Startups move fast; disputes do not. Between first commit and first customer, a company’s fate often turns on documents few founders dream about: the agreements that set expectations, protect what you build, and keep future investors from raising eyebrows. Legal templates are the scaffolding-lightweight, repeatable structures that let you move quickly without improvising the foundations every time.
Used well, templates reduce ambiguity, align co-founders, capture intellectual property, and standardize how you hire, sell, and raise capital. They also make diligence easier: clear vesting, clean cap tables, sensible customer terms, and consistent data practices signal operational maturity long before revenue does.
This article maps the core templates most early-stage teams need-from founder and IP assignments to NDAs, employment and contractor documents, equity and option plans, commercial agreements, website policies, data addenda, and fundraising instruments-plus notes on when to customize, what to watch for, and how to keep pace as you grow. It’s a practical starting point, not a substitute for legal advice, designed to help you move fast without breaking the company.
Cofounder alignment
Set expectations in writing before the first commit. A founder agreement should capture roles, decision rights, time commitments, compensation, and what happens if someone leaves. Use four-year vesting with a one-year cliff as the default to align incentives and protect the cap table; pair it with reverse vesting or a company repurchase right so unvested shares return to the company if a founder departs. Clarify whether there’s single- or double-trigger acceleration on acquisition, and define good leaver vs. bad leaver outcomes to avoid ambiguity later.
- Roles & decision-making: who owns what domain, tie-breakers, board vs. management authority
- Time & contribution: full-time start date, non-competes, cash vs. sweat equity, salary step-ups
- Departures: notice periods, garden leave, buyback formula, non-solicit/non-disparagement
- Funding: pro-rata rights, founder lock-ups, treatment of founder loans
| Milestone | Vests | Notes |
|---|---|---|
| Month 12 | 25% | Cliff; nothing before |
| Months 13-48 | 1/48 monthly | Pro-rata vesting |
| Change of Control | 0-25% accel. | Negotiate single/double trigger |
Own the code and the brand from day one. Every founder, employee, and contractor should sign a Proprietary Information and Inventions Assignment (PIIA) that assigns all Inventions to the company, waives/assigns moral rights where allowed, and confirms that all work is done as work-for-hire. Carve out personal background IP with a non-exclusive license if needed, and adopt a practical open-source policy to prevent accidental contamination. Tie this to strict Confidential Information obligations, repo access controls, and a device/security policy so the business-not any individual-owns the IP, domains, designs, data, and documentation.
- PIIA essentials: assignment of inventions, confidentiality, return-of-materials, moral rights waiver
- Background IP schedule: list pre-existing assets; grant limited license to use
- Contractor work product: ensure written assignment from any third party
- OSS governance: approved licenses, contribution rules, dependency tracking
Hiring and contractors Protect IP
Early hires set your IP culture. Pair each offer letter with a concise NDA and a Proprietary Information & Inventions Assignment (PIIA) that covers confidential data, present and future inventions, and a moral rights waiver. Keep the offer at‑will with a clear non‑guarantee of duration, spell out equity subject to board approval, and include background‑check and eligibility language. Add a short prior‑inventions disclosure schedule so employees list what they already own, plus a return‑of‑materials duty and a narrowly scoped non‑solicit. Align these documents with your handbook and security policies to ensure consistent definitions of “Confidential Information,” ownership of work product, and acceptable use of tools and code.
Contractors require precision. Use an agreement that states independent status, tax responsibility, and work‑made‑for‑hire plus assignment (the assignment backstops work‑for‑hire gaps). Attach a tight Scope of Work (SOW) with deliverables, milestones, acceptance criteria, and IP ownership upon payment; avoid day‑to‑day control language that risks misclassification. Include confidentiality, open‑source compliance on code, a limited indemnity for infringement of third‑party rights, and conflict‑of‑interest disclosures. If personal data is processed, add a DPA; if accessing systems, require security hygiene and prompt notice of incidents. Pay against deliverables, not hours, and route invoices through your vendor process with W‑9/W‑8 documentation.
- Employee essentials: At‑will offer letter, NDA, PIIA, prior‑inventions schedule, return‑of‑property, confidentiality definition aligned with policies.
- Contractor essentials: Independent contractor agreement, SOW with acceptance tests, IP assignment, confidentiality, OSS policy, milestone‑based payment terms.
- Risk reducers: Limited access permissions, need‑to‑know data sharing, audit rights on code provenance, termination for convenience, and survival of IP/Confidentiality clauses.
| Document | Who Signs | Core Clause | Founder Tip |
|---|---|---|---|
| Offer Letter | Employee + Company | At‑will; equity subject to board | Keep role/title separate from duties shifts |
| NDA + PIIA | Employee + Company | Invention assignment; prior‑inventions list | Include moral rights waiver |
| IC Agreement + SOW | Contractor + Company | Work‑for‑hire + assignment; acceptance tests | Transfer IP upon payment |
| DPA (if data) | Vendor + Company | Security, breach notice, sub‑processors | Map data flows before signing |
Customer and data agreements
Your contract stack should accelerate sales, not smother it. Build a revenue-ready package that pairs a balanced Master Service Agreement with clear, human-readable Terms of Service, a trustworthy Privacy Policy, a compliant Data Processing Addendum, and a realistic, customer-friendly Service Level Agreement. Together, these documents set expectations, allocate risk, and translate your product’s value into signature-ready terms that legal, security, and procurement teams can approve without endless back-and-forth.
- MSA: Sets the legal backbone-scope, IP, warranties, indemnities, termination, and governing law.
- ToS: Channel-friendly rules for access, acceptable use, and account responsibilities.
- Privacy Policy: Transparent data practices that align with product truth and regulator expectations.
- DPA: Defines processor/controller roles, subprocessor rules, SCCs/IDTA, and incident timelines.
- SLA: Measurable uptime, response times, credits, and exclusions that you can actually meet.
| Agreement | Purpose | Founder Tip |
|---|---|---|
| MSA | Risk and relationship | Pre-negotiate playbook |
| ToS | Usage rules | Plain language first |
| Privacy | Data trust | Match data reality |
| DPA | Compliance | Map data flows |
| SLA | Reliability | Promise less, prove more |
Operationalize the set: version and cross-reference each document, align your security posture with what you promise, and stock “fallback” clauses for common redlines (cap on liability, IP ownership, data residency, and support tiers). Keep SLAs anchored to real telemetry, sync your DPA with subprocessors and breach workflows, and ensure your Privacy Policy mirrors consent flows in-app. Package everything with an order form that drives pricing and term length, and you’ll ship contracts that close faster, scale cleanly, and hold up under scrutiny.
Capital and governance
Choose clean, standardized instruments for early capital and keep the variables few. A post-money SAFE or a short, interest-bearing convertible note with just three levers-valuation cap, discount, and MFN-streamlines negotiation, preserves momentum, and keeps your cap table legible. Bake in investor protections you can sustain: a narrow pro rata right tied to the next equity round and practical information rights (quarterly updates, annual financials when available). Keep terms uniform to avoid side-letter sprawl, and memorialize everything with clear signature blocks and version control so diligence is painless later.
- Post‑Money SAFE: fast execution, clean cap math, fewer surprises at pricing
- Convertible Note (short‑form): adds maturity/interest when timing matters
- Pro Rata Right (narrow): right to maintain ownership in the next round
- Information Rights: cadence and scope of investor updates
- MFN Clause: optional parity if better terms appear
- Uniform Terms: same docs for all checks, minimal deviations
| Template | Use | Owner | Signers |
|---|---|---|---|
| Post‑Money SAFE | Pre‑priced seed | Company | Company + Investor |
| Convertible Note | Maturity needed | Company | Company + Investor |
| Pro Rata Letter | Follow‑on rights | Company | Company + Lead |
| Info Rights Letter | Reporting cadence | Company | Company + Lead |
| Board Consent | Authorize deal | Board | Directors |
| Stockholder Consent | Charter/ESOP changes | Company | Stockholders |
Close governance the same day funds arrive. Circulate board consents and, when thresholds require, stockholder written consents authorizing the financing, ratifying officer authority, and updating the plan if needed. Keep your single source of truth current-equity admin, cap table, and minutes-while a permissioned, labeled data room mirrors your diligence checklist: formation, equity, IP, financials, and prior approvals. Version files, use uniform naming, log access, and store executed PDFs alongside editable originals so your next round is a review, not a dig.
- Governance Pack: board consent, stockholder consent (if required), updated option pool, officer authorization
- Data Room Essentials: charter/bylaws, cap table export, grant agreements + 83(b) receipts, IP assignments, contractor IP terms, financials, prior SAFEs/notes, minutes/consents
- Hygiene: consistent filenames, signed and editable versions, permission tiers, audit log
To Wrap It Up
If product is the story you tell the world, your legal templates are the margins that keep the lines straight. They won’t write the plot for you, but they guard the pages: who owns what, who does what, and what happens when plans change. Treat them as a living library rather than a one-time download-documents that evolve as your team, your market, and your risk surface change.
A practical next step is simple: audit what you already have, centralize it, and standardize language where you can. Set reminders for renewals and vesting cliffs, keep version control, and make sure every signature is matched by a clear, traceable process. The result isn’t paperwork for its own sake; it’s fewer surprises in diligence, faster hires and vendor onboardings, and cleaner conversations with investors.
Templates are scaffolding, not a finished building. Laws differ by jurisdiction and shift over time, so have qualified counsel review anything you rely on. Do this well, and your agreements fade into the background-quiet, sturdy infrastructure that lets you focus on the only thing documents can’t do for you: building the company.