NDAs and confidentiality agreements: What you need to know Protection of confidential information within an organization is usually a vital business priority. Learn what you need to know when structuring confidentiality agreements.

A range of commercial transactions and relationships involve either the disclosure of confidential information by one party to the other or a reciprocal exchange of information. In both cases, the parties should have a confidentiality agreement in place.

For example, confidentiality agreements may be used when evaluating or engaging a business or marketing consultant or agency, where the hiring company will necessarily disclose confidential information to enable the consultant to perform the assignment. They can also be used when soliciting proposals from vendors, software developers, or other service providers, which usually involves the exchange of pricing, strategies, personnel records, business methods, technical specifications, and other confidential information of both parties.

Finally, your company may need a confidentiality agreement when entering a co-marketing relationship, as an e-commerce business, with the operator of a complementary website or a similar type of strategic alliance.

Why is it necessary to have written confidentiality agreements?

• There are numerous reasons to enter into written confidentiality agreements, such as:
• Avoiding confusion over what the parties consider to be confidential.
• Allowing more flexibility in defining what is confidential.
• Delineating expectations regarding treatment of confidential information between the parties, whether disclosing or receiving confidential information.
• Enforcing written contracts is easier than oral agreements.
• Memorializing confidentiality agreements is often required under upstream agreements with third parties (for example, a service provider's customer agreement may require written confidentiality agreements with subcontractors).
• Maximizing protection of trade secrets, because under state law this protection can be weakened or lost (deemed waived) if disclosed without a written agreement.
• Covering issues that are indirectly related to confidentiality, such as non-solicitation.
• Maintaining standards that are expected of most commercial transactions and relationships.
  

The forms of confidentiality agreements

Depending on the type of transaction or relationship, only one party may share its confidential information with the other, or the parties may engage in a mutual or reciprocal exchange of information.

In unilateral confidentiality agreements, the nondisclosure obligations and access and use restrictions will apply only to the party that is the recipient of confidential information, but the operative provisions can be drafted to favor either party.

In mutual confidentiality agreements, each party is treated as both a discloser of its—and a recipient of the other party's—confidential information (such as when two companies form a strategic marketing alliance). In these situations, both parties are subject to identical nondisclosure obligations and access and use restrictions for information disclosed by the other party.

In some circumstances, the parties may share certain confidential information with each other but not on a mutual basis. Instead of entering into a fully mutual confidentiality agreement, the parties enter into a reciprocal confidentiality agreement, in which the scope and nature of the confidential information that each party will disclose is separately defined and their respective nondisclosure obligations and access and use restrictions may differ accordingly.

Limitations and risks of confidentiality agreements

Confidentiality agreements are very useful to prevent unauthorized disclosures of information, but they have inherent limitations and risks, particularly when recipients have little intention of complying with them. These limitations include the following:

• Once information is wrongfully disclosed and becomes part of the public domain, it cannot later be "undisclosed."
• Proving a breach of a confidentiality agreement can be very difficult.
• Damages for breach of contract (or an accounting of profits, where the recipient has made commercial use of the information) may be the only legal remedy available once the information is disclosed. However, damages may not be adequate or may be difficult to ascertain, especially when the confidential information has potential future value as opposed to present value.
• Even where a recipient complies with all the confidentiality agreement's requirements, it may indirectly use the disclosed confidential information to its commercial advantage.
  

Nondisclosure obligations

In general, recipients of confidential information are subject to an affirmative duty to keep the information confidential, and not to disclose it to third parties except as expressly permitted by the agreement. The recipient's duty is often tied to a specified standard of care. For example, the agreement may require the recipient to maintain the confidentiality of the information using the same degree of care used to protect its own confidential information, but not less than a reasonable degree of care.

Recipients should ensure there are appropriate exceptions to the general nondisclosure obligations, including for disclosures:

• To its representatives. Most confidentiality agreements permit disclosure to specified representatives for the purpose of evaluating the information and participating in negotiations of the principal agreement.
• Required by law. Confidentiality agreements usually allow the recipient to disclose confidential information if required to do so by court order or other legal process. The recipient usually must notify the disclosing party of any such order (if legally permitted to do so) and cooperate with the disclosing party to obtain a protective order.
  

Disclosing parties commonly try to ensure that recipients are required to have downstream confidentiality agreements in place with any third parties to which subsequent disclosure of confidential information is permitted. In these cases, either the recipient or the discloser may prefer to have these third parties enter into separate confidentiality agreements directly with the discloser.

Term of agreement and survival of nondisclosure obligations

Confidentiality agreements can run indefinitely, covering the parties' disclosures of confidential information at any time, or can terminate on a certain date or event.

Whether or not the overall agreement has a definite term, the parties' nondisclosure obligations can be stated to survive for a set period. Survival periods of one to five years are typical. The term often depends on the type of information involved and how quickly the information changes.

The information in this article was excerpted from Confidentiality and Nondisclosure Agreements. The full practice note, one of more than 65,000 resources, is available at the Thomson Reuters Practical Law website.

Whether or not the overall agreement has a definite term, the parties' nondisclosure obligations can be stated to survive for a set period. Survival periods of one to five years are typical. The term often depends on the type of information involved and how quickly the information changes.

The information in this article was excerpted from Confidentiality and Nondisclosure Agreements. The full practice note, one of more than 65,000 resources, is available at the Thomson Reuters Practical Law website.