Indemnity Clauses Explained: What UK Businesses Should Know Before Signing

If you run a small business, you’ve probably come across an indemnity clause in a contract and felt that little pause: “This sounds important… but what does it actually mean for me?”

You’re not alone. Indemnity clauses are common in supplier agreements, client contracts, SaaS terms, consultancy engagements, and pretty much any B2B relationship where something could go wrong.

The tricky bit is that an indemnity can shift a lot of risk onto you - sometimes more than you expect - even if the contract otherwise looks “standard”. Getting the legal side right before you sign can save you a painful (and expensive) dispute later.

Below, we break down how indemnity clauses work in the UK, what small businesses should watch for, and how to negotiate something more balanced.

What Is An Indemnity (And What Does An Indemnity Clause Do)?

In plain English, an indemnity is a promise to cover someone else’s loss if a specified event happens.

So, an indemnity clause is the contract term that says:

• who will pay (the “indemnifying party”)
• who is protected (the “indemnified party”)
• what losses are covered (e.g. legal fees, claims, damages, costs)
• what triggers the indemnity (e.g. breach, negligence, IP infringement)
• what the process is if a claim is made (notice, control of defence, settlement)

It’s worth knowing that “indemnity” is not just a dramatic way of saying “you’re liable”. Indemnities can be drafted to create a much broader obligation than “normal” breach of contract damages, depending on the wording.

Indemnity vs Liability: What’s The Difference?

In a standard contract claim (without an indemnity), the other party usually has to prove things like:

• you breached the contract or were negligent
• the loss was caused by that breach
• the loss wasn’t too remote
• the loss is the type the law allows them to recover

With an indemnity, the contract can reduce some of those hurdles, because you’ve agreed in advance to compensate specific losses if a trigger happens.

That’s why indemnity clauses often sit alongside other risk clauses like Limitation of Liability terms - they’re usually two sides of the same risk conversation.

When Do Small Businesses Usually See Indemnities?

Indemnities often show up when one party is exposed to third-party claims or regulatory risk. Common examples include:

• you provide marketing, software, design, or content and the client worries about IP claims
• you’re handling personal data and the other party worries about data protection claims and regulatory exposure
• you’re doing work on-site and the other party worries about property damage or injury
• you’re selling products and the buyer wants protection if products cause damage

Why Indemnity Clauses Matter For UK Small Businesses

When you’re scaling a business, it’s easy to think: “This is just legal wording - it’ll never come up.” But indemnity clauses can absolutely come up, especially if you’re working with larger clients or platforms that use “one-way” contracts.

Here’s why they matter:

They Can Create Big, Uncapped Exposure

An indemnity can effectively make you the “insurer” for someone else’s risk. If the clause isn’t capped, you may be taking on open-ended liability - including legal costs - even if your fee for the project is relatively small.

This is why indemnities should be read together with the contract’s cap on liability (if there is one). You’ll often see contracts where:

• liability is capped (e.g. at fees paid), but
• indemnities are carved out and remain uncapped

That combination can be commercially risky if you’re a small business operating with tight margins.

They Can Apply Even If You Didn’t “Do Something Wrong”

Some indemnities are drafted so broadly that they can be triggered by events outside your control - for example, “any claim arising from your services”, regardless of fault.

In practice, this can mean you’re paying to defend a claim even if you ultimately did nothing wrong.

They Can Override Insurance Assumptions

A common trap is assuming your insurance will automatically cover everything an indemnity requires you to pay. Policies can have exclusions, conditions, and limits - and “contractual liability” can be a particular issue if you’ve agreed to something beyond what the law would normally impose.

Before you agree to a heavy indemnity, it’s sensible to check whether:

• you have the right insurance (e.g. professional indemnity, public liability, cyber)
• the policy limits match the scale of the indemnity risk
• the policy wording covers contractual indemnities (or only negligence)

They Interact With UK Contract Rules

In the UK, indemnities and exclusions aren’t “automatically enforceable” just because they’re written down. Depending on the context, laws like the Unfair Contract Terms Act 1977 (UCTA) can require certain limitation or exclusion clauses (and, in some scenarios, indemnity-style risk transfers) to be reasonable, particularly where one party is dealing on the other’s standard terms.

That said, you don’t want to rely on “maybe it’s unenforceable” as your risk plan. It’s usually far better to negotiate balanced drafting upfront - and ensure the contract is clearly formed and properly agreed. Clauses about formation and notices can matter more than people expect when deals move fast.

Common Types Of Indemnity Clauses (With Real-World Examples)

Not all indemnities are the same. As a small business, the key is spotting what category you’re dealing with and whether it’s proportionate to the work you’re doing.

1. Intellectual Property (IP) Indemnity

This is one of the most common indemnities in creative and tech contracts. It usually says you’ll indemnify the client if your deliverables infringe someone else’s IP rights (copyright, trade marks, etc.).

Example scenario: You design a logo or create marketing materials. A third party claims it copies their work. The client wants you to cover the claim because they’re using your deliverables.

What to look for:

• Does it apply only if you’ve breached someone’s rights, or “any claim” broadly?
• Does it cover modifications made by the client (it shouldn’t, unless you approved them)?
• Does it cover materials supplied by the client (usually should be excluded)?
• Is there a reasonable remedy clause (replace/modify/refund) rather than unlimited exposure?

2. Data Protection / GDPR Indemnity

If you process personal data for a client, they may ask for an indemnity for losses linked to data protection issues - including claims by data subjects and regulatory action.

This often sits next to the contract’s data protection schedule. If you’re acting as a processor, you’ll usually want a properly drafted Data Processing Agreement setting out responsibilities clearly.

What to look for:

• Is the indemnity mutual (each party covers their own GDPR breaches), or one-way?
• Does it try to include regulatory fines or penalties (which may be restricted by law, hard to recover contractually in practice, and may not be insurable)?
• Is it limited to breaches you caused, rather than “anything connected with data”?
• Are security obligations practical for your business size and systems?

If you collect customer data directly (e.g. through a website or online store), you should also make sure your outward-facing documents are aligned - including a Privacy Policy that matches what you actually do.

3. Third-Party Claims Indemnity (General)

These clauses say you’ll indemnify the other party if a third party makes a claim connected to your services/products.

Example scenario: You send a contractor on-site who accidentally damages a client’s premises, or a customer claims injury linked to your product. The client wants you to cover the downstream costs.

What to look for:

• Is it limited to losses caused by your breach, negligence, or misconduct?
• Does it cover only “third-party claims”, or also the other party’s own internal losses?
• Does it include “indirect” or “consequential” losses (which can be very broad)?

4. Tax Indemnity

Tax indemnities often appear in contractor or consultancy arrangements, particularly where the other party wants to protect themselves from employment tax risk.

Example scenario: A client hires you as a freelancer. They include a clause saying you indemnify them for any PAYE/NIC liability if HMRC later determines you should have been treated as an employee.

What to look for:

• Is the relationship accurately documented (status, control, substitution, etc.)?
• Is the indemnity proportionate to the fees and the actual risk allocation?

Important: This section is general information about contract risk allocation. Sprintlaw doesn’t provide tax advice, and you should speak to a qualified accountant or tax adviser about your specific tax position.

Where you’re bringing people into your own business (employees or contractors), strong baseline documentation helps reduce disputes in the first place - for instance, having a well-drafted Employment Contract if you’re hiring staff.

What Should You Look For Before You Agree To An Indemnity?

Indemnities are all about wording. Two clauses that “sound similar” can create very different outcomes. Here are the practical checkpoints we recommend you run through before signing.

Check The Trigger: What Exactly Activates The Indemnity?

Look for language like:

• “arising out of” (often broad)
• “in connection with” (also broad)
• “caused by” (narrower, focuses on causation)
• “to the extent” (helpful - allows apportionment)

For small businesses, “to the extent caused by your breach or negligence” is usually a more manageable starting point than “any claim connected with your services”.

Define “Losses” Properly (And Watch Legal Costs)

Indemnity clauses often define “losses” to include:

• damages
• settlements
• fines and penalties
• legal fees (sometimes on a full indemnity basis)
• internal costs (management time, investigation costs)

If “losses” are defined too broadly, you may end up paying for things that feel unfair or out of proportion to the contract value.

Look For Control Of Defence And Settlement Rights

If a third-party claim comes in, you’ll want a fair process, such as:

• the other party must notify you promptly
• you have the right to control or participate in the defence
• the other party can’t settle without your consent (especially if it impacts your reputation or future obligations)

Without these mechanics, you can end up funding a legal strategy you don’t agree with.

Check Whether The Indemnity Is Capped (Or Carved Out Of The Cap)

Many contracts include a general “cap on liability”, then list “carve-outs” where the cap doesn’t apply. Indemnities often end up in those carve-outs.

It’s a good idea to read indemnity wording alongside the broader risk section, including any Limitation of Liability examples (just to sense-check what “market standard” can look like in practice).

If you’re signing a contract where your potential exposure is significantly higher than the revenue you’ll earn, that’s usually a sign you should pause and renegotiate.

Make Sure It Matches The Rest Of The Contract

Indemnity clauses should align with:

• the scope of services and deliverables
• ownership and licensing of IP
• data protection obligations
• termination rights
• the general risk allocation (caps/exclusions)

As a practical step, it can help to ensure your overarching contract structure is sound - including the basics of offer/acceptance, consideration, and certainty - because enforceability disputes often start there. The core principles of Legally Binding Contracts still matter, even when the contract has a sophisticated indemnity clause tucked inside it.

How Can You Negotiate A Fairer Indemnity Without Killing The Deal?

Negotiating contracts as a small business can feel awkward, especially if you’re dealing with a bigger client who says “we can’t change our terms.” But in reality, many businesses will adjust indemnities if you raise reasonable points and propose clean alternatives.

Here are practical approaches that often work.

Ask For The Indemnity To Be Limited To Your Fault

A common compromise is to limit the indemnity to losses:

• caused by your breach of the agreement
• caused by your negligence or wilful misconduct
• “to the extent” you caused or contributed to the issue

This helps avoid being responsible for things outside your control (like the other party’s mishandling of your deliverables).

Carve Out Client-Supplied Materials And Client Changes

If the client provides assets, instructions, brand elements, or copy, make sure indemnities don’t accidentally make you responsible for those.

Similarly, if the client edits or reuses your deliverables beyond the agreed scope, you’ll usually want that excluded from the indemnity.

Propose A Cap That Matches Commercial Reality

Caps are often set by reference to:

• fees paid in the last 12 months
• a multiple of fees (e.g. 100%–200%)
• insurance limits (where appropriate)

The “right” cap depends on the work, industry, and bargaining power - but the key is aligning risk with reward. If the contract is a £5,000 project, taking on £500,000 of uncapped indemnity risk is rarely sustainable.

Make The Indemnity Mutual Where Appropriate

Some indemnities make sense as mutual obligations. For example:

• each party indemnifies the other for breaches of confidentiality they cause
• each party indemnifies the other for data protection breaches under their control

Mutuality can be a fair framing, particularly when both sides are taking on real operational obligations.

Use Clear, Consistent Contract Documents

If your deals are recurring, it’s often worth investing in consistent documentation (rather than renegotiating from scratch each time). That might include strong Terms and Conditions and a tailored Service Agreement that builds in your preferred indemnity position from day one.

Even small improvements in your standard drafting can make negotiations faster and reduce the risk of signing something that quietly puts your business on the hook.

Key Takeaways

• An indemnity is a contractual promise to cover specified losses, and it can go further than “normal” breach of contract liability depending on the wording.
• Indemnity clauses are common in UK business contracts, especially for third-party claims, IP infringement, data protection, and tax/status risks.
• Before you sign, check the trigger, the definition of losses, whether you have control of defence, and whether the indemnity is capped or carved out of the liability cap.
• Watch for indemnities drafted too broadly (e.g. “arising out of” your services) - these can shift disproportionate risk onto your small business.
• Practical negotiations often include limiting indemnities to your breach/negligence, carving out client-supplied materials, and setting a commercially realistic cap.
• Because indemnities can be high-stakes and fact-specific, it’s worth getting legal advice before agreeing to anything that could create open-ended exposure.

If you’d like help reviewing or negotiating an indemnity clause (or putting stronger terms in place to protect your business from day one), you can reach us at 08081347754 or team@sprintlaw.co.uk for a free, no-obligations chat.