What insurance does a biotech IPO actually require?

A clinical-stage biotech preparing for an IPO or SPAC merger needs four insurance programs in place at or before pricing: (1) transactional D&O — public-company D&O placed specifically for the offering, separate from any private-company D&O policy already in force; (2) run-off / tail D&O on the pre-IPO entity to cover claims based on pre-IPO acts that surface post-IPO; (3) EPLI sized to the post-IPO headcount profile, which often grows materially after the offering; (4) cyber liability sized to the SEC disclosure environment, where a data breach now triggers Form 8-K disclosure obligations and securities-class-action risk in addition to standard breach response.

The first two are mandatory in practice — institutional investors, underwriters, and the audit committee will require evidence of bound transactional D&O at pricing, and the run-off policy is structural to protect officers personally for pre-IPO acts. The third and fourth are highly recommended and increasingly required by sophisticated counsel.

Transactional D&O — sometimes called IPO D&O or public offering of securities insurance (POSI) — covers directors, officers, and the entity for securities-related claims arising from the offering itself: misrepresentation in the prospectus, omission of material information, allegations of false or misleading disclosure under Section 11 and Section 12 of the Securities Act of 1933. The policy is placed in parallel with (not as a replacement for) the regular renewal D&O policy.

Sizing varies by deal size and risk profile but typically runs $5M-$25M for smaller biotech IPOs ($50M-$250M raise) and scales materially higher for larger offerings. Side A coverage (personal asset protection for individual directors and officers) is structural; Side B (company reimbursement) and Side C (entity coverage) round out the tower. Specialty markets that write biotech IPO D&O are a narrow set; sourcing through a broker with documented biotech IPO experience is the standard path.

The private-company D&O policy in force before the IPO continues to respond to claims based on acts during the policy period, but only if claims are made before the policy expires (claims-made forms). A run-off endorsement extends the reporting period for pre-IPO acts after the policy expires — typically 6 years (the statute-of-limitations window for Section 11 claims).

Run-off coverage is usually obtainable as an endorsement on the existing D&O policy and runs roughly 175%-300% of the annual premium for the full 6-year tail. The cost is meaningful but the protection — personal asset coverage for directors and officers against pre-IPO act claims surfacing after the offering — is structural to the IPO process.

Post-IPO biotech headcount typically grows materially as commercial-stage operations build out. EPLI policies sized to pre-IPO headcount (often 20-50 employees) need to scale to post-IPO headcount (often 100-500+) within 12-24 months. Claims-made EPLI requires careful retroactive-date management to ensure pre-IPO claims remain covered.

Cyber liability sized to a pre-IPO clinical-stage biotech (often $1M-$3M coverage) needs to scale post-IPO because a data breach at a public biotech triggers Form 8-K disclosure obligations (per SEC rules effective late 2023) and creates securities-class-action exposure in addition to the standard breach response costs. $5M-$10M cyber is the common post-IPO baseline; biotech-specific exposures like drug master file data drive the upper end.

Transactional D&O underwriting typically begins 60-90 days before the expected pricing date. The underwriting submission includes the draft S-1, financial statements, board composition, prior litigation history, and detailed disclosure-control documentation. Carriers want to see the actual S-1 before binding; pricing-day binding is the standard target.

Run-off coverage on the pre-IPO entity needs to be bound at or before policy expiration, which usually coincides with the closing of the offering. EPLI and cyber upgrades can be sequenced over the 90 days post-IPO without significant exposure if pre-IPO programs are in good standing.