Free Word download • Edit online • Save & share with Drive • Export to PDF
An Employee Non Disclosure Agreement (NDA) is a legally binding contract in which an employee agrees not to disclose or misuse any confidential information they encounter in the course of their employment. It defines precisely what counts as confidential — trade secrets, client lists, financial data, proprietary processes, source code — and imposes separate non-disclosure and non-use obligations to ensure the employer's competitive assets are protected both inside and outside the workplace. A well-drafted employee NDA also sets a clear post-termination survival period, specifies remedies for breach, and includes the statutory whistleblower carve-outs required for full legal enforceability under the US Defend Trade Secrets Act and equivalent statutes worldwide.
Every employee who touches your business gains access to information that has value precisely because it is not public. Without a signed NDA, a departing employee is free to carry your client list to a competitor, replicate your proprietary process, or share your pricing model — and your legal remedies are limited to whatever trade-secret protections apply by statute alone, which require expensive litigation to invoke and are harder to win without a written agreement. A signed employee NDA establishes the obligation in writing, creates a clear evidentiary record for enforcement, and signals to employees from day one that confidential information is taken seriously. This template gives you a legally structured starting point — with a complete definition of confidential information, survival language calibrated to trade secrets, and the DTSA-required whistleblower notice — so you can protect your most valuable assets without starting from a blank page.
| If your situation is… | Use this template |
|---|---|
| New employee joining before their first day | Employee Non Disclosure Agreement |
| Engaging an independent contractor with access to sensitive systems | Independent Contractor NDA |
| Two businesses exploring a potential partnership or acquisition | Mutual Non Disclosure Agreement |
| Executive or C-suite hire with access to board materials and strategy | Executive Employment Agreement with NDA |
| Employee leaving and needing a post-termination reminder of obligations | Employee Separation Agreement |
| Vendor or supplier receiving confidential operational data | Vendor Non Disclosure Agreement |
| Intern or part-time worker with limited but sensitive access | Intern Confidentiality Agreement |
Why it matters: An overly broad definition — 'all information the employee encounters' — has been struck down by courts as unreasonable, voiding the clause and leaving the employer with no protection at all.
Fix: Use a specific, enumerated definition covering named categories of data and add a limited catch-all for written designations. Review the definition against a reasonableness standard before finalizing.
Why it matters: A disclosure-only clause does not prevent an employee from using a trade secret to build a competing product without ever sharing it with a third party. The employer has no contractual remedy.
Fix: Include both a non-disclosure obligation and a non-use obligation in the same clause. They are distinct duties and both are required for complete protection.
Why it matters: Under the US Defend Trade Secrets Act, an NDA that lacks the required whistleblower notice cannot recover exemplary damages or attorney fees in a trade-secret misappropriation lawsuit — the two most valuable remedies.
Fix: Include the statutory carve-out language verbatim in the agreement. Do not modify or narrow it without counsel review.
Why it matters: In common-law jurisdictions, an employee who is already employed has given nothing new in exchange for signing the NDA. Courts have voided agreements signed without a documented additional benefit.
Fix: Provide a raise, bonus, additional vacation days, or any other tangible benefit at the time of signing and document the connection in writing. The amount is less important than the paper trail.
Why it matters: Setting a 2-year or 5-year expiry on all confidential information, including trade secrets, effectively releases the employee from protecting your most valuable IP after that term ends.
Fix: Use a tiered duration: a defined post-termination period (e.g., 3 years) for general confidential information, and no expiry for trade secrets specifically.
Why it matters: Without a written certification of return or destruction, the employer cannot confirm compliance and has a weak evidentiary position if confidential files later appear at a competitor.
Fix: Add a certification requirement to the return-of-materials clause and request it in writing within 5 business days of the employee's separation date.
In plain language: Identifies the employer (as a legal entity) and the employee by full legal name, and states the purpose of the agreement — protecting confidential information shared in the course of employment.
This Employee Non Disclosure Agreement ('Agreement') is entered into as of [DATE] between [EMPLOYER LEGAL NAME], a [STATE] [ENTITY TYPE] ('Company'), and [EMPLOYEE FULL NAME] ('Employee').
Common mistake: Using a trade name or DBA instead of the registered legal entity name. Enforcement actions must name the correct legal entity, and a mismatch can delay or defeat a court claim.
In plain language: Describes precisely what information is covered — trade secrets, client data, financial records, product plans, source code, and any other non-public business information — so the employee knows what they must protect.
'Confidential Information' means all non-public information disclosed to Employee by the Company, including but not limited to: trade secrets, customer and prospect lists, pricing data, financial statements, software code, business strategies, and marketing plans, whether disclosed in writing, orally, or electronically.
Common mistake: Defining confidential information as 'everything the employee encounters.' Courts apply a reasonableness test — an overbroad definition can render the entire clause unenforceable. A specific, detailed definition is both more enforceable and more useful in practice.
In plain language: Carves out information the employee can freely discuss: anything already in the public domain, information the employee knew before joining, and information received lawfully from a third party with no restriction.
Confidential Information does not include information that: (a) is or becomes publicly known through no breach of this Agreement; (b) was rightfully known by Employee before disclosure by the Company; or (c) is received from a third party without restriction and without breach of any obligation of confidentiality.
Common mistake: Omitting the exclusions clause entirely. Without it, the agreement may be unenforceable because it is overbroad, and the employee has no clear guidance on what they may freely discuss.
In plain language: The employee's two core duties: (1) not to share confidential information with anyone outside the company, and (2) not to use it for any purpose other than performing their job.
Employee agrees to: (a) hold all Confidential Information in strict confidence; (b) not disclose Confidential Information to any third party without prior written consent of the Company; and (c) use Confidential Information solely in connection with Employee's duties for the Company.
Common mistake: Including only a non-disclosure obligation and omitting non-use. An employee who does not share a trade secret but uses it to build a competing product has not technically breached a disclosure-only clause.
In plain language: States the narrow circumstances in which disclosure is allowed — primarily when required by law or court order — and requires the employee to give the employer advance notice so it can seek a protective order.
Employee may disclose Confidential Information if required by applicable law, regulation, or court order, provided that Employee: (a) gives the Company prompt written notice of the requirement prior to disclosure; and (b) cooperates with the Company's efforts to seek a protective order or other appropriate relief.
Common mistake: No advance-notice requirement on legally compelled disclosure. Without it, the employer loses the opportunity to seek a protective order before the information is released.
In plain language: Clarifies that the NDA does not prevent the employee from reporting potential violations of law to government agencies such as the SEC, NLRB, or EEOC, or from cooperating with government investigations.
Nothing in this Agreement prohibits Employee from reporting possible violations of law or regulation to, or cooperating with, any governmental agency or regulatory body, including the SEC, NLRB, or EEOC, or from making other disclosures protected under applicable whistleblower statutes.
Common mistake: Omitting this carve-out entirely. In the US, the Defend Trade Secrets Act (DTSA) and numerous other statutes require this language — its absence can expose the employer to penalties and invalidate the agreement's trade-secret protections.
In plain language: Requires the employee to return all confidential documents, files, devices, and copies — including electronic files — to the employer immediately upon separation or on request.
Upon termination of employment or upon request by the Company, Employee shall promptly return or, at the Company's election, destroy all Confidential Information in any form, including all copies, summaries, and extracts, whether stored physically or electronically, and certify in writing that they have done so.
Common mistake: No certification requirement. Without a written certification, employers cannot confirm compliance and have a weaker evidentiary position if materials later surface in a competitor's hands.
In plain language: Sets the duration of confidentiality obligations — typically the length of employment plus a defined post-termination period — and confirms that obligations survive the end of the agreement.
Employee's obligations under this Agreement shall remain in effect during Employee's employment and for a period of [3] years following the termination of employment. Obligations with respect to trade secrets shall survive indefinitely.
Common mistake: A single fixed term that applies to all information equally. Statutory and common-law trade secret protection is perpetual — a 2-year expiry on trade secrets effectively gifts them to departing employees.
In plain language: Acknowledges that monetary damages may be inadequate for a breach and expressly authorizes the employer to seek injunctive relief and other equitable remedies without posting bond.
Employee acknowledges that any breach of this Agreement may cause irreparable harm to the Company for which monetary damages would be an inadequate remedy. Accordingly, the Company shall be entitled to seek injunctive or other equitable relief in any court of competent jurisdiction without the requirement to post bond.
Common mistake: Relying on damages alone and omitting the injunctive-relief clause. Courts are faster to grant a temporary restraining order when the contract explicitly acknowledges irreparable harm — without this language, the employer must argue it fresh in court.
In plain language: Specifies which jurisdiction's law governs the agreement and how disputes are resolved — litigation, arbitration, or mediation first.
This Agreement shall be governed by and construed in accordance with the laws of [STATE / PROVINCE / COUNTRY], without regard to conflict-of-laws principles. Any dispute arising under this Agreement shall be resolved in the state and federal courts located in [CITY, STATE], and the parties hereby consent to personal jurisdiction in those courts.
Common mistake: Selecting a governing law with no real connection to where the employee works. Several US states — most notably California — apply their own law regardless of what the contract specifies, and failing to account for this can void key clauses.
Use the employer's exact registered corporate name — not a trade name or DBA — and the employee's legal name as it appears on government-issued ID. Record the date of execution.
💡 Cross-reference your state or provincial corporate registry to confirm the precise legal entity name before the employee signs.
Review the default definition and add any categories specific to your business — source code, clinical data, proprietary formulas, specific client names. Be specific enough to pass a reasonableness test but broad enough to cover the information you actually share.
💡 Add a catch-all phrase such as 'and any other information designated as confidential in writing at the time of disclosure' to cover categories you cannot anticipate today.
Choose a duration for general confidential information — typically 2 to 5 years after separation. Leave the trade-secret obligation without an expiry date, as statutory protections are perpetual.
💡 Courts are more likely to enforce a 2- to 3-year period than a 10-year period. Longer terms invite challenge on enforceability grounds.
Do not delete or modify the whistleblower carve-out clause. Under the US Defend Trade Secrets Act and equivalent statutes in other jurisdictions, this language is legally required for the NDA to qualify for full statutory protection.
💡 If you are subject to SEC, NLRB, or EEOC oversight, have counsel verify the carve-out language meets the current regulatory standard before you finalize the template.
Choose the state or province where the employee works — not simply where your headquarters is located. Several jurisdictions apply local law regardless of what the contract says.
💡 For employees in California, Minnesota, or North Dakota, have counsel review the agreement separately — those states impose unique restrictions on employee confidentiality agreements.
For new hires, the job offer itself is sufficient consideration. For existing employees signing an NDA mid-employment, provide and document a tangible benefit — a bonus, salary increase, or additional PTO — to ensure enforceability.
💡 Create a brief written record (even an email) linking the benefit to execution of the NDA. Courts have voided agreements signed by current employees where no separate consideration was documented.
Both parties must sign before the employee starts work. Have the employee sign and date the agreement, then countersign on behalf of the company. Provide the employee with a fully executed copy.
💡 Use Business in a Box eSign to timestamp the execution and store the executed copy automatically. This creates an audit-ready record if you ever need to enforce the agreement.
An employee non disclosure agreement (NDA) is a legally binding contract between an employer and an employee that prohibits the employee from disclosing or misusing the company's confidential information — including trade secrets, client data, financial records, and proprietary processes. It creates enforceable obligations during employment and for a defined period after separation, and gives the employer the right to seek injunctive relief and damages if the obligation is breached.
The employee should sign before their first day of work. Signing on or after the start date creates a consideration problem in common-law jurisdictions — the employee has already begun working and has given nothing new in exchange for the NDA, which can make the agreement unenforceable. For existing employees moving into more sensitive roles, sign before the role change and document a tangible benefit provided at the same time.
Yes. A general or mutual NDA is used between two businesses or between a business and a vendor, where both parties share confidential information. An employee NDA is a one-way (unilateral) agreement — only the employee has confidentiality obligations. It is also subject to employment law constraints that do not apply to commercial NDAs, including whistleblower carve-out requirements, consideration rules for existing employees, and jurisdiction-specific restrictions on what employees can be bound to keep confidential.
General confidential information is typically protected for 2 to 5 years after the employee's separation date. Courts are more likely to enforce a 2- to 3-year period than longer terms, which invite challenge on reasonableness grounds. Trade secret obligations should survive indefinitely — there is no statutory time limit on trade secret protection under the US Defend Trade Secrets Act or equivalent laws, and a fixed expiry effectively gifts the trade secret to the departing employee.
No. An NDA restricts disclosure and use of specific confidential information — it does not prevent the employee from working for a competitor. That is the function of a non-compete clause, which is a separate legal instrument subject to its own enforceability rules. Drafting an NDA so broadly that it effectively functions as a non-compete is a common mistake courts use to void the agreement entirely.
The employer can seek injunctive relief to stop the disclosure immediately, claim compensatory damages for financial harm caused, and — in trade-secret cases under the Defend Trade Secrets Act — recover exemplary damages up to twice the actual damages and attorney fees if the breach was willful. The strength of the remedy depends on the quality of the NDA language, whether the employer took reasonable steps to protect the information, and whether the whistleblower carve-out was properly included.
No. Notarization is not required for an employee NDA to be enforceable in any major common-law jurisdiction — the US, Canada, UK, or Australia. What matters is that both parties sign, the agreement is dated, and the employee receives a fully executed copy. Notarization may be required in certain civil-law countries; consult local counsel for cross-border arrangements.
Yes, and many employers do exactly that. Embedding the NDA within the employment contract has the advantage of a single execution event and a clear link to the consideration (the job offer). The disadvantage is that updating the NDA later — for example, to add a new category of protected information — requires amending the entire employment contract. A standalone NDA is easier to update and re-execute when the employee's role or access level changes.
California courts apply strict scrutiny to employee restrictive covenants. While NDAs protecting genuine trade secrets are generally enforceable, California's Business and Professions Code Section 16600 voids agreements that prevent employees from engaging in their profession. Any NDA language that functions as a non-compete or that is so broad it restricts general professional knowledge will likely be struck down. California also restricts employers from using NDAs to silence employees about workplace harassment or discrimination. Legal review is strongly recommended before using any employee NDA in California.
An NDA restricts disclosure and misuse of specific confidential information — it does not prevent the employee from working for a competitor. A non-compete restricts where the employee can work after separation. Both are often executed together, but they are distinct legal instruments subject to different enforceability rules. In jurisdictions such as California that ban non-competes, the NDA is the only post-employment protection available.
A mutual NDA imposes confidentiality obligations on both parties — used when two businesses or individuals are exchanging sensitive information, such as in a partnership discussion or M&A negotiation. An employee NDA is one-directional: only the employee is bound. Using a mutual NDA with an employee is unusual and may inadvertently restrict the employer's own ability to share information internally.
Many employment contracts include a confidentiality clause that functions as an NDA. Embedding confidentiality terms in the employment contract creates a single execution point and ties obligations clearly to the offer. A standalone employee NDA is more flexible — it can be updated or re-executed as the employee's role evolves without amending the full employment contract.
A separation agreement is signed at the end of employment to govern severance, release of claims, and the continuation of post-employment obligations. It typically incorporates or re-states NDA obligations. The employee NDA should be signed on day one; the separation agreement reaffirms those obligations at departure and is supported by the severance payment as fresh consideration.
Source code, architecture documentation, API keys, roadmap details, and proprietary algorithms are all high-value targets; the NDA should explicitly name software and technical documentation as covered categories.
Patient data is separately governed by HIPAA and equivalent statutes, but clinical research protocols, drug formulations, and proprietary diagnostic methods require NDA protection layered on top of regulatory compliance.
Client portfolios, trading strategies, financial models, and internal risk data are sensitive on both a commercial and regulatory basis; NDAs in this sector often include enhanced remedies and mandatory reporting to compliance teams.
Proprietary production processes, materials formulations, equipment specifications, and cost structures represent competitive moats that an NDA must protect with indefinite trade-secret survival language.
Client identity, engagement terms, billing rates, and internal methodologies are central to competitive positioning; client non-solicitation provisions often accompany the NDA in this sector.
Supplier contracts, pricing structures, customer purchase data, and private-label product development details all warrant NDA coverage, particularly for employees in buying, merchandising, and data analytics roles.
Federal protection for trade secrets is governed by the Defend Trade Secrets Act (DTSA) of 2016, which requires a specific whistleblower immunity notice in any NDA to qualify for exemplary damages and attorney fees. State law also applies — California, Minnesota, and North Dakota heavily restrict employee NDAs; California's Business and Professions Code Section 16600 voids agreements that are so broad they function as non-competes. Employers with multi-state workforces should tailor the agreement to each employee's work location.
Employee NDAs are generally enforceable across Canadian provinces if they are reasonable in scope and supported by consideration. Ontario courts apply a reasonableness test similar to the UK; British Columbia and Alberta have broadly similar standards. Quebec employees are subject to the Civil Code of Quebec rather than common law, and NDA language must be in French for provincially regulated Quebec employers. Bill 96 (2022) strengthened French-language requirements for employment documents in Quebec.
Employee NDAs are enforceable in the UK provided they are reasonable in scope and duration. Following high-profile scrutiny of NDAs used to suppress allegations of workplace misconduct, the UK government introduced guidance in 2019 limiting the use of NDAs to protect genuine confidential business information. Non-disclosure clauses cannot lawfully prevent an employee from reporting wrongdoing to the police, regulators, or lawyers, or from making a protected disclosure under the Public Interest Disclosure Act 1998.
The EU Trade Secrets Directive (2016/943) harmonizes trade-secret protection across member states and defines the categories of information that qualify. Employee NDAs must include whistleblower and journalism carve-outs consistent with the Directive. GDPR also applies where confidential information includes personal data — employees handling such data may have separate obligations under their employer's data processing agreements. Post-employment NDA restrictions that effectively function as non-competes may require financial compensation to the employee in France, Germany, and other member states.
| Path | Best for | Cost | Time |
|---|---|---|---|
| Use the template | Standard domestic hires in non-restricted jurisdictions where the employee handles moderately sensitive but not mission-critical information | Free | 15–20 minutes |
| Template + legal review | Employees in California, Minnesota, or the EU; roles with access to trade secrets, source code, or sensitive client data; or any situation where enforceability is commercially critical | $200–$500 | 1–3 days |
| Custom drafted | Senior executives, highly regulated industries (healthcare, financial services), cross-border employment, or companies where a single breach could cause material competitive harm | $800–$2,500+ | 1–2 weeks |
This document is one of 3,000+ business & legal templates included in Business in a Box.
Access over 3,000+ business and legal templates for any business task, project or initiative.
Customize your ready-made business document template and save it in the cloud.
Share your files and folders with your team. Create a space of seamless collaboration.
"Fantastic value! I'm not sure how I'd do without it. It's worth its weight in gold and paid back for itself many times."
"I have been using Business in a Box for years. It has been the most useful source of templates I have encountered. I recommend it to anyone."
"It has been a life saver so many times I have lost count. Business in a Box has saved me so much time and as you know, time is money."
Stop downloading documents. Start operating with clarity. Business in a Box gives you the Business Operating System used by over 250,000 companies worldwide to structure, run, and grow their business.
Start free · No credit card required
