Non-Disclosure Agreements: How NDAs Work and What They Protect

NDAs Are Signed Millions of Times Per Year — Most People Don't Know What They Actually Say

Non-disclosure agreements (NDAs) have become ubiquitous in business. Employees sign them on their first day. Contractors sign them before seeing any project details. Startups demand them before pitching to potential partners. Yet studies consistently find that most people who sign NDAs haven't read them carefully — and don't understand what they've agreed to. The consequences of breaching an NDA can include injunctions, substantial monetary damages, and in cases involving trade secrets, potential criminal liability under the Defend Trade Secrets Act.

What an NDA Is and What It Does

A non-disclosure agreement (also called a confidentiality agreement, CA, or proprietary information agreement) is a legally binding contract in which one or both parties agree to keep specified information confidential. The agreement establishes:

• What information is considered confidential (the scope)
• Who can access that information
• How the information may be used (typically only for the purpose specified)
• How long the obligation lasts
• What happens if the agreement is breached

Mutual vs. One-Way NDAs

The direction of the confidentiality obligation determines the structure:

• One-way (unilateral) NDA: One party (the disclosing party) shares confidential information. The other party (the receiving party) is bound not to disclose it. Common when an employer is sharing proprietary information with an employee, or a startup is pitching to an investor.
• Mutual (bilateral) NDA: Both parties share confidential information with each other, and both are bound to protect the other's information. Common in business partnership discussions, M&A negotiations, or joint venture exploration where both sides are sharing sensitive business information.

Key NDA Clauses

What NDAs Cannot Protect

NDAs have well-established limitations that courts enforce even against clear contractual language:

• Publicly available information: Once information is publicly known, an NDA cannot un-ring that bell. A party cannot be bound to secrecy about something publicly reported.
• Independently developed information: If the receiving party developed the same information independently before receiving it, the NDA doesn't prohibit using their own work product.
• Illegal activity: NDAs cannot require a party to conceal illegal conduct. Courts will not enforce a provision silencing a witness to a crime. Federal whistleblower protections specifically prohibit NDAs from blocking SEC, CFTC, or OSHA reports.
• Overly broad scope: Courts in some states limit NDAs that are so broad they effectively prevent employees from using general skills and knowledge in their field — they conflate trade secrets with general professional knowledge.

Enforceability by Jurisdiction

The Defend Trade Secrets Act

Beyond civil NDA enforcement, the federal Defend Trade Secrets Act (DTSA) of 2016 provides federal protection for trade secrets. A company can file a federal lawsuit for misappropriation of trade secrets and seek injunctive relief, damages, and attorney fees. In cases involving deliberate theft, criminal penalties under the Economic Espionage Act can reach $5 million and 10 years imprisonment.

For trade secret protection to apply, the owner must have taken reasonable measures to maintain secrecy — which is why NDAs, confidentiality policies, and restricted access systems are legally significant beyond just the contract itself.

Disclaimer: NDA law varies by state and depends on specific facts. This article provides general educational information. Consult a licensed business attorney before drafting or signing a significant NDA.