The founder I worked with had served as CEO of his company for eleven years, sold it to a strategic buyer in 2023, and stepped off the board the day of closing. He took the cash, walked out of the conference room, and got on a plane for an island in the Caribbean for what he later described as the cleanest break of his professional life. Twenty months after closing, he received a certified-mail letter on the island from a plaintiff’s law firm in Manhattan informing him that he was a defendant in a federal securities-fraud action arising out of disclosures made by the target during the pre-closing period. He called me from a beach.
His first question was whether the D&O tail policy that had been bound at closing would cover him. The answer was a long, qualified yes. The tail would respond to the claim. The tail would advance defense costs. The tail would, subject to the policy’s limits and exclusions, eventually pay the settlement. The tail would not, however, cover any portion of the claim that arose from facts the policy’s exclusions reached, would not cover any defense work he had already paid for personally during the months between the demand letter and the formal claim, and would not cover any portion of the indemnification he might owe to the buyer under the merger agreement’s indemnification clauses. The tail was real coverage. It was just smaller, slower, and less complete than the founder’s mental model of it.
This is the conversation I have with founders about D&O tail insurance roughly twice a year, and it always surfaces the same three gaps. The tail is a useful piece of protection. It is not, by itself, the protection most founders think it is.
What the tail actually is
The D&O run-off — usually called a “tail” — is a six-year extension of the target’s directors-and-officers liability insurance policy, bound at closing, that responds to claims first made during the six-year tail period for wrongful acts that occurred before closing. The structural premise is that after closing the target is owned by the buyer, the target’s officers and directors as of closing are no longer in their roles, and the target’s regular D&O policy will be cancelled and replaced by the buyer’s parent-policy structure. The tail bridges the gap between the closing date and the running-out of the statute of limitations on claims based on pre-closing conduct.
Six years is the standard tail length, primarily because most state securities-law and corporate-fiduciary-duty claims have statute-of-limitations periods that fall within six years. Some deals negotiate longer tails — seven, eight, or even ten years — particularly for targets with potential long-tail exposures in regulated industries or in jurisdictions with longer limitations periods. The tail premium is typically paid as a single lump sum at closing, with the cost falling somewhere between one hundred fifty percent and two hundred fifty percent of the target’s annual D&O premium for a six-year tail at comparable limits.
The merger agreement usually requires the target to purchase the tail at closing and provides that the tail will be paid for out of the closing transaction proceeds — meaning the sellers fund it. Some agreements split the cost between buyer and seller, but the more common arrangement in middle-market deals is that the sellers bear the full cost. The selling stockholders should be aware that the tail premium will reduce the cash they receive at closing by a six- or seven-figure amount in most deals, and they should be in the room when the limits and exclusions are negotiated.
Gap one: the policy exclusions follow the founder into the tail
The exclusions in the target’s underlying D&O policy follow into the tail. If the underlying policy had a fraud exclusion, an insured-versus-insured exclusion, a regulatory-action exclusion, or a personal-conduct exclusion, the tail has those exclusions too. The buyer’s M&A counsel sometimes treats the tail as if it were a brand-new policy negotiated at arm’s length, but it is not. It is a run-off of the existing policy on the terms of the existing policy.
This matters in two specific ways. First, the underlying policy was probably last negotiated by the target’s broker years before the sale, and may contain exclusions that have not been kept current with the market — particularly around cyber events, ESG claims, and personal-data-breach claims. The seller’s counsel should review the underlying policy’s exclusion list before closing, and should negotiate with the carrier (typically the same carrier that wrote the underlying policy) to clean up the worst of the exclusions before binding the tail. The carrier is usually willing to do this for an additional premium, because the carrier wants the tail business. The seller’s broker is the right party to drive this conversation, and the broker is often not engaged on the deal until after the tail has already been bound on the underlying policy’s terms.
Second, the “personal conduct” or “deliberate fraud” exclusion in the underlying policy interacts oddly with the buyer’s indemnification claims under the merger agreement. If the buyer brings an indemnification claim against the seller, and the underlying basis of the claim is a misrepresentation that the buyer characterizes as fraudulent, the carrier may invoke the personal-conduct exclusion to deny coverage — leaving the founder to defend both the buyer’s indemnification claim and any third-party claim that arose from the same facts, without the tail picking up either defense. The interaction between the merger agreement’s indemnification clauses and the tail’s exclusions is one of the most under-examined pieces of M&A risk allocation, and it surfaces almost exclusively in post-closing litigation.
Gap two: indemnification disputes are not third-party claims
The D&O tail responds to third-party claims — securities-fraud lawsuits, fiduciary-duty derivative actions, regulatory investigations, and the like. It does not respond to direct claims between the buyer and the seller under the merger agreement. The indemnification claim that the buyer asserts against the seller post-closing — the wage-and-hour exposure, the undisclosed liability, the breach of a financial-statement rep — is not a covered claim under the D&O tail. The founder defending that claim is defending it on his own dime, out of the escrow if there is one, or out of his pocket if the escrow has been exhausted.
The mental model that “the D&O tail covers me for six years post-closing” is correct for one bucket of claims and wrong for the other. The third-party-claim bucket is covered, subject to exclusions. The merger-agreement-indemnification bucket is not covered at all. The escrow is the founder’s protection against the indemnification bucket; the tail is the founder’s protection against the third-party bucket. The two pieces of protection cover different risks, and the founder who treats them as fungible — or treats either as a complete shield — is wrong about both.
There is a partial workaround: some seller-side broker arrangements include a separately negotiated “side A” excess D&O policy that does respond to certain indemnification-related exposures for individual directors and officers. The side-A excess is structurally different from the tail and is more expensive on a per-dollar-of-limit basis, but for founders who served in officer or director roles at the target it is sometimes worth the additional premium. The decision to buy it is made at closing, not afterward, and most founders do not get the option presented to them clearly. Post-closing governance risk for founders who have served on boards is a topic worth treating as a separate workstream in the deal, rather than as a footnote to the indemnification negotiation.
Gap three: the timing trap
The tail policy is a “claims-made-and-reported” policy. It responds only to claims first made during the tail period and reported to the carrier during the tail period. The timing of “first made” and “reported” is technical and frequently misunderstood. A demand letter received by the founder at his home address, that the founder did not interpret as a “claim,” that sat in a desk drawer for three months before being forwarded to the broker, can blow the policy. The carrier’s position is that the claim was made on the date of the demand letter, that the policy required reporting within a defined period (often ninety days), and that the late report — even if the claim itself was within the policy period — voids coverage.
I have seen this trap close on founders three or four times. The fact pattern is almost identical each time: the founder receives a letter, does not understand it is a “claim,” waits to talk to a lawyer about it, eventually loops in the broker, and discovers that the reporting window has either run or is about to. The fix is administrative: founders who have a D&O tail in place should forward anything that looks like a demand, a subpoena, an investigation letter, or any correspondence from a lawyer or regulator to their broker within forty-eight hours, with a written note asking the broker to provide initial notice to the carrier under the tail. The broker can sort out whether the letter is a “claim” on the policy’s terms; the broker cannot rescue a missed reporting deadline.
What founders should be doing at closing
Five things, in order of priority. First, see the actual policy. The merger agreement obligates the target to bind the tail, but the policy is delivered to the buyer or to the target’s surviving entity, not to the selling founder. The founder should request a copy of the bound tail policy at closing, in addition to the binder, and should keep it with the deal closing book. Second, identify the carrier’s claims-reporting address and the broker’s claims contact, and keep both on file with personal contact information that does not depend on the founder still having access to the target’s email system. Third, evaluate whether a side-A excess policy is appropriate for the founder’s exposure profile, and negotiate it as part of the closing package if so.
Fourth, ask the seller’s broker to walk through the underlying policy’s exclusion list before binding, and to negotiate clean-ups with the carrier for any exclusions that are unusually broad or that have not kept current with market terms. Fifth, recognize that the tail and the escrow are different pieces of protection covering different risks, and do not assume that either one alone is a complete shield. The corporate-governance literature on post-closing director and officer protection has been increasingly attentive to the gap between what the tail is marketed as and what it actually delivers, and founders going through their first sale do not always benefit from that literature in time.
The D&O tail is good insurance. It is not, by itself, the comprehensive post-closing shield that founders often assume it to be. The conversation founders should be having at closing is about which exposures are covered, which exposures are not, and what additional protections — side-A excess, indemnification language tightening, escrow structure — close the remaining gaps. Founder-side post-closing planning is the work of mapping the gaps, not of trusting any single piece to cover the field.
If you are a founder approaching closing and trying to figure out whether the D&O tail your deal documents are binding actually covers your post-closing exposure, feel free to reach out to my firm manager, Magda, at Magda@montague.law, or fill out our contact form. Mention you read this post.
— John
