An NDA protects confidential information only when three elements are properly defined: what counts as confidential, how long the obligation lasts, and what standard exclusions apply. Miss any of these, and your NDA may be either unenforceable or a liability trap.

If you're a small business owner, freelancer, or landlord who signs contracts regularly, this guide will show you how to evaluate any NDA in about five minutes—no law degree required.

Table of Contents

• Why NDAs Matter More Than Ever
• The Three Pillars of Every NDA
• Pillar 1: Definition of Confidential Information
• Pillar 2: Duration and Term
• Pillar 3: The Standard Exclusions
• The 5-Minute NDA Checklist
• Frequently Asked Questions
• Sources

Why NDAs Matter More Than Ever

Non-disclosure agreements are everywhere. Research suggests that between 33% and 57% of U.S. workers are bound by an NDA or similar confidentiality mechanism. For business owners, the stakes are even higher—you're likely both signing and issuing these agreements regularly.

The consequences of getting NDAs wrong can be severe. In 2018, Waymo (Google's self-driving car division) settled a trade secret lawsuit against Uber for $245 million after a former engineer allegedly took 14,000 confidential files to a competitor. In another case, a company won a $123 million verdict purely on NDA breach claims when the trade secret statute of limitations had expired.

According to Lex Machina's 2024 Trade Secret Litigation Report, 1,203 trade secret cases were filed in federal courts in 2023 alone. And when these cases go to trial, plaintiffs win approximately 81% of the time.

Yet most people sign NDAs without reading them carefully. The problem isn't laziness—it's that NDAs seem impenetrable. They're written at a 14th-grade reading level, filled with legal jargon that obscures what actually matters.

Here's the paradigm shift: You don't need to understand every clause. You need to evaluate three pillars.

The Three Pillars of Every NDA

Every NDA, regardless of length or complexity, answers three fundamental questions:

Master these three areas, and you can evaluate any NDA confidently.

Pillar 1: Definition of Confidential Information

The most dangerous clause in any NDA is an overly broad definition of confidential information. If "everything we discuss" is confidential, you're setting yourself up for accidental breach.

What to look for:

The gold standard is a "marked or circumstances" definition. This means written information must be labeled as confidential, while oral disclosures must be identified as confidential at the time of disclosure (and often confirmed in writing within a set period, like 30 days).

Warning signs:

• No marking requirement for written materials
• "Including but not limited to..." followed by vague categories
• Coverage of "ideas," "concepts," or "general skills and knowledge"

Tools like Contract Analyze by Pact AI can flag overly broad definitions automatically, highlighting exactly where the language creates risk.

Pillar 2: Duration and Term

How long must you keep information confidential? The answer depends entirely on the type of information.

The perpetual NDA trap: Courts generally enforce perpetual confidentiality only for genuine trade secrets. If an NDA demands perpetual secrecy for ordinary business information, it may be unenforceable—but fighting that in court is expensive.

According to legal analysis from BlueInk, most NDAs appropriately last between one and five years, with perpetual terms reserved exclusively for information that qualifies as a trade secret under law.

What to negotiate: If you see "perpetual" or "indefinite" terms applied to all information, push back: "Confidentiality obligations shall survive for three (3) years following disclosure, except that obligations regarding trade secrets shall continue for as long as such information remains a trade secret."

Pillar 3: The Standard Exclusions

Every enforceable NDA should exclude four categories of information from confidentiality obligations. These are so standard that missing exclusions are an immediate red flag.

As FasterCapital's analysis notes, these exclusions "help maintain a fair balance between protecting confidential information and recognizing existing knowledge or publicly accessible data."

If an NDA lacks these four exclusions, it's either poorly drafted by someone unfamiliar with standard practice, or it's intentionally overreaching. Either way, request that standard carve-outs be added before signing.

The 5-Minute NDA Checklist

Use this checklist to triage any NDA quickly:

Definition of Confidential Information:

• Is there a specific, bounded definition?
• Is marking required for written materials?
• Are oral disclosures required to be confirmed in writing?

Duration:

• Is there a stated term (not just "perpetual")?
• Is perpetual protection limited to true trade secrets?
• When does the clock start—signing or each disclosure?

Exclusions (all four must be present):

• Prior knowledge
• Publicly available information
• Independently developed information
• Legally compelled disclosure

Consequences:

• What remedies are available (injunction, damages)?
• Who pays attorney fees if there's a dispute?
• Is there a damages cap or limitation?

Jurisdiction:

• Which state's law governs?
• Where must disputes be filed?
• Is arbitration required?

Frequently Asked Questions

How long does an NDA last?

Most NDAs last between one and five years for general business information. Trade secrets can be protected indefinitely. Perpetual terms for ordinary business information may be unenforceable, though challenging them requires litigation.

What happens if I accidentally break an NDA?

Consequences range from injunctions (court orders to stop disclosure) to monetary damages. In serious cases involving trade secrets, damages can reach millions of dollars. The Waymo v. Uber settlement of $245 million demonstrates the potential scale.

Can I negotiate an NDA, or is it take-it-or-leave-it?

NDAs are negotiable. Since 90% of NDAs are drafted by the disclosing party, the initial terms favor them. Reasonable requests—like adding standard exclusions or limiting perpetual terms—are often accepted.

What's the difference between a mutual NDA and a one-way NDA?

A mutual (bilateral) NDA protects both parties' information. A one-way (unilateral) NDA protects only the discloser. Mutual NDAs are appropriate when both sides share confidential information; one-way NDAs suit situations like investor pitches where information flows one direction.

Do NDAs protect ideas?

No. NDAs protect specific, documented confidential information—not abstract ideas or concepts. If you share a business idea without documenting it as confidential information with specific details, an NDA likely won't help you.

Can an NDA prevent me from working for a competitor?

An NDA restricts what information you can share, not where you can work. Non-compete agreements (separate contracts) restrict employment. However, breaching an NDA by using confidential information at a competitor can trigger significant liability.

Sources

• Non-disclosure agreement statistics - Wikipedia
• Waymo v. Uber Settlement Analysis - Harvard Journal of Law & Technology
• Lex Machina 2024 Trade Secret Litigation Report
• NDA Time Period Analysis - UpCounsel
• Do NDAs Expire? - BlueInk
• Understanding NDA Exclusions - FasterCapital
• Trade Secret Litigation Overview - Quinn Emanuel
• Non-Disclosure Agreements Overview - Ironclad