One Way NDA (Non-Disclosure Agreement) In The UK

If you’re about to share valuable know‑how with a potential supplier, contractor or investor, a one way NDA can be the simplest way to protect your business information.

In this guide, we’ll explain exactly what a one way NDA is, when to use it, what to include, and how to make it work in real‑world situations under UK law. Our aim is to help you feel confident you’re protected from day one, without slowing down your deals.

What Is A One Way NDA?

A one way NDA (also called a unilateral non‑disclosure agreement) is a contract where only one party is disclosing confidential information and the other party agrees to keep it secret and use it only for a defined purpose.

For example, you might share a product roadmap, pricing model or customer list with a manufacturer or marketing agency. In a one way NDA, you’re the “Disclosing Party” and they’re the “Receiving Party”. The obligation to keep things confidential sits with them.

By contrast, when both sides expect to share sensitive information, you’d typically use a Mutual NDA. And if you’re dealing across borders, it’s wise to consider whether you need an international NDA that deals with jurisdiction and enforcement in different countries.

Practically, a one way NDA is a short, focused document. It defines what counts as “Confidential Information”, the permitted use, who can see it, how it must be protected, and what happens if it’s misused. If you don’t have a tailored document yet, our team can prepare a business‑ready Non‑Disclosure Agreement that suits your industry and workflow.

When Should Your Business Use A One Way NDA?

You don’t need an NDA for every conversation. But there are clear scenarios where a one way NDA is smart risk management and often expected as part of a professional process.

Common Use Cases

• Early supplier or manufacturer discussions where you share specifications, prototypes, CAD files or proprietary processes.
• Marketing or agency briefs that include campaign strategy, audience insights, conversion data and pricing.
• Technology scoping with developers where you disclose source code, APIs, data models or unique algorithms.
• Business development and partnership talks that involve go‑to‑market plans, sales decks or customer pipelines.
• Potential investors or advisors asking for non‑public financials, unit economics or distribution terms at the pre‑term sheet stage.

NDAs Versus Built‑In Confidentiality

Sometimes, confidentiality is better embedded in a broader agreement rather than handled separately:

• Employees: Your Employment Contract should include confidentiality, IP and post‑termination obligations. This provides ongoing protection beyond a stand‑alone NDA.
• Contractors and freelancers: A properly drafted Contractors Agreement should cover confidentiality, non‑solicitation and who owns IP in the deliverables.
• Internal operations: A clear workplace confidentiality policy helps you set expectations, mark information appropriately and train staff on handling sensitive data.

As a rule of thumb: use a one way NDA for early, pre‑contract discussions where you’re the only one sharing sensitive information. Once you engage someone formally, include confidentiality in the main contract.

Are One Way NDAs Enforceable In The UK?

Yes-provided they’re sensibly drafted and used for a legitimate business purpose, one way NDAs are enforceable under UK law.

Key Legal Principles

• Breach of confidence: UK law recognises a common law duty not to misuse information that is confidential, shared in circumstances importing an obligation of confidence, and unauthorised use would harm the discloser. An NDA strengthens and clarifies those obligations.
• Trade Secrets Regulations: The Trade Secrets (Enforcement, etc.) Regulations 2018 protect confidential information that meets the “trade secret” threshold-i.e., it’s secret, has commercial value because it’s secret, and you’ve taken reasonable steps to keep it secret. An NDA is one of those reasonable steps.
• Data protection: If the confidential information includes personal data, you must comply with the UK GDPR and Data Protection Act 2018. An NDA is not a substitute for data protection compliance (e.g., security measures or, where acting as controller/processor, a data processing arrangement).

Reasonableness Matters

Courts are cautious about overly broad or punitive restrictions. To maximise enforceability:

• Keep the definition of “Confidential Information” tied to what you actually need to protect. Blanket “everything is confidential forever” wording can be challenged.
• Set a reasonable duration. Many NDAs last 2–5 years, but truly sensitive trade secrets can justify longer.
• Avoid non‑compete clauses shoehorned into an NDA. If you need restrictions like non‑solicitation or non‑circumvention, tailor them carefully and consider a separate clause or agreement. For introductions and pipelines, well‑drafted non‑circumvention clauses are often a better fit than broad non‑competes.
• Make sure there’s consideration. If the NDA is signed as a simple agreement (not a deed), ensure there’s something of value provided (the information itself usually suffices). Alternatively, have it executed as a deed where appropriate and legally permissible.

Remedies If Things Go Wrong

If the other side breaches a one way NDA, typical remedies include injunctive relief (to stop further misuse), damages, or an account of profits. The contract can also require the return or secure deletion of disclosed information.

In practice, the speed at which you act matters. Preserve evidence (emails, access logs, document watermarks), and seek urgent advice on options like interim injunctions.

What Should A One Way NDA Include?

Every business is different, but a robust one way NDA usually covers the following.

1) Clear Definitions

• Confidential Information: Define what’s protected, with illustrative examples (e.g., product designs, business plans, source code). Consider excluding info that is already public, independently developed, or obtained lawfully from a third party.
• Purpose: Specify the sole permitted purpose (e.g., “to evaluate a potential supply arrangement”). This limits how the recipient can use your information.

2) Use And Disclosure Restrictions

• Use solely for the Purpose and no reverse engineering, benchmarking or decompiling.
• Limit disclosure to “need‑to‑know” personnel and professional advisers who are bound by confidentiality obligations at least as strict as the NDA.
• Control onward sharing with affiliates and subcontractors-require prior written consent and ensure equivalent obligations flow down.

3) Security And Handling

• Reasonable security standards, including access controls, encryption for transfers, and secure storage.
• Requirements to notify you promptly of any unauthorised access or suspected breach, and to cooperate with mitigation.
• Return or destruction on request or at the end of the discussions, with a deletion certificate where appropriate.

4) Intellectual Property (IP)

• Ownership: Make clear that disclosure doesn’t transfer IP. All rights in your information remain yours.
• Residual knowledge: Decide whether to allow the recipient’s personnel to use “unaided” general skills and know‑how in future-if you do, carve this out carefully to avoid undermining your protection.

5) Duration And Survival

• Set a confidentiality period that is commercially reasonable. Many businesses use 2–5 years, with trade secrets protected for as long as they remain secret.
• Ensure obligations survive termination of discussions and return/destruction of information.

6) Legal Housekeeping

• Governing law and jurisdiction: For UK parties, English law and English courts are common choices.
• Compelled disclosures: Allow disclosures required by law or regulators, with a duty to notify you (where lawful) and limit the scope.
• Equitable relief: Acknowledge that damages may be inadequate and injunctive relief may be necessary.
• No licence: State that disclosure doesn’t grant any licence, option or commitment to proceed with a deal.
• Counterparts and e‑signatures: Enable quick signing processes that reflect how you actually work.

One Way NDA Vs Alternatives (At A Glance)

• Mutual NDA: Best when both sides will share sensitive info during due diligence or joint scoping. Use a tailored Mutual NDA instead of trying to tweak a unilateral template.
• Main contract confidentiality: For ongoing engagements, include confidentiality and IP terms directly in the Contractors Agreement or Employment Contract.
• Cross‑border deals: Add jurisdiction clauses, service of process, and data transfer provisions, or consider an international NDA.

How To Use A One Way NDA In Practice

Having a solid document is step one. Step two is using it well in your process so it actually protects you while keeping momentum in the deal.

1) Map What You’ll Share And Why

Before you send any files, list the categories of information you plan to share and the specific purpose (e.g., unit cost quoting, UX scoping, security review). This makes it easy to set the right “Purpose” in the NDA and avoid over‑disclosure.

2) Send The NDA Early-But Be Pragmatic

It’s standard to send a one way NDA before you disclose substantive information. If a counterparty is hesitant, put them at ease by keeping the NDA concise and commercially reasonable. You can also share high‑level, non‑confidential information first and phase in deeper disclosure once the NDA is signed.

3) Identify The Right Party And Signatory

Make sure the legal entity that will receive the information is correctly named (not just a trading name), and the signatory has authority to bind that entity. If the recipient wants to share with affiliates, name them or include a mechanism to approve them before any onwards disclosure.

4) Mark Information Clearly

Consistently label documents and slides “Confidential”. For oral disclosures, follow up with written confirmation within the timeframe set by the NDA. This evidences what was covered and reduces arguments later about what was “confidential”.

5) Control Access

Use a secure data room or shared drive with access logs and permissions. Avoid email attachments where possible. Keep a list of who has access and update it as people join or leave the project.

6) Align With Data Protection

If you’ll share personal data, even in small amounts, make sure you have a lawful basis, apply data minimisation, and implement appropriate technical and organisational measures under UK GDPR. An NDA does not replace a data processing arrangement where one party is processing personal data on the other’s behalf-you may also need a dedicated Data Processing Agreement in those cases.

7) Keep A Clean Paper Trail

Save the signed NDA, any approval emails for third‑party disclosures, and a record of what you shared and when. If there’s ever a dispute, this evidence will be invaluable.

8) Don’t Overreach

Resist the temptation to pack every restriction into the NDA. If you need commitment around exclusive negotiations, use a tailored exclusivity clause in a separate heads of terms, rather than stretching the NDA’s purpose. For introductions or sales pipelines, a focused non‑circumvention clause can protect your relationships without risking enforceability by over‑reaching.

9) Integrate With Your Contracts And Policies

Once you appoint a supplier or hire a freelancer, embed confidentiality, IP ownership and post‑termination protections in the main agreement. This creates continuity from the NDA stage through to delivery. Internally, make sure your team follows your confidentiality policy so you’re consistently taking “reasonable steps” to protect trade secrets.

Key Takeaways

• A one way NDA is ideal when only your business is sharing sensitive information during early discussions with suppliers, contractors, agencies or potential investors.
• Under UK law, one way NDAs are enforceable when they’re clear, reasonable in scope and duration, and used for a legitimate business purpose. They sit alongside common law breach of confidence and the Trade Secrets Regulations 2018.
• Keep your definition of “Confidential Information” targeted, set a clear Purpose, outline security and handling standards, and include sensible carve‑outs (like information already public or independently developed).
• If both sides will disclose, switch to a Mutual NDA. For ongoing engagements, build confidentiality into your Contractors Agreement or Employment Contract, and support it with a workplace confidentiality policy.
• Use NDAs pragmatically: send them early, name the right entity, mark your documents, store everything securely, and keep a clean record of what you shared and when.
• Don’t rely on an NDA alone if personal data is involved-where appropriate, add a Data Processing Agreement and comply with UK GDPR and the Data Protection Act 2018.
• If you need a business‑ready Non‑Disclosure Agreement tailored to your workflow (or you’re unsure whether to use a one way, mutual or international NDA), it’s worth getting tailored advice so you’re protected from day one.

If you’d like help drafting or reviewing a one way NDA, or you want an expert to map out the best way to protect your confidential information and IP across your contracts and processes, you can reach us at 08081347754 or team@sprintlaw.co.uk for a free, no‑obligations chat.