Free NDA Template: A Practical Guide for Attorneys and Businesses
Free NDA Template: A Practical Guide for Attorneys and Businesses
A non-disclosure agreement (NDA) is one of the most frequently requested documents in legal practice. Whether you're representing a startup protecting its pitch deck, a business onboarding a contractor, or two companies exploring a potential merger, NDAs come up constantly.
This guide walks you through exactly what goes into a solid NDA, includes a sample outline you can use as a starting point, and flags the mistakes that turn a good agreement into a toothless one.
What Is an NDA and When Do You Need One?
An NDA — also called a confidentiality agreement — is a legally binding contract in which one or more parties agree not to disclose specified confidential information to third parties. It creates a private, contractual obligation separate from any statutory or common law protections.
Common situations that call for an NDA:
- Sharing proprietary business information with a potential partner or investor
- Hiring contractors, consultants, or employees with access to trade secrets
- Disclosing technical or product details during vendor evaluations
- Pre-acquisition due diligence
- Licensing negotiations
- Settlement discussions (confidentiality provisions)
If valuable information is changing hands — even temporarily — an NDA is worth having.
Mutual vs. One-Way NDAs
Before drafting, determine the flow of confidential information.
One-way (unilateral) NDA: Only one party is disclosing. The other party receives and agrees to protect the information. Typical in employer-employee or business-contractor relationships.
Mutual (bilateral) NDA: Both parties are sharing confidential information with each other. Common in joint ventures, partnership discussions, or M&A due diligence.
Getting this wrong leads to either over-broad obligations (both parties bound when only one is disclosing) or under-protection (one-way when reciprocal protection is needed).
Key Clauses Every NDA Should Include
Even a "simple" NDA needs to cover these bases:
1. Definition of Confidential Information
This is the most important clause — and the one most often drafted too broadly or too narrowly. The definition should be specific enough to be enforceable but broad enough to cover what actually needs protection.
- Too broad: "All information disclosed by either party" — courts may refuse to enforce or interpret this clause narrowly
- Too narrow: Listing only specific documents — new disclosures may not be covered
Best practice: Define confidential information by type or category, and include a catch-all for information marked or designated as confidential at the time of disclosure.
2. Exclusions from Confidentiality
A well-drafted NDA specifies what is not confidential. Standard exclusions:
- Information already in the public domain (not through breach)
- Information the receiving party already knew before disclosure
- Information independently developed without reference to the disclosed information
- Information received from a third party without restriction
Without these carve-outs, the agreement can be challenged or create unreasonable obligations.
3. Obligations of the Receiving Party
Spell out exactly what the receiving party must (and must not) do:
- Protect the information with the same care they use for their own confidential materials (or a specified standard)
- Limit disclosure to employees or agents who need to know
- Use the information only for the stated purpose
- Notify the disclosing party if they become aware of any unauthorized disclosure
4. Term and Duration
How long does the obligation last? Options:
- Fixed term (e.g., 2 or 3 years from the date of disclosure)
- Perpetual for certain categories (trade secrets, source code)
- Survival clause — obligations survive termination of the agreement for a defined period
For trade secrets, indefinite protection may be appropriate given that trade secret law itself has no fixed expiration.
5. Permitted Disclosures
The NDA should address situations where disclosure may be legally required — such as a court order or regulatory subpoena. The standard approach: the receiving party must promptly notify the disclosing party and cooperate in any effort to seek a protective order.
6. Remedies
Include language acknowledging that breach may cause irreparable harm for which monetary damages are insufficient — this strengthens the case for injunctive relief without requiring proof of specific damages.
7. Governing Law and Jurisdiction
Choose a state. If the parties are in different states, this matters. Delaware is common for commercial agreements; use the state with the strongest nexus to the relationship or the disclosing party's location.
Sample NDA Outline
Use this as a structural reference — not a fill-in-the-blank form:
NON-DISCLOSURE AGREEMENT
This Non-Disclosure Agreement ("Agreement") is entered into as of [DATE]
by and between [DISCLOSING PARTY] ("Disclosing Party") and
[RECEIVING PARTY] ("Receiving Party").
1. Definition of Confidential Information
2. Exclusions from Confidential Information
3. Obligations of Receiving Party
4. Permitted Use
5. Term
6. Return or Destruction of Confidential Information
7. No License
8. Compelled Disclosure
9. Remedies
10. Governing Law
11. Entire Agreement / Amendments
12. Counterparts / Electronic Signatures
IN WITNESS WHEREOF, the parties have executed this Agreement as of the date first written above.
[SIGNATURE BLOCKS]
Each of these sections requires substantive drafting — the outline is a skeleton, not a finished product.
Common NDA Mistakes (and How to Avoid Them)
Forgetting to specify the permitted purpose. An NDA should state why the information is being shared (e.g., "for the purpose of evaluating a potential business relationship"). This limits how the receiving party can use the information and adds enforceability.
No marking requirement — or a rigid one. Some NDAs require all confidential information to be marked "CONFIDENTIAL" in writing. This is hard to enforce in practice (verbal disclosures, meetings). Consider requiring marking for written materials but including a catch-all for oral disclosures confirmed in writing within 30 days.
Overly long duration for non-confidential obligations. A 10-year NDA for general business information may be unenforceable in some jurisdictions. Match the term to what's reasonable for the type of information.
Missing the independent development carve-out. Without it, a company could inadvertently create liability for work it does independently — especially in technology contexts.
Not addressing return/destruction of materials. Upon termination, who gets the documents back? What happens to copies? Address this to avoid disputes.
A Note on NDA Enforceability
NDAs are enforced through civil litigation. If the receiving party breaches, the disclosing party must file suit and prove: (1) a valid agreement existed, (2) the information qualified as confidential, (3) the receiving party disclosed or misused it, and (4) damages resulted (or irreparable harm is threatened).
Courts have voided NDAs that were too vague, lacked consideration, or imposed unreasonable obligations. Drafting precision matters.
ClauseForge generates draft documents for attorney review. Not a substitute for legal advice.
Stop Starting From Scratch
A well-drafted NDA protects your client's most valuable information. But drafting one from a generic free template — or starting from zero each time — wastes time and introduces risk.
Draft your NDA in under 2 minutes at ClauseForge.ai — no templates to fill in, just describe what you need.
Describe the parties, the type of information, whether it's mutual or one-way, and the jurisdiction. ClauseForge generates a complete, attorney-ready draft you can review, edit, and file. Starter plans from $49/mo.