Unilateral NDA In The UK: What It Is And When To Use It

If you’re about to share sensitive information with a supplier, developer, potential investor or freelancer, a unilateral NDA is often the quickest way to protect your business before the conversation starts.

Used well, it discourages leaks, gives you clear legal remedies if something goes wrong and signals you’re serious about confidentiality from day one.

In this guide, we break down what a unilateral NDA is, when to use one, the key clauses to include under UK law, and practical steps to get it signed without slowing down your deal.

What Is A Unilateral NDA And When Should Your Business Use One?

A unilateral non‑disclosure agreement (NDA) is a confidentiality contract where only one party (the “discloser”) shares confidential information and the other party (the “recipient”) agrees to keep it secret and use it only for a defined purpose.

It’s ideal where the information flow is mostly one‑way, for example:

• Sending product specs to a manufacturer for a quote
• Sharing code, roadmaps or datasets with a contractor or agency to scope a project
• Explaining your pitch deck to a potential adviser or investor who won’t share their own secrets
• Providing access to customer lists or pricing models to a prospective distributor

Where information will flow both ways (for example, in a collaboration), a mutual NDA might be more appropriate. If you’re at the stage of drafting or tweaking terms, it’s worth getting a Non‑Disclosure Agreement tailored to your situation so the protections actually match the risks in your deal.

Unilateral NDA Vs Mutual NDA: Which Is Right For Your Deal?

Both agreements protect confidentiality, but they’re structured differently.

When A Unilateral NDA Fits Best

• The other party won’t be disclosing their own sensitive information.
• You want a short, simple document to get signed quickly.
• You want the obligations and remedies to focus on protecting your information only.

When A Mutual NDA Fits Best

• Both sides will exchange sensitive information during discussions or trial work.
• You expect a two‑way collaboration where both parties need equal protections.
• You want symmetrical obligations to keep negotiations balanced.

In practice, some counterparties will push for a mutual form as a matter of policy. That’s fine if you’ll share information too - just make sure the “purpose” and permitted disclosures are still tight. If you’re weighing up the options, comparing a mutual form side‑by‑side can help - we regularly draft both unilateral and Mutual NDAs for this exact reason.

Working across borders? You’ll also need to consider governing law, data transfer rules and enforcement. Cross‑border confidentiality brings additional issues, so review any international scenarios with an International NDA in mind.

What Clauses Should A UK Unilateral NDA Include?

Don’t rely on a bare‑bones template - a strong unilateral NDA does a few specific things under UK law. Here are the essentials to cover.

1) Clear Definitions: “Confidential Information” And “Purpose”

Define “Confidential Information” broadly enough to cover what you’ll actually share (written, oral, visual, samples, access credentials) while excluding generic, public or previously known information. Then, nail down the “Purpose” - the narrow business activity the recipient may use your information for (e.g. “evaluating a potential manufacturing relationship for Product X”). The tighter the Purpose, the less room for misuse.

2) Confidentiality Obligations

Standard obligations include:

• Keep the information secret and use it only for the Purpose.
• Limit access to people who need to know (e.g. staff, professional advisers) and ensure they’re under confidentiality duties too.
• Protect the information using reasonable security measures (technical and organisational).

If personal data is involved, the agreement should require compliance with UK GDPR and the Data Protection Act 2018 and be consistent with your Privacy Policy.

3) Exclusions From Confidentiality

Common carve‑outs are appropriate and should be carefully worded. Information is not confidential if it:

• Is or becomes public through no fault of the recipient
• Was already known to the recipient on a non‑confidential basis
• Is independently developed without using your confidential information
• Must be disclosed by law or a competent authority (with notice to you if legally permitted)

4) Permitted Disclosures

Allow disclosure to specific categories (employees, officers, professional advisers, potential financiers) on a need‑to‑know basis, provided those people are bound by confidentiality at least as strict as the NDA. This ensures your information doesn’t spread unintentionally within a large organisation.

5) Security And Handling Requirements

Specify minimum standards proportionate to the risk - for example:

• Store electronic materials on secured systems with access controls
• Don’t copy or reverse engineer tangible samples without written consent
• Mark confidential materials clearly where practicable
• Avoid exporting data outside the UK without appropriate safeguards

6) Return Or Destruction

On request or at the end of discussions, the recipient should promptly return or securely destroy your confidential materials and confirm this in writing, while allowing for reasonable archival copies required by law or internal compliance. Make sure backups and caches are addressed sensibly.

7) Term And Survival

Two timelines matter: the “disclosure period” (how long talks last) and the “confidentiality period” (how long the secrecy obligation continues). It’s normal for confidentiality to survive for a set time (e.g. 3–5 years), but for trade secrets, consider survival for as long as the information remains a trade secret.

8) Ownership And No Licence

State clearly that disclosure doesn’t transfer ownership, licence or any implied IP rights. If you intend to assign IP later, do that separately via an IP Assignment once terms are agreed.

9) Non‑Solicitation Or Non‑Compete (Use With Care)

UK law polices restraints of trade. Reasonable, narrowly tailored non‑solicitation (e.g., don’t poach named staff or customers for a limited period) is more likely to hold than broad non‑compete wording. If you include restraints, limit them by scope, geography and time.

10) Remedies (Including Injunctions)

Money may not fix the damage from a leak. Your NDA should state you can seek injunctive relief and other equitable remedies. Avoid punitive “penalty” clauses - under English law, penalties are unenforceable, whereas a genuine pre‑estimate of loss (liquidated damages) may be enforceable if carefully drafted.

11) Deed Or Simple Agreement?

If the recipient gives no consideration (no payment or mutual promises), signing as a deed can help enforceability. A deed also has a longer limitation period. If you go the deed route, follow execution formalities (especially for companies) and consider e‑signing logistics.

12) Governing Law, Jurisdiction And Notices

Choose England and Wales as governing law and designate courts (or arbitration, if preferred). Keep notices practical (email plus one physical address), and set when email notices are deemed received.

Does A Unilateral NDA Comply With UK Law? Key Legal Considerations

NDAs sit within a broader UK legal framework. Here are the headline points to keep in mind.

Trade Secrets And The Duty Of Confidence

Beyond contract, English law recognises a common law duty of confidence and statutory protection under the Trade Secrets (Enforcement, etc.) Regulations 2018. If information is secret, has commercial value because it is secret and you’ve taken reasonable steps to keep it secret, courts can protect it. An NDA helps prove those “reasonable steps.”

Data Protection (UK GDPR And Data Protection Act 2018)

If your confidential information includes personal data, you must comply with UK GDPR and the DPA 2018. Limit the personal data you share, state a lawful basis for processing, and ensure appropriate processing clauses if the recipient is a processor. Keep the NDA consistent with your internal policies, and use a separate Data Processing Agreement if needed. Your public‑facing Privacy Policy should also reflect how you handle personal data.

Competition And Restraint Of Trade

Over‑broad non‑compete clauses can be struck down. Keep any restraint proportionate and targeted to legitimate interests (like protecting trade secrets during the evaluation period). When in doubt, favour confidentiality plus non‑solicitation over an aggressive non‑compete.

Employment And Contractor Context

NDAs are not a substitute for core contracts. If you’re sharing information with staff or freelancers, ensure your Employment Contract or Consulting Agreement includes strong confidentiality, IP ownership and post‑termination obligations. The NDA controls pre‑contract disclosures; your ongoing relationship should be covered elsewhere.

International Sharing

For overseas recipients, assess the governing law, enforceability and data transfer rules. Where you expect cross‑border sharing, use tailored wording and consider appropriate transfer safeguards or an international form aligned with your International NDA strategy.

Practical Steps To Put A Unilateral NDA In Place

Here’s a simple, low‑friction process you can follow without slowing down your commercial momentum.

Step 1: Map What You’ll Share And Why

• List the categories of information (drawings, bill of materials, financials, datasets, source code, customer lists).
• Define the evaluation Purpose narrowly (e.g., “preparing a costed proposal to supply 5,000 units of Product X”).

Step 2: Pick The Right Form (Unilateral Or Mutual)

• If you’re doing most of the sharing, start with a unilateral form.
• If you anticipate two‑way disclosure, prepare a mutual version in your back pocket to speed up negotiations.

Step 3: Tailor The Key Clauses

• Update definitions and Purpose to match the deal.
• Check security, permitted disclosures and return/destruction language against your operational reality.
• Decide whether to sign as a deed or agreement.

If you want a quick professional pass before you hit send, a short Contract Review can de‑risk common pitfalls without delaying the deal.

Step 4: Set Up Signatures And Stakeholders

• Confirm the correct legal entity names and registered addresses.
• Ensure the signatory has authority to bind their organisation.
• Use e‑signing for speed and a clear audit trail.

Step 5: Control The Flow

• Label shared materials “Confidential” where feasible.
• Share on a need‑to‑know basis and keep a list of what you’ve disclosed.
• Avoid giving full dataset exports unless necessary; consider a sandbox or redacted sample.

Step 6: Exit Cleanly

• When talks end, trigger return/destruction and request written confirmation.
• Archive countersigned NDAs and any confirmations for your records.

Common Mistakes UK SMEs Make With NDAs (And How To Avoid Them)

• Using a vague Purpose. A fuzzy Purpose invites creative misuse. Keep it specific to the evaluation you’re actually doing.
• Forgetting advisers and subcontractors. If you don’t bind the recipient’s “Related Persons”, your secrets can leak via third parties. Close the loop with clear permitted disclosure conditions.
• Over‑promising on security. Don’t mandate standards you can’t meet yourself - align obligations with realistic, “reasonable” measures for your industry.
• Bundling aggressive restraints. A heavy non‑compete can derail a quick sign‑off and may be unenforceable. Focus on confidentiality, non‑use and non‑solicit first.
• Not addressing personal data. If any personal data is involved, align with UK GDPR and keep the share to the minimum necessary.
• Leaving IP ownership unclear. State that no licence is granted by disclosure and handle any transfers via a future IP Assignment.
• Skipping execution formalities. If you opt for a deed, follow the correct signing process (especially for companies) to avoid enforceability issues.
• Using a one‑size‑fits‑all template. Every deal is different. If a counterpart pushes back, get targeted Clause Drafting help so you don’t compromise core protections.
• Assuming an NDA fixes culture or process. Contracts help, but you still need internal policies and training. If confidentiality is breached inside your business, you’ll want robust processes to respond and remediate.

If you do face a suspected leak, act quickly. Preserve evidence, limit further disclosure, and take advice - our guide to handling Confidentiality Breaches sets out practical first steps.

FAQs About Unilateral NDAs (For Busy Founders)

Is a unilateral NDA enforceable in the UK?

Yes - properly drafted NDAs are routinely enforced by UK courts, especially where information qualifies as a trade secret or confidential. Courts look at the wording, whether the information was truly confidential and the steps taken to keep it secret.

Can I just send my counterpart’s NDA?

You can, but it will be drafted to protect them, not you. If you must use their form, negotiate the Purpose, exclusions, permitted disclosures, return/destruction and remedies. A quick Contract Review can catch common traps.

How long should confidentiality last?

It depends on the information. Three to five years is common for commercial discussions. For trade secrets (like formulas or source code), confidentiality should last as long as the information remains a trade secret.

Do I need an NDA with employees or freelancers?

Yes - NDAs are helpful for pre‑hire chats, but once engaged, rely on strong confidentiality and IP terms in your Employment Contract or Consulting Agreement for ongoing protection.

Is an NDA enough to protect my brand or product?

It’s a start, but NDAs don’t replace IP rights. Consider formal brand protection with a Trade Mark, and use proper licences or assignments for IP created during a project.

Key Takeaways

• A unilateral NDA is the right tool when your business is the primary discloser - it protects your confidential information and restricts use to a defined Purpose.
• Draft the NDA carefully: clear definitions, tight Purpose, realistic security, thoughtful exclusions, return/destruction, remedies and sensible terms for trade secrets.
• Keep UK law in view: UK GDPR/DPA 2018 for personal data, the Trade Secrets Regulations for secrecy, and restraint‑of‑trade limits for any non‑solicit/non‑compete wording.
• Use NDAs alongside core contracts: rely on Employment or Consulting agreements for ongoing relationships, and separate documents for IP assignments and data processing.
• Don’t let paperwork stall your deal: prepare an editable unilateral form, have a mutual version ready if needed, and use e‑signing with correct execution formalities.
• If a counterpart insists on their template, protect your position with a targeted Contract Review or bespoke Clause Drafting so you don’t concede key protections.

If you’d like help preparing a clear, enforceable unilateral NDA or reviewing a template you’ve been sent, you can reach us at 08081347754 or team@sprintlaw.co.uk for a free, no‑obligations chat.