Employee NDA: What Employers Need to Know

Why employers use NDAs

Employees have access to some of a company's most sensitive information: trade secrets, customer lists, financial data, product roadmaps, internal processes, and strategic plans. An employee NDA establishes clear legal boundaries around this information and creates enforceable obligations that survive the employment relationship.

Without an NDA, an employee who leaves for a competitor takes all of the institutional knowledge they acquired — and the employer has limited legal recourse unless the information qualifies as a trade secret under applicable state law. An NDA provides broader protection and clearer enforcement mechanisms.

Employee NDAs also serve an important cultural function. They signal that the company takes confidentiality seriously and that all employees are expected to protect sensitive information. This creates awareness and accountability at every level of the organization.

When to have employees sign

The best time to have an employee sign an NDA is at the beginning of the employment relationship, ideally as part of the offer letter and onboarding process. Signing before the employee's first day ensures that the NDA is in place before the employee accesses any confidential systems or information.

For new hires, the employment relationship itself typically provides sufficient consideration (legal value) for the NDA. The employee receives a job and compensation; in return, they agree to protect the company's confidential information.

For existing employees who did not sign an NDA at hiring, the situation is more complex. Some states require additional consideration beyond continued employment — such as a raise, bonus, promotion, or stock option grant — to make the NDA enforceable. Consult with a legal advisor about your state's requirements before asking existing employees to sign.

You should also have a process for updating NDAs when employees change roles. An employee promoted to a position with access to more sensitive information should sign an updated NDA that covers the expanded scope of confidential information they will access.

Essential clauses

Employee NDAs should include several key provisions tailored to the employment context.

Definition of confidential information should be specific to your business: source code, algorithms, customer data, pricing strategies, vendor relationships, financial projections, internal communications, training materials, and any other information the employee will access that is not publicly available.

Employee obligations should include maintaining confidentiality during and after employment, using confidential information only for company business purposes, not copying or removing confidential information from company systems without authorization, reporting any suspected breaches promptly, and following company information security policies.

Return-of-materials clause: Upon termination or resignation, the employee must return all company materials including documents, electronic files, devices, and access credentials. They must also delete any company information stored on personal devices.

Survival clause: The confidentiality obligations should survive the end of employment for a specified period, typically two to five years. For trade secrets, the obligations should survive as long as the information remains a trade secret.

No license: The NDA should clarify that the employee does not acquire any ownership rights to the company's intellectual property or confidential information through their employment.

Consideration requirements

For an NDA (like any contract) to be enforceable, both parties must receive consideration — something of value. The consideration requirements for employee NDAs vary by state.

For new employees, the employment itself — including salary, benefits, and access to company resources — is generally sufficient consideration in all states.

For existing employees, the rules differ. Some states accept continued employment as adequate consideration, meaning the employer can require existing employees to sign NDAs as a condition of continued employment. Other states, including Texas, Illinois, and Oregon, may require independent consideration beyond continued at-will employment.

Independent consideration for existing employees can include monetary bonuses, salary increases, stock options, promotions, access to new training or opportunities, or other tangible benefits that the employee would not otherwise receive.

If you are unsure about your state's requirements, err on the side of providing additional consideration. A small bonus or other benefit is a minor cost compared to the risk of having the NDA declared unenforceable.

Post-employment obligations

Post-employment confidentiality obligations are among the most important aspects of an employee NDA. After leaving, former employees may join competitors, start competing businesses, or consult for companies in the same industry.

A well-drafted employee NDA should clearly state which obligations continue after employment ends, how long post-employment obligations last, what the former employee can and cannot do with knowledge acquired during employment, and the consequences of post-employment breaches.

It is important to distinguish between confidential information and general knowledge or skills. An employee NDA cannot prevent a former employee from using general knowledge, skills, and experience acquired during employment. It can prevent them from using or disclosing specific confidential information such as customer lists, trade secrets, or proprietary processes.

Courts scrutinize post-employment restrictions more carefully than restrictions during employment. Ensure that your post-employment provisions are reasonable in scope and duration. A two-to-three-year post-employment confidentiality period is generally reasonable; longer periods should be reserved for trade secrets.

State-specific rules

Several states have enacted specific laws governing employee NDAs that employers must follow.

California: While NDAs are enforceable, California strongly disfavors non-compete agreements and has enacted laws prohibiting employers from using NDAs to conceal workplace harassment or discrimination. California also requires that employee NDAs have reasonable scope and duration.

Washington: Enacted the Silenced No More Act, which restricts the use of NDAs in employment agreements related to workplace conduct. Employers must be careful about what topics NDAs cover.

New York: Has considered legislation limiting the scope of employee NDAs, particularly regarding workplace safety and harassment. Employers should stay current with evolving requirements.

Federal: The Speak Out Act of 2022 limits the enforceability of pre-dispute NDAs covering sexual assault and harassment. The Defend Trade Secrets Act provides a federal cause of action for trade secret misappropriation but also requires that NDAs include a whistleblower immunity notice informing employees of their right to disclose trade secrets to government officials or in court filings.

To ensure compliance, include a whistleblower immunity notice in every employee NDA. This notice, required by the DTSA, informs employees that they may disclose trade secrets in confidence to government officials or attorneys for purposes of reporting or investigating potential legal violations.

Enforcement best practices

Having a signed NDA is only half the equation. Employers must also demonstrate that they take confidentiality seriously through their actions.

Train employees on confidentiality obligations during onboarding and periodically thereafter. Make sure every employee understands what information is confidential and how to handle it.

Implement and enforce information security policies. Use access controls to limit who can access sensitive information. Monitor for unauthorized access or exfiltration. Have clear procedures for offboarding departing employees.

Act promptly when you discover a potential breach. Delay in enforcement can weaken your legal position and may be interpreted by courts as evidence that the information was not truly confidential.

Document everything. Maintain records of what confidential information each employee accessed, when NDAs were signed, and what steps were taken to maintain confidentiality. This documentation is essential if you ever need to enforce the NDA in court.

Conduct exit interviews that include a review of confidentiality obligations. Remind departing employees of their ongoing obligations under the NDA and collect all company materials and credentials.