2026-04-27

How to spot red flags in an NDA before you sign

NDAs arrive at the worst moments — right before a promising job, a new client relationship, or a deal you've worked months to close. The pressure to sign quickly is real, but a poorly drafted or one-sided NDA can haunt you for years. Here's how to read one critically before you put your name on it.

Start With the Definition of "Confidential Information"

This is the most important clause in the document, and it's where most people stop reading carefully.

Watch for overly broad definitions. An NDA that defines confidential information as "any information, whether written, oral, or in any other form, disclosed by one party to the other" is nearly unlimited in scope. If you later want to discuss your general industry experience, your own skills, or publicly available facts with a future employer or partner, you could technically be in breach.

A reasonable definition identifies specific categories — trade secrets, customer lists, proprietary pricing, technical specifications — or at least carves out what is not confidential.

Key carve-outs to look for:

• Information you already knew before the relationship
• Information that becomes publicly available through no fault of your own
• Information you receive independently from a third party
• Information you develop entirely on your own

If these exclusions are absent, ask for them. Their absence is not always malicious — sometimes it's just a lazy template — but they're non-negotiable for your protection.

Check Whether the Agreement Is Mutual or One-Sided

A mutual NDA protects both parties equally. A unilateral NDA only protects one party — typically the one who drafted it.

One-sided agreements aren't automatically a red flag. If a company is sharing trade secrets with you as a prospective employee and you're sharing nothing sensitive in return, a unilateral NDA makes sense. The problem is when the arrangement is clearly mutual — both parties will be sharing sensitive information — but the agreement only restricts you.

Look at the first paragraph. Does it name only one "Disclosing Party" and only one "Receiving Party"? Or does it allow each party to occupy both roles? If the relationship is genuinely two-way and the NDA is one-way, ask why.

Scrutinize the Duration

NDAs should have a defined term. Be cautious about two extremes:

Perpetual NDAs — those with no end date, or language like "indefinitely" or "in perpetuity" — can follow you forever. Some confidential information genuinely warrants long-term protection (a pharmaceutical formula, for example), but a perpetual NDA covering vague categories of information is a serious problem, especially for employees and freelancers who move between clients or employers.

Unreasonably long terms — anything beyond three to five years for most business information — deserves scrutiny. Courts in many jurisdictions have voided overly long NDAs, but "eventually unenforceable" is cold comfort when someone is threatening to sue you.

A reasonable NDA ties the duration to the actual useful life of the confidential information, often with a separate (sometimes longer) term for trade secrets specifically.

Look for Non-Compete and Non-Solicitation Language Hidden Inside

This is one of the most common traps. You think you're signing a simple confidentiality agreement, but buried in the restrictions is a clause that prevents you from:

• Working for competitors for one to two years
• Soliciting the company's clients or employees
• Starting a competing business in a geographic area

These provisions have different legal requirements than NDAs and are more aggressively scrutinized (and often limited or struck down) by courts. Some jurisdictions restrict them heavily; a few ban them outright for certain workers.

Read every restriction clause, not just the ones labeled "Confidentiality." If you see "Non-Competition," "Non-Solicitation," "Non-Interference," or "Restrictive Covenants" as section headers, you're no longer looking at just an NDA. Those deserve separate analysis.

Examine the Remedies and Injunctive Relief Clauses

Most NDAs include language saying that a breach would cause "irreparable harm" and that the disclosing party is entitled to seek an injunction without having to prove damages. This is fairly standard and generally enforceable.

The red flags come in variations:

Pre-agreed damages (liquidated damages clauses) that set a fixed penalty per breach — say, $50,000 for each disclosure — regardless of the actual harm caused. If the amount is disproportionate, some courts will void it, but again, litigation is expensive.

One-sided remedy clauses where only one party is entitled to injunctive relief. This compounds a one-sided NDA with one-sided legal recourse.

Indemnification clauses that make you liable for the disclosing party's legal fees even if they sue you and lose. Read any indemnification language very carefully — it can shift enormous financial risk onto you.

Understand Who Has Access Rights and What They Can Do With the Information

A reasonable NDA allows you to share confidential information with employees, contractors, or advisors who genuinely need it to fulfill the agreement. This is called a "need to know" standard.

Red flags here include:

• No permitted disclosure exceptions: You can't share anything with anyone, which is often operationally impossible
• Requiring consent for every disclosure: If you need written approval each time you share information even with your own legal counsel, that's impractical and likely intended to restrict you more broadly than the confidentiality rationale requires
• Silence on your obligations to your own lawyers and advisors: You should always be able to share relevant information with your legal counsel; if the NDA prohibits even this, something is wrong

Check the Governing Law and Jurisdiction

This clause determines which state's or country's law applies if there's a dispute, and where litigation would happen.

Why it matters: NDA law varies significantly. Some jurisdictions are far more aggressive about enforcing broad non-competes and sweeping confidentiality clauses. Others have strong protections for employees and freelancers.

If you're in California and the NDA specifies Delaware law and courts, that matters. If you're a freelancer based in the EU and the agreement specifies Texas jurisdiction, enforcing it against you (or defending yourself) creates real practical complications.

The jurisdiction clause isn't necessarily a red flag on its own, but it's worth understanding before you sign. Ask your lawyer if you're unsure how the specified law affects your specific situation.

Pay Attention to Amendment and Assignment Provisions

Assignment clauses allow one party to transfer the NDA to a third party — typically in a merger or acquisition. If the company you're signing with gets acquired, your confidentiality obligations may now run to the acquirer, which could be a direct competitor of yours.

An NDA that allows assignment without your consent, or without notifying you, is worth flagging. You should at minimum receive notice when an assignment happens.

Amendment clauses that allow unilateral changes — where one party can modify terms without your agreement — are unusual but not unheard of in poorly drafted agreements. Any amendment should require written consent from both parties.

Common Pitfalls When Reviewing NDAs

• Signing under time pressure without reading: "I need this back by end of day" is not a reason to skip review. A legitimate counterparty will allow reasonable time.
• Assuming standard templates are fair: Templates downloaded from the internet or generated automatically often favor whoever is using them, not whoever is signing them.
• Ignoring the recitals: The "Whereas" clauses at the top set context and can be referenced in disputes to interpret ambiguous terms.
• Not asking for a redline: If something bothers you, propose a change. Many NDA clauses are negotiable, especially with companies that actually want the deal to happen.

FAQ

Can I cross out clauses I don't agree with and sign? Technically yes, but only if the other party agrees to those deletions. Crossing out and signing without agreement creates ambiguity about what the contract actually says. Better to send a redline and get written acceptance of the changes before signing.

What should I do if I don't understand a clause? Ask the other party to explain it. Their explanation often reveals intent. If they're evasive, that's information. For anything significant — a job offer, a business partnership, an investment — have a lawyer review the agreement. NDA review is usually a few hundred dollars well spent.

Is an overly broad NDA even enforceable? Courts frequently limit or void NDAs that are unreasonably broad, particularly in employment contexts. But "probably unenforceable" still means you might face a lawsuit you have to defend, which is costly and disruptive. Don't rely on unenforceability as your safety net.

What if the other party refuses to make any changes? That's useful information about how they operate. Some large companies have standardized agreements they genuinely cannot modify. Others simply won't. Your decision about whether to proceed should factor in how one-sided the NDA is, how much leverage you have, and what you're actually risking by signing.

Does an NDA prevent me from reporting illegal activity? No legitimate NDA can prevent you from reporting violations of law to a government agency. Most jurisdictions have whistleblower protections that override contractual confidentiality. If an NDA seems designed to prevent reporting illegal conduct, that itself is a serious warning sign about the organization.

About Termplainly

Drop a PDF or DOCX into TermPlainly and get the plain-English version in seconds. Open in App Store →