When non-tech companies buy IT

Published: 8 Nov 2024
Type: Insight

Generally, there are three categories of information technology buyers: non-technology enterprises, non-IT technology companies and IT technology companies. Each category of IT buyer is very different.

The second category of IT buyers includes telecommunications service providers, medical device manufacturers, robotics companies and non-IT outsourcing service providers.

The third category above includes all levels of IT vendors, including fintech (ie, IT solutions for financial services), enterprise IT-led transformation, enterprise resource planning solution providers, software developers, and IT cloud and outsourcing service providers.

Since most of my tech practice has been devoted to helping non-technology companies buy IT products and services, I am always pleased when technology companies retain me to help them buy their own IT products and services. But there are reasons for that, which non-tech companies might appreciate.

First, technology vendors who have retained me have seen me on the other side of the contract negotiations for a customer that they are trying to sell to. They tell me that it is my approach to contract negotiations that they want emulated for their own IT purchases.

Second, because of (not in spite of) their own vendor contract “nuances”, they do not trust the contracts of other technology vendors — not at all. As tech vendors themselves, they want experienced counsel to merge a healthy “vendor contract paranoia” with commercial pragmatism.

Third, at the risk of sounding like Donald Rumsfeld, in-house counsel at tech companies tend to know what they do not know. To their credit, since their experience is exclusively devoted to selling technology, they have an informed appreciation about what they don’t know when buying technology.

Non-technology buyers of IT goods or services (eg, the public sector, financial services, hospitality, natural resources, shipping and transportation, etc), often don’t fully appreciate what they don’t know about well-crafted IT vendor contracts and related negotiations.

There are exceptions, of course, such as when the enterprise is large enough to have internal IT expertise and leadership, usually in the form of a chief information officer or chief technology officer, or when an enterprise has already been burnt on large tech procurements or transformation projects and lessons have been learnt.

When procuring IT solutions, from data analytics software development to cloud or outsourcing services, some of the key risk management considerations that technology vendors keep in mind, which non-technology buyers might also consider, include:

  • A sceptical due diligence into the vendor and the solution being offered, including know your vendor customer reference checks and related litigation searches
  • Ensure that you have a contract that is consistent with pervasive industry practices, commercial norms and accepted legal practices — regulators are watching
  • Stipulate detailed and complete operational, functional and technical performance specifications, including data formats, interoperability, service-level agreements and key performance indicators
  • Ensure you have remedies for failed SLAs and KPIs, without vendor earn-back (why pay for a service you did not receive?)
  • Contract precondition for reasonable solution acceptance testing by the customer (not the vendor)
  • Regular and frequent performance monitoring activities, including real-time dashboard and periodic reports
  • Stipulate who owns what intellectual property, since customer specifications often contain original works and methods
  • Ensure you have the clear statutory, privacy law, common law and contractual rights to provide the subject data to third-party vendors
  • Ensure the contract complies with all Bermuda laws and regulations, whether related to cybersecurity, privacy law or otherwise (including all compliance flow-downs)
  • Stipulate standard internal dispute escalation and resolution procedures before disputes are allowed to otherwise be litigated, with some exceptions.

As for the third bullet above, it remains widely accepted by lawyers who specialise in commercial technology transactions that the leading cause of IT project failure and litigation, by far, arises from the failure of the parties to share an agreed understanding of what the performance requirements of the IT goods or services contract are.

It makes excellent sense for non-tech companies to put the same quality of diligence into their IT contracts that technology companies do when they buy IT goods and services.

First Published in The Royal Gazette, Legally Speaking column, November 2024

Share
More publications
Bermuda-1024x576-1
1 Jul 2026

A Forest for the Future

A first since the blight, the airport cedar forest is growing tall and standing strong.

Appleby-Website-Regulatory-Practice
1 Jul 2026

Complied out of business

Firms are complying themselves out of business because compliance no longer matches the evolving sophistication of the Bermuda Monetary Authority (BMA).

Appleby-Website-Insurance-and-Reinsurance
1 Jul 2026

The long game: how Bermuda became the world’s life reinsurance capital

Ask a life insurer in New York, London or Tokyo where the liabilities behind their book ultimately sit and there is an increasingly good chance the answer is a 21-square-mile island in the North Atlantic.

Appleby-Website-Insurance-and-Reinsurance
1 Jul 2026

Record H1’26 Cat Bond Issuance Driven by Rising Sponsor Comfort and Diversified Risk

With H1 2026 officially breaking the record for the most catastrophe bond deals to come to market and settle in the first six months of the year, a key trend driving this momentum is how comfortable sponsors have become with the mechanics of the overall cat bond space. This familiarity has ultimately encouraged a wave of new sponsors to enter the market, according to Brad Adderley, Managing Partner at law firm Appleby.

Appleby-Website-Employment-and-Immigration
12 Jun 2026

The Cost of Getting Employee Departures Wrong: Five Common Pitfalls for Bermuda Employers

Employee departures are an inevitable part of running a business, but the way they are managed can have significant legal, financial and operational consequences. In Bermuda, employers who approach terminations without adequate preparation may expose themselves to unnecessary disputes, regulatory issues, and reputational harm. Whether an employee is being dismissed for performance reasons, made redundant or departing as part of a negotiated exit, by recognizing the following common mistakes and taking a proactive approach, organizations can manage departures more effectively and reduce risk.

Appleby-Website-Privacy-and-Data-Protection
8 Jun 2026

It’s time to bridge Pipa compliance gap

A review of 200 publicly available privacy notices of companies in Bermuda has revealed that just one in nine are fully compliant with the Personal Information Protection Act 2016.

Appleby-Website-Privacy-and-Data-Protection
26 May 2026

Transparency is a legal requirement under Pipa

Major companies across the European Union have faced substantial fines between 2019 and 2024, estimated at a total of €930 million (about $1.08 billion), not only for cyberattacks or data breaches, but also for issues such as noncompliant privacy notices. A common theme in many cases has been a lack of transparency.

Appleby-Website-Insurance-and-Reinsurance
8 May 2026

Outsourcing considerations for Bermuda insurers

As Bermuda insurers engage with third-party service providers to support their business functions, the Bermuda Monetary Authority has clarified its regulatory expectations surrounding outsourcing arrangements and operational resilience.

Economic Substance
27 Apr 2026

Economic substance regime now falls under Cita

Recent amendments to Bermuda’s economic substance regime have transferred regulatory responsibility from the Registrar of Companies to the Corporate Income Tax Agency.

Appleby-Website-Private-Client-and-Trusts-Practice
22 Apr 2026

Regulation, Regulation, Regulation

The article discusses updates to global trust guidance and regulation, as well as beneficial ownership and the regulatory burden on trustees that comes with increased transparency.