ComplianceClaw

VDR folder structure board investor relations

How to Structure a VDR for Board and Investor Relations

Build a board and investor VDR that keeps governance materials, financial reporting, and fundraising documents organized and access-controlled.

Request a VDR walkthroughBack to VDR hub

A Board and Investor Relations VDR is a single source of truth for governance, performance reporting, financing history, and key decisions. Done well, it reduces last-minute scrambling before meetings and improves trust during fundraising and audits.

The problem this structure solves

Board packs, consents, cap table updates, and investor updates often live in scattered places (email threads, shared drives, founders’ laptops). That creates:

  • Slow preparation for board meetings and investor requests
  • Unclear “official” versions of materials and decisions
  • Governance risk (missing consents, incomplete minutes)
  • Overexposure of sensitive topics (compensation, litigation, security)

This structure is designed to:

  • Keep governance materials complete and easy to locate
  • Separate sensitive items from broadly shareable investor content
  • Support repeatable quarterly cadence
  • Produce clean audit trails

Recommended VDR folder structure (copy/paste template)

Top-level

1. 00_Admin & Access 2. 01_Governance (Board & Shareholders) 3. 02_Investor Updates & Comms 4. 03_Financial Reporting 5. 04_Fundraising & Financing 6. 05_Cap Table & Equity 7. 06_Legal & Compliance (IR-Scoped) 8. 07_Policies & Programs 9. 08_Corporate Development (if applicable) 10. 09_Security & Privacy (High-Level)

00_Admin & Access

  • 00.01 **Read Me (How to Use This VDR)**
  • 00.02 **Access Groups & Permissions (Owner-Only)**
  • 00.03 **Naming Standard**
  • 00.04 **Board Calendar & Meeting Schedule**
  • 00.05 **Templates (Agenda, Minutes, Consent)**

01_Governance (Board & Shareholders)

Organize by year, then by meeting.

  • 01.01 **Board Meetings**
  • - 01.01.2026 **Board Meetings (2026)**
  • - 2026-02-15 **Board Meeting**
  • - 01_Agenda
  • - 02_Board Pack (PDF)
  • - 03_Appendices
  • - 04_Minutes (Final)
  • - 05_Resolutions/Consents
  • 01.02 **Board Committees (Audit/Comp/Other)**
  • 01.03 **Shareholder Meetings & Written Consents**
  • 01.04 **Corporate Filings (Annual Return, etc.)**

02_Investor Updates & Comms

  • 02.01 **Quarterly Updates (Archive)**
  • - 2026-Q1
  • - 2026-Q2
  • 02.02 **Monthly KPI Snapshots (Optional)**
  • 02.03 **Announcements & Press (Approved)**
  • 02.04 **FAQ / Metrics Definitions**

03_Financial Reporting

  • 03.01 **Monthly Financials (Close Packages)**
  • 03.02 **Quarterly Financials**
  • 03.03 **Annual Financials / Audit Deliverables**
  • 03.04 **Budget & Forecast**
  • 03.05 **KPIs & Dashboards (Exports)**

04_Fundraising & Financing

Use strict permissions here.

  • 04.01 **Fundraising Materials (Decks, Memos)**
  • 04.02 **Term Sheets (Executed & Historical)**
  • 04.03 **Financing Docs (SAFE/Notes/Preferred)**
  • 04.04 **Investor Rights & Side Letters**
  • 04.05 **Lender Materials (if applicable)**

05_Cap Table & Equity

  • 05.01 **Cap Table (Current)**
  • 05.02 **Cap Table (Archive)**
  • 05.03 **Option Plan & Grants**
  • 05.04 **409A/Valuations (Restricted)**
  • 05.05 **Warrant Schedules (if applicable)**

06_Legal & Compliance (IR-Scoped)

Keep this scoped to what investors and board members typically request, not the entire company legal archive.

  • 06.01 **Material Agreements (Investor/Financing Related)**
  • 06.02 **Litigation Summary (High-Level, Restricted)**
  • 06.03 **Regulatory Correspondence (if relevant)**
  • 06.04 **Insurance Summary & D&O**

07_Policies & Programs

  • 07.01 **Risk Register (High-Level)**
  • 07.02 **Code of Conduct & Key Policies**
  • 07.03 **Delegation of Authority / Approval Matrix**
  • 07.04 **Whistleblower Policy & Reporting**

08_Corporate Development (if applicable)

  • 08.01 **Strategic Planning**
  • 08.02 **M&A / Partnerships (Board-Level Materials Only)**

09_Security & Privacy (High-Level)

Investors usually need posture, not exploit details.

  • 09.01 **Security Program Overview**
  • 09.02 **Privacy Program Overview**
  • 09.03 **External Attestations (SOC 2, ISO, etc.)**
  • 09.04 **Incident Summary (High-Level, Restricted)**

How to run the VDR (board/investor workflow)

Step 1: Standardize filenames and meeting folders

Recommended board meeting naming pattern:

  • Folder: `YYYY-MM-DD Board Meeting`
  • Files:
  • - `YYYY-MM-DD_BoardPack_Final.pdf`
  • - `YYYY-MM-DD_Minutes_Final.pdf`
  • - `YYYY-MM-DD_Resolutions_Signed.pdf`

Step 2: Create a “current” view to reduce hunting

Add shortcuts or a “current quarter” folder (depending on your platform):

  • **03_Financial Reporting/Current Quarter**
  • **02_Investor Updates & Comms/Current Quarter**

Then archive quarterly.

Step 3: Separate internal governance from investor shareables

Common pattern:

  • **Board Pack**: internal, may include sensitive topics.
  • **Investor Update**: sanitized, suitable for broader distribution.

Do not rely on people to remember what is safe. Enforce via:

  • Folder-level permissions
  • A short “What can be shared” note in **00_Admin & Access**

Step 4: Keep decisions traceable

For every meeting, ensure you can answer:

  • What was decided?
  • Who approved it?
  • Where is the signed consent/resolution?

That means:

  • Minutes and resolutions are stored with the meeting
  • Final versions are locked (if supported)

Compliance, access, and security best practices

Permission model (recommended)

  • **Admins (Corporate Secretary/GC/Finance Lead):** full control
  • **Board Members:** view to governance + financial reporting + approved board materials
  • **Committee Members:** access only to relevant committee folders
  • **Investors (Non-Board):** access limited to investor updates + approved fundraising materials
  • **Auditors:** time-bound access to financial reporting (and limited governance if needed)

Sensitive content to restrict

  • Compensation details (individual or team-level)
  • Litigation details beyond a high-level summary
  • Security vulnerabilities, detailed pen test findings
  • Employee personal data
  • Unannounced fundraising/M&A discussions

Audit and retention

  • Enable access logging and watermarking on downloads.
  • Apply expiry dates to external users (investors, auditors).
  • Maintain a clear archive by year/quarter to support future diligence.

Meeting integrity

  • Publish board packs at least 48–72 hours before the meeting.
  • Track acknowledgements (platform feature or email) if required.
  • Store signed resolutions in the same meeting folder.

Common mistakes to avoid

  • Mixing board packs and investor updates in one folder.
  • Storing editable source files (PPTX/Sheets) without controls.
  • Letting ad hoc folders accumulate (“Random”, “Misc”).
  • Keeping access open forever after a financing closes.

Quick checklist

  • [ ] Board meeting folders standardized by date
  • [ ] Quarterly archive process in place
  • [ ] Investor shareables separated and permissioned
  • [ ] Minutes/resolutions stored and locked
  • [ ] Download logs, watermarking, and expiries enabled

Talk to ComplianceClaw

Need help selecting or structuring a VDR?

We help teams reduce diligence friction, improve access control, and choose the right workflow for fundraising, M&A, board reporting, and regulated document sharing.