Due diligence takes time. In M&A transactions, financing rounds, or corporate acquisitions, hundreds of contracts, licenses, and corporate documents quickly accumulate in a virtual data room – and someone has to read all of them. AI due diligence legal refers to the use of AI-powered tools to accelerate exactly this process: not by shortcutting the legal review, but by systematically extracting, prioritizing, and structuring the relevant information.
This article explains what happens technically, where the limits are, and how Swiss legal teams can put the approach to work today.
What AI due diligence actually means
Traditionally, due diligence means lawyers reading document by document, noting issues in Excel or Word, and producing a report at the end. That works – but an experienced team manually handles roughly 50 to 100 documents per hour. AI-powered systems can process over 3,000 documents per hour (He Wang & You Zhou, BCP Business & Management, Vol. 39, 2023).
The difference is less about the quality of any individual analysis and more about capacity for structured patterns across large document sets. What used to take a week can now be captured in hours – provided the right fields are defined and the results are validated by lawyers.
Typical workflow of an AI-assisted review
The technical process tends to follow a similar pattern: documents are uploaded and, where necessary, made readable via OCR. The system then extracts relevant clauses and content based on predefined fields – for example liability caps, notice periods, change-of-control provisions, or data protection clauses. Anomalies and deviations are flagged and prioritized by risk. The output is a structured table that forms the basis for the legal report.
None of these steps replace legal judgment. But the distance from "document received" to "structured overview of all critical clauses" becomes much shorter.
The real risks that do not go away
AI tools in due diligence are good at finding standard clauses and making patterns visible across many documents. They also have measurable weaknesses that are documented in practice.
One well-known M&A case: an AI system missed a change-of-control clause because it was phrased unusually. In another, the system hallucinated a tax document that did not exist – the assessment built on it would have reduced the transaction value by USD 1.5 million (Koley Jessen, anonymized case).
Where AI reaches its limits
Unusual phrasing: what was not seen during training is more likely to be missed.
Contextual judgment: whether a liability exclusion is materially relevant depends on the overall picture of the transaction – a model cannot assess that without context.
"Soft" factors: management quality, market reputation, or cultural nuances in cross-border deals remain outside the analytical scope.
This does not mean AI-assisted due diligence is unsafe. It means the results need qualified human interpretation.
How CASUS's AI Data Room structures the process
CASUS, a Swiss legal AI platform, offers the AI Data Room as a workflow for analyzing many documents in parallel. The core idea: whoever is running a due diligence defines which information should be extracted from which documents – each table column is driven by its own prompt.
The output is a tabular overview that can be processed directly in Excel. Typical fields in M&A reviews include liability caps, SLA terms, IP ownership, notice periods, and data protection clauses – each in its own column per document.
What the AI Data Room specifically does
Upload dozens or hundreds of documents in one batch
Extract content based on user-defined fields and clause topics
Flag anomalies, for example liability without a cap or notice periods exceeding 12 months
Prioritize risks across all documents
Data protection use case: detect personal data such as names, email addresses, and bank details, with support for anonymization
One important point: the system extracts what is specified. A complete automatic capture of all possible clauses without defining the relevant fields is not what the tool promises.
Data security in the Swiss context
In M&A transactions, data security is non-negotiable. CASUS hosts exclusively in Switzerland and the EU, transfers no data to the US, offers Zero Data Retention, and does not use Human Review (with an opt-out for abuse monitoring). For Swiss law firms and in-house teams working with highly sensitive transaction data, this is a meaningful difference from US-based alternatives. More details are available at /security.
Practical applications for Swiss legal teams
M&A and corporate acquisitions
The most common application is contract review in the context of share purchase agreements or asset deals. Instead of reading every supplier contract individually, a team can upload the entire contract base, define the relevant clauses, and receive an overview of all critical points. Deviations from the standard – such as missing liability caps or change-of-control gaps – are flagged directly.
For the subsequent individual review of flagged contracts, CASUS's Risk & Quality Review is well suited: it analyzes a single document from each party's perspective, prioritizes findings by severity, and provides concrete improvement suggestions that can be applied directly in Word.
Compliance screening across large contract portfolios
The AI Data Room is not limited to transactions. In ongoing compliance reviews, it can be used to scan a contract portfolio for GDPR compliance – searching for data protection clauses, processing agreements, and consent provisions.
How CASUS modules work together
The strength of the approach is in how the modules connect. The AI Data Room provides the overview across many documents. For deeper questions about a single contract or a legal assessment, the AI Chat with Legal Research is available – source-based, structured, and traceable, with access to over 660,000 Swiss court decisions. And before a document is sent out, the Proofread workflow checks language, consistency, and formal errors.
Human and AI: the hybrid review as the standard
The debate about whether AI replaces lawyers is not a useful one in practice. What is useful: legal teams that continue without AI assistance are spending capacity and budget that could be better used elsewhere. And those who rely entirely on AI output risk exactly the errors described in the case examples above.
The hybrid approach is not a compromise – it is the sensible model. AI handles the initial capture, extraction, and prioritization. Lawyers review the results, assess materiality, and make the legal judgments.
Try CASUS
Legal teams that want to test AI-assisted due diligence in practice can start with CASUS without any commitment at app.getcasus.com/signup. The platform runs directly in Microsoft Word and as a web app – no separate tool, no lengthy onboarding.
FAQ
What is AI due diligence legal?
AI due diligence legal refers to the use of AI tools to support legal review in corporate transactions, financing rounds, or compliance assessments. AI handles the extraction, structuring, and prioritization of information from large document sets, while legal judgment remains with the lawyers.
How many documents can an AI system process in due diligence?
According to a 2023 study (He Wang & You Zhou, BCP Business & Management, Vol. 39), AI-powered systems can process over 3,000 documents per hour, compared to 50 to 100 documents per hour with manual review.
Which clauses are typically reviewed in AI due diligence?
Common extraction fields include liability caps, notice periods, change-of-control provisions, IP ownership, SLA terms, and data protection clauses. Which fields are extracted depends on the prompts defined before the analysis.
Can AI identify all risks in due diligence?
No. AI systems can miss unusually phrased or atypical clauses and are not capable of assessing contextual or "soft" factors such as market reputation or management quality. Human validation of the results remains necessary.
How secure is AI for confidential transaction data?
It depends on the platform. CASUS hosts exclusively in Switzerland and the EU, transfers no data to the US, has Zero Data Retention, and no Human Review – making it suitable for confidential M&A data. Full details at /security.
What is the difference between an AI Data Room and a standard virtual data room?
A traditional virtual data room (VDR) is a secure repository for storing and accessing documents. CASUS's AI Data Room is an analysis workflow: it extracts information from documents, structures it in a table, and flags anomalies. It does not replace a VDR – it works with the contents of one.
Does using AI due diligence require technical expertise?
No. Tools like the CASUS AI Data Room are designed for lawyers without programming skills. Extraction fields are defined via straightforward prompts, and the output is a readable table.
Does AI due diligence apply outside of M&A?
Yes. The approach is also used in compliance reviews across large contract portfolios, data protection audits, supplier contract screening, and regulatory assessments.
