What to Look for in an NDA Before You Sign
Not all NDAs are fair. Before you sign, know exactly what to look for — from how 'confidential information' is defined to duration, penalties, and the 5 biggest red flags.
What to Look for in an NDA Before You Sign
Quick summary: Most NDAs are standard. A few are traps. The difference comes down to four things: how "confidential information" is defined, how long the agreement lasts, whether it's one-sided, and what happens if you breach it. Read those sections carefully before you sign anything.
An NDA lands in your inbox. HR says it's standard. Your new business contact says everyone signs it. Your potential client sends their template and expects it back by tomorrow.
In most cases, it really is standard. But "standard" covers a wide range — from a sensible two-page mutual agreement to a sweeping 10-year unilateral restriction that claims ownership of your thoughts.
Here's exactly what to check before you sign.
Have an NDA in hand right now? Upload it to Contrivox for a plain-English breakdown of every clause — flagged, explained, and scored in under a minute.
What the NDA Is Actually Protecting — and Who Benefits
Start by asking: whose secrets does this protect?
A unilateral NDA (one-way) protects only one party's information. You're the one with obligations; they have none. This is common when a company shares product details, a client shares their business model, or an employer wants to protect internal processes.
A mutual NDA (bilateral) protects both parties equally. Both sides share information and both bear confidentiality obligations. This is standard in business partnerships, joint ventures, and M&A discussions.
If you're signing a unilateral NDA, you're taking on all the risk. That's not necessarily wrong — but you should know it going in.
Duration: How Long Is Too Long?
The duration clause tells you how long you're bound to secrecy after the agreement ends.
What's standard:
- 1–2 years: Common for most business relationships
- 2–5 years: Reasonable for senior roles or M&A-adjacent deals
- "During the relationship + 2 years after": Common in employment NDAs
What's aggressive:
- 5+ years for general business information
- Indefinite term (no expiration at all)
- "Perpetual" or "permanent" — meaning forever
Trade secrets can be protected indefinitely under trade secret law. But general business information — the kind of thing you'd naturally forget in a few years — shouldn't be locked under an NDA forever. An NDA with no time limit on ordinary business information is a red flag worth raising.
If you see "indefinite" in the duration clause, ask for a specific term. Three to five years is usually acceptable even for conservative companies.
Scope: Is "Confidential Information" Defined or a Catch-All?
This is the most important section to read carefully.
Good definition: "Confidential Information means non-public technical, financial, and business information specifically related to [Company's] product development, customer data, and pricing strategies, disclosed in writing and marked 'Confidential.'"
Bad definition: "Confidential Information means any information of any kind, in any form, disclosed by either party at any time."
The broader the definition, the harder it is to know what you're actually protecting. A vague catch-all makes almost anything you learn potentially covered — which means you could breach the NDA without realizing it.
Check for exclusions too. A well-drafted NDA should carve out:
- Information you already knew before signing
- Information that becomes publicly available through no fault of yours
- Information you received from a third party without restriction
- Disclosures required by court order or regulation
If the NDA has no exclusions, ask for them. This is standard, not aggressive.
Unilateral vs Mutual: Who Has Obligations?
Look at the opening definitions. Who is the "Disclosing Party" and who is the "Receiving Party"?
If only you're listed as Receiving Party, you're in a unilateral NDA — all the obligations flow to you. That may be perfectly appropriate if you're the one receiving confidential information. But if you're also sharing sensitive information with the other party, push for the agreement to be made mutual.
In a mutual NDA, both parties are both Disclosing Party and Receiving Party, and both bear equal responsibility. This is fairer and takes about 30 seconds to add if the other party is willing.
Penalties: What Happens If You Breach It?
NDAs typically allow two types of remedies if you breach:
Injunctive relief — The company goes to court to stop you from disclosing information. They don't need to prove financial loss to get this. It's fast and powerful.
Monetary damages — You pay for financial harm caused by your disclosure.
Watch for: Liquidated damages clauses that specify a fixed dollar amount per violation (e.g., "$50,000 per breach"). These can be disproportionate to any actual harm and are worth negotiating down or removing.
Also look for fee-shifting language. "Prevailing party" provisions are fair — if you win a dispute, they pay your legal fees too. One-sided fee-shifting (you pay their fees even if you win) is not.
5 Red Flags to Look for Before Signing
| Red Flag | Why It Matters |
|---|---|
| No definition of "confidential information" | You can't know what you're protecting |
| Indefinite duration with no expiration | You're bound forever for ordinary business info |
| No exclusions for publicly available information | You could technically breach it just by reading their press release |
| Prohibits working for competitors | That's a non-compete provision — a separate and significant restriction |
| Allows unilateral expansion of what's covered | They can add new categories without your consent |
Any one of these isn't necessarily a dealbreaker. But they're all worth flagging, understanding, and potentially negotiating before you sign.
FAQ: What to Look for in an NDA
Should I sign an NDA? In most professional contexts, yes — NDAs are standard and signing them is part of normal business. But read it first. A one-page mutual NDA is very different from a sweeping 10-year unilateral agreement.
Can I negotiate an NDA? Often yes, especially in partnership, consulting, and vendor situations. Job offer NDAs from large employers are less negotiable, but you can still ask for clarification and specific modifications.
What makes an NDA unenforceable? Overly broad scope, indefinite duration for non-trade-secret information, lack of legal consideration, or clauses that violate state law (e.g., restricting whistleblowing). Courts also refuse to enforce NDAs that purport to cover illegal activity.
Does an NDA expire? It should. Most NDAs have a specific term — typically 1–5 years. Indefinite NDAs do exist but are aggressive for ordinary business information.
Can an NDA cover everything? No. It can't require you to hide illegal activity from authorities, prohibit you from discussing workplace harassment in states that ban such restrictions, or protect information that's already publicly known.
Related guides
- What Is an NDA? Everything You Should Check Before Signing One
- Signing an NDA — What It Actually Means for You
- NDA vs Confidentiality Agreement — What's the Difference?
Read It Before You Sign It
You don't need a law degree to spot a problematic NDA. You need 10 focused minutes and a clear checklist.
The four things that matter most: what's considered confidential, how long you're bound, whether it's one-sided, and what happens if you violate it. Understand those four things, and you'll know whether this NDA is standard or something worth pushing back on.
Upload your NDA to Contrivox → Get a plain-English analysis of every clause — flagged, explained, and scored — in under a minute.
Contrivox provides AI-powered contract explanations, not legal advice. For high-stakes NDA situations, consult a licensed attorney.
The 12 clauses that cost people thousands.
Free checklist — delivered instantly. No spam, ever. Used by thousands of professionals before signing.
No spam. Unsubscribe any time.