A merger or acquisition is one of the clearest signals that draws Microsoft's attention to your licensing. The deal changes your estate overnight, and the mismatch it creates is exactly what audit selection looks for.
Microsoft does not select audit targets at random. In 2026 it uses anomaly detection across licensing and telemetry to find estates where deployment and entitlement no longer line up. A merger or acquisition produces precisely that mismatch, and it does so quickly. Two estates combine, headcount changes, new servers appear, and entitlement that was scoped to separate agreements suddenly has to cover a single larger organization.
From the outside this looks like a sudden jump in consumption against a slower moving entitlement record. That gap is one of the strongest signals an audit selection model reacts to.
Three things shift at once. Headcount and identity counts move as workforces combine, often before the agreements are reconciled. Infrastructure expands as data centers, cloud tenants, and management estates are merged. And entitlement becomes ambiguous, because licenses bought under one entity do not automatically transfer to the combined organization on the terms you assume.
Transfer rights are the quiet trap. Whether a license can move with an acquired business depends on the agreement and the product terms, and getting that wrong creates unlicensed use even when both sides were compliant before the deal.
You may still be integrating systems months after a deal closes, but the telemetry has already moved. Azure Arc surfaces newly connected servers. Microsoft 365 shows a larger active user base. Management tooling ties the two estates together. Microsoft reconciles all of this against an entitlement record that has not caught up, and its calculation governs where it differs from yours.
This is why post deal estates are so often selected. The signal is loud, immediate, and visible to Microsoft whether or not your own inventory has been merged.
The defense begins before any letter arrives. Build a combined license position early, reconciling both estates against the entitlement that genuinely transfers and flagging the products where transfer rights are unclear. Run your own internal assessment with independent help so you understand the real position before Microsoft does. Declining a voluntary review and assessing yourself first is a recognized defensive move, and it matters even more after a deal.
If a formal demand follows, you then respond from preparation, holding the line that the opening number is built to be high and that an Effective License Position is negotiated after the report.
If your organization has closed a deal or is about to, the licensing exposure is real and the window to control it is short. Our guarantee is that we reduce your exposure or we reimburse our service fee, and we engage on a Fixed Fee from $18,000 or on Gainshare with zero retainer and no risk to you.
Read the triggers guide below to see the other signals that raise your profile, then bring us your deal timeline.
If you would rather not face that alone, our Microsoft audit defense service sits between you and the auditor from first letter to final settlement.
Build a combined position before Microsoft sets the number.
Download guideWeekly intelligence on Microsoft and SPLA audit moves and the buyer side defenses that work.