NDA Review Checklist: 10 Things to Verify Before Signing

Non-disclosure agreements are routine — but signing one without reading it carefully is a mistake people make every day. A poorly reviewed NDA can expose you to unexpected obligations, restrict your future business activities, or leave you unprotected when it matters most.

This checklist covers the 10 things you should verify before signing any NDA, whether you're the disclosing party or the receiving party.

1. Definition of Confidential Information

The most important clause in any NDA is the definition of what counts as confidential information. If the definition is too vague ("all information shared between the parties"), it's difficult to enforce. If it's too narrow, important information falls outside the agreement.

What to check:

• Are specific categories listed (financial data, trade secrets, customer lists, source code)?
• Does it cover both written and verbal disclosures?
• Is there a marking requirement for written materials?
• Does the scope match what you're actually sharing or receiving?

A well-drafted NDA names the categories of protected information rather than relying on catch-all language.

2. Mutual vs. One-Way Protection

Not all NDAs protect both parties. A unilateral NDA protects only the disclosing party — the receiving party takes on all the obligations. A mutual NDA protects both sides equally.

What to check:

• Is this mutual or unilateral?
• If unilateral, are you the protected party or the restricted party?
• If you're sharing information too, does the agreement protect your disclosures?

If both sides are sharing sensitive information — in partnership discussions, joint ventures, or merger talks — a mutual NDA is the standard choice.

3. Duration and Termination

The NDA's duration determines how long you're bound by its confidentiality obligations. This is separate from the duration of the business relationship itself.

What to check:

• How long does the confidentiality obligation last?
• Is the term reasonable for the type of information (1–5 years for most business NDAs)?
• Are there separate terms for different categories of information?
• Can either party terminate the NDA early, and under what conditions?

Indefinite NDAs are common for trade secrets but can be problematic for general business information.

4. Standard Exclusions

Every enforceable NDA should have standard exclusions — carve-outs for information that doesn't qualify as confidential. Without these, the NDA becomes unreasonably broad.

What to check:

• Information already in the public domain
• Information the receiving party already possessed independently
• Information received from a third party without confidentiality restrictions
• Information independently developed without using the confidential material
• Information required to be disclosed by law or court order

If any of these exclusions are missing, flag it. Courts often view NDAs without standard exclusions as overreaching.

5. Permitted Disclosures

Even under an NDA, there are situations where disclosure may be necessary — to your lawyer, accountant, or employees who need to know. The NDA should address this.

What to check:

• Can you share confidential information with your legal counsel?
• Can you disclose to employees, contractors, or affiliates who need access?
• Are there conditions on permitted disclosures (e.g., those recipients must also be bound by confidentiality)?
• Does the agreement allow disclosure required by legal process?

An NDA that doesn't allow any permitted disclosures can create practical problems during normal business operations.

6. Remedies for Breach

What happens if someone breaks the NDA? The remedies clause determines the consequences and your options for enforcement.

What to check:

• Does it specify monetary damages, injunctive relief, or both?
• Are there liquidated damages (a predetermined penalty amount)?
• Does the breaching party owe legal fees to the other side?
• Is there a dispute resolution mechanism (mediation, arbitration, or litigation)?

A strong remedies clause makes an NDA meaningful. Without it, enforcement becomes expensive and uncertain.

7. Governing Law and Jurisdiction

The governing law clause determines which jurisdiction's laws apply if there's a dispute. This matters more than most people realize — contract law varies significantly between states and countries.

What to check:

• Which state or country's laws govern the agreement?
• Where must disputes be filed (venue)?
• Is the chosen jurisdiction reasonable for both parties?
• If cross-border, are there additional enforcement considerations?

Choose a jurisdiction you're comfortable litigating in. An NDA governed by the law of a distant jurisdiction increases your costs if something goes wrong.

8. Non-Compete or Non-Solicitation Language

Some NDAs include non-compete or non-solicitation provisions — restrictions that go beyond confidentiality. These can limit your ability to work with competitors or hire certain people.

What to check:

• Does the NDA include any non-compete restrictions?
• Are there non-solicitation clauses covering employees or customers?
• Are these restrictions reasonable in scope, geography, and duration?
• Are non-competes enforceable in your jurisdiction? (Many states restrict them.)

Non-compete language in an NDA is a red flag worth scrutinizing. It may be appropriate in some contexts, but you should know it's there.

9. Return or Destruction of Information

When the NDA expires or the relationship ends, what happens to the confidential information? The return/destruction clause covers this.

What to check:

• Must you return all confidential materials upon request or termination?
• Is destruction of copies (including digital backups) required?
• Do you need to certify that materials have been destroyed?
• Are there exceptions for legally required record retention?

This clause has practical implications — especially if confidential information is embedded in your systems, notes, or work product.

10. Signature Blocks and Authority

An NDA is only as good as the signatures on it. Before signing, verify that all parties are properly identified and that the signers have authority.

What to check:

• Are the correct legal entity names listed (not just individual names)?
• Do the signers have authority to bind their organizations?
• Are dates and titles included in the signature block?
• Is the agreement signed by all parties (not just one side)?

An unsigned or improperly signed NDA is unenforceable — no matter how well the other clauses are drafted.

Before You Sign: The Quick Version

Run through these 10 items before signing any NDA:

1. ✅ Confidential information is clearly and specifically defined
2. ✅ The NDA type (mutual vs. one-way) matches your situation
3. ✅ The duration is reasonable for the type of information
4. ✅ Standard exclusions are present
5. ✅ Permitted disclosures cover your practical needs
6. ✅ Remedies for breach are clearly stated
7. ✅ Governing law and jurisdiction are acceptable
8. ✅ No hidden non-compete or non-solicitation clauses
9. ✅ Return/destruction obligations are manageable
10. ✅ Signature blocks are complete and authorized

Create Your NDA with Confidence

Need to draft an NDA that covers all these bases? Create a Non-Disclosure Agreement on contract.diy — professionally structured with jurisdiction-specific provisions, clear confidentiality definitions, and all the essential clauses covered in this checklist.

Related Reading

• How to Write an NDA: A Complete Guide
• NDA FAQ: 10 Questions About Non-Disclosure Agreements
• Free NDA Template: What to Include and Common Mistakes
• NDA vs. Confidentiality Agreement: What's the Difference?