDAS 2.0).
• Berne Convention for the Protection of Literary and Artistic Works (1886, last revised 1971 Paris Act).
• Paris Convention for the Protection of Industrial Property (1883, last revised 1967 Stockholm Act).
• Patent Cooperation Treaty (PCT, 1970).
• Madrid Protocol (1989).
• WIPO Copyright Treaty (1996) + WIPO Performances and Phonograms Treaty (1996).
• Agreement on Trade-Related Aspects of Intellectual Property Rights (TRIPS, 1994).
• UN Convention on Contracts for the International Sale of Goods (CISG, Vienna 1980).
• New York Convention on the Recognition and Enforcement of Foreign Arbitral Awards (1958).
• UNCITRAL Model Law on International Commercial Arbitration (1985, amended 2006).

Key cases

• Hadley v Baxendale (1854) 9 Exch 341 (Court of Exchequer) — consequential damages foreseeability.
• Raffles v Wichelhaus (1864) 2 Hurl & C 906 — the Peerless case; mutual mistake.
• Polaroid Corp v Polarad Electronics Corp, 287 F 2d 492 (2d Cir 1961) — likelihood-of-confusion factors.
• Graham v John Deere Co, 383 US 1 (1966) — patent obviousness inquiry.
• Abercrombie & Fitch v Hunting World, 537 F 2d 4 (2d Cir 1976) — trademark distinctiveness spectrum.
• Apple Computer v Franklin Computer, 714 F 2d 1240 (3d Cir 1983) — software copyrightability.
• Computer Associates v Altai, 982 F 2d 693 (2d Cir 1992) — abstraction-filtration-comparison.
• Campbell v Acuff-Rose Music, 510 US 569 (1994) — fair use parody.
• ProCD v Zeidenberg, 86 F 3d 1447 (7th Cir 1996) — shrinkwrap enforceability.
• Specht v Netscape, 306 F 3d 17 (2d Cir 2002) — browse-wrap unenforceable absent affirmative consent.
• Festo Corp v Shoketsu Kinzoku, 535 US 722 (2002) — prosecution-history estoppel + doctrine of equivalents.
• KSR International v Teleflex, 550 US 398 (2007) — flexible obviousness analysis.
• Bilski v Kappos, 561 US 593 (2010) — patent subject matter; machine-or-transformation not exclusive test.
• AT&T Mobility LLC v Concepcion, 563 US 333 (2011) — class-action waivers + arbitration.
• Stanford v Roche, 563 US 776 (2011) — “agree to assign” insufficient for present transfer.
• Mayo Collaborative Servs v Prometheus Labs, 566 US 66 (2012) — natural-law exception.
• Association for Molecular Pathology v Myriad Genetics, 569 US 576 (2013) — isolated DNA unpatentable.
• Alice Corp v CLS Bank International, 573 US 208 (2014) — abstract-idea two-step test.
• Nautilus v Biosig Instruments, 572 US 898 (2014) — patent definiteness.
• Authors Guild v Google, 804 F 3d 202 (2d Cir 2015) — Google Books fair use.
• Halo Electronics v Pulse Electronics, 579 US 93 (2016) — enhanced patent damages.
• Epic Systems v Lewis, 584 US 497 (2018) — class waivers in employment.
• Oil States Energy Services v Greene’s Energy, 584 US 407 (2018) — IPR constitutional.
• Matal v Tam, 582 US 218 (2017); Iancu v Brunetti, 588 US 388 (2019) — trademark content restrictions.
• Schrems II, CJEU C-311/18 (16 July 2020) — Privacy Shield invalidated.
• Google v Oracle America, 593 US 1 (2021) — Java API fair use.
• Amgen v Sanofi, 598 US 594 (2023) — enablement of genus claims.
• Andy Warhol Foundation v Goldsmith, 598 US 508 (2023) — transformativeness narrowed.
• Thaler v Comptroller-General, [2023] UKSC 49 — AI not an inventor.
• Thaler v Perlmutter, 130 F 4th 1116 (DC Cir 2025) — AI not an author.
• Bartz v Anthropic (ND Cal 2025) — partial summary judgment on training fair use vs pirated corpus.
• Hachette v Internet Archive, 115 F 4th 163 (2d Cir 2024) — controlled digital lending not fair use.
• United States v Google (DDC, Aug 2024 liability + Aug 2025 remedies) — search monopolization.
• United States v Google (E.D. Va. Apr 2025) — ad-tech monopolization.

Foundational texts

• Roger Fisher + William Ury + Bruce Patton, Getting to Yes: Negotiating Agreement Without Giving In (Houghton Mifflin 1981; 3rd ed 2011).
• Charles Fried, Contract as Promise (Harvard 1981; 2d ed 2015).
• Robert Merges, Peter Menell, Mark Lemley, Intellectual Property in the New Technological Age (Wolters Kluwer, latest ed).
• William Landes + Richard Posner, The Economic Structure of Intellectual Property Law (Belknap/Harvard 2003).
• Jeanne Fromer + Christopher Sprigman, Copyright Law: Cases and Materials (open casebook).
• Mark Lemley, Software and Internet Law (Aspen, latest ed).