Control cloud costs with a FinOps approach. Get complimentary access to the latest Gartner® research.

Resources
Topics
All TopicsSoftware Asset ManagementIT SecuritySoftware License ManagementSAM ToolsSAM Managed ServicesSaaS ManagementCloud OptimizationIT Asset ManagementPublisher Insights

Rocket Software Audits and Compliance Campaigns: What to Know and How to Respond

Article

Since Rocket Software acquired the OpenText (OTX) Application Modernization and Connectivity portfolio in May 2024, many customers have noticed an increase in audit activity and compliance-themed outreach. Organizations familiar with Micro Focus audit practices may recognize a similar approach now emerging under Rocket Software.

If you are wondering why this is happening now, or what it means for your software licensing and support strategy, you are not alone. These changes can feel disruptive, especially when they arrive through vague emails or unexpected renewal discussions. The good news is that with the right preparation, you can stay in control, understand what is really happening, and respond with confidence and clarity.

What’s Driving Increased Rocket Software Audit Activity

Following the divestiture, several former OpenText and Micro Focus employees moved to Rocket Software. With them came audit practices that many customers recognize: a sharper focus on contract interpretation, especially around how software is deployed and where it is used.

Rocket Software now applies more structured enforcement during an audit. They set clear boundaries around what you are allowed to do with the software, even when your usage has not changed or appears reasonable from an operational perspective.

At the center of every review is the Application License Agreement, or ALA, which defines the scope, limits, and conditions of use. During an audit, Rocket Software relies on the ALA language first, not on past practice, assumptions, or informal guidance, and that renewed focus on contract language often leads directly to a closer review of license extensions and how they apply to your environment.

License extensions under the microscope

Most Rocket Software audits we see today focus on a small set of license extensions that directly affect how software is deployed and operated. Following the divestiture, familiar audit behaviors have resurfaced. That shift has brought renewed attention to license extensions and the specific rights they grant, including:

Virtualization License Extensions: Permission to deploy licensed software in virtualized environments.

Third-Party License Extensions: Authorization for third parties to access or operate software on the licensee’s behalf.

Off-Continent License Extensions: The right to use the software outside the geographic continent defined in the original license agreement.

Each extension includes specific terms that auditors review closely. Rocket Software looks not only at whether an extension exists, but also at whether it aligns with your actual deployment and operating model, which often shapes how a review progresses.

Why it Matters

Rocket Software often uses renewals and related outreach as audit entry points. In some cases, customers receive campaigns that reference regulatory frameworks such as the General Data Protection Regulation (GDPR) or the Payment Card Industry Data Security Standard (PCI DSS), suggesting that unsupported software creates compliance exposure.

Several patterns appear consistently in this outreach. Messages are often generic and addressed simply to “Customer.” They frequently lack specific product or contract references. The tone can create implicit pressure to re-engage sales, even though the communication does not resemble a formal audit notice.

This approach matters because it can blur the line between compliance obligations and commercial intent. While GDPR and PCI DSS require organizations to maintain appropriate security controls, neither framework mandates active vendor maintenance as the only way to remain compliant. In many cases, compensating controls can also meet regulatory requirements.

Messaging that implies returning to support will “avoid fines” deserves particular attention. Rocket Software policies typically include backdated support and reinstatement fees for every month maintenance has lapsed, which can significantly increase cost exposure. Acting quickly without separating regulatory reality from commercial pressure can turn informal outreach into an expensive decision.

How to Prepare and Respond

There are practical steps you can take to reduce risk and prepare for potential audit engagement.

Review license extensions
Confirm whether virtualization, third-party, or off-continent extensions are required based on actual deployments.

Evaluate maintenance exposure
Understand the contractual and financial impact of reinstating lapsed support before agreeing to any changes, including backdated support and reinstatement fees.

Prepare for audit engagement
Assume that informal outreach may escalate into a formal audit and plan accordingly.

Control information sharing
Avoid providing deployment or usage data without legal and software asset management (SAM) review. Once information is shared, it cannot be taken back.

Impact on SAM and Procurement Teams

  • Increased audit risk tied to renewals and support discussions
  • Greater scrutiny of license extensions and geographic usage rights
  • Exposure to unplanned costs from backdated support and reinstatement fees
  • Greater reliance on strong Application License Agreement interpretation
  • Increased importance of disciplined, consistent vendor communication

How Anglepoint Supports Audit and Compliance Readiness

As Rocket Software expands audit and campaign activity following the AMC divestiture, organizations must respond strategically. A clear understanding of license extensions, contractual rights, and regulatory realities is critical.

Anglepoint helps organizations interpret Application License Agreements, assess license extension requirements, and prepare for audits with confidence. We support clients through data validation, audit response strategy, and commercial negotiations, always focused on reducing risk and avoiding unnecessary cost.

By clarifying what truly matters and grounding each response in contract language and facts, we enable you to engage from a position of strength rather than urgency. With the right approach and the right support, you can manage Rocket Software audits deliberately, without surprises and without panic.

Schedule a discovery call.

Choose your region and select a time to meet with an expert.

We use cookies for analytics, personalized content, and ads. By using our website, you agree to the use of these cookies as described in our Cookie Policy.

Privacy Policy
Rocket Software Audits and Compliance | What to Know