Site icon Siskinds Law Firm

Keep your ‘Secret Sauce’ secret: protecting confidential information in commercial relationships and transactions

When businesses negotiate potential transactions or contracts, or discuss opportunities to collaborate on a project or venture, it is likely that one or more of the parties will be sharing information that is non-public and confidential in nature.1 Maybe your business doesn’t have a ‘secret sauce’, but you may wish to protect the confidentiality of other information, such as customer or supplier lists, financial results, pricing information, employee information, code of internal software, and so on. With all the moving parts and challenges that can be involved in these discussions, the protection of confidential information may not always attract the appropriate level of attention.

If confidential information will be shared between the parties, they should consider first signing an agreement governing the treatment of such confidential information. This type of agreement is usually called a “non-disclosure agreement” or “confidentiality agreement”, and for the purposes of this article will be referred to as an “NDA” 2

What does an NDA do?

Confidentiality clauses are often included directly within commercial agreements. However, where there is a process of discussion, disclosure, and preparation to arrive at the signing of such definitive commercial agreement, an NDA should be used at the outset to protect and to clarify the obligations in respect of confidential information disclosed throughout that process. In other cases, businesses who wish to collaborate with one another on an ongoing basis (whether or not they will enter into any further contracts) may wish to have an NDA in place to protect their discussions and disclosures as they occur from time to time.

The foundation of any NDA is the definition of what will be considered “confidential information” for the purposes of the NDA. The definition is critically important, as failure to ensure that it covers all sensitive information that a party expects to disclose could result in some sensitive information not receiving confidential treatment under the NDA. While the exact language will defer from one NDA to another, the definition of confidential information will generally involve a description of information that is non-public, proprietary or confidential in nature. However, an NDA will often make other clarifications or additions to the definition of confidential information. For example, it may:

  1. specify that information disclosed to the recipient will be considered confidential information regardless of its form (paper or electronic) or method of transmission (delivery of paper, email, virtual data room, etc.);
  2. deem confidential information to include all notes, memos, reports, data and analyses (among other things) of the recipient that contain or reflect confidential information; and/or
  3. include as confidential the fact that parties are discussing a potential transaction or project, the terms or existence of the NDA itself, or the fact that the discloser has made confidential information available to the recipient.

There are also several common exclusions from the definition of confidential information for information that is already public or that is otherwise developed or received by the recipient (such that it should not attract confidential treatment under the NDA), including:

  1. information that is already in the possession of the recipient at the time of disclosure;
  2. information that is generally available to the public or industry participants;
  3. information that becomes available to the recipient on a non-confidential basis from a source other than the discloser; and
  4. information that has been independently acquired or developed by the recipient (or its representatives) without violating the NDA.

These inclusions and exclusions from the definition help to achieve a balance between (i) protecting the discloser’s non-public information that should reasonably attract confidential treatment, and (ii) avoiding the overreach of capturing information in respect of which the discloser should not be entitled to restrict the recipient’s usage.

The other critical component of an NDA is how it sets out what the recipient is permitted to do, and what it cannot do, with the confidential information. Often, an NDA will include a description of the prospective transaction, contract or venture the parties are discussing (the “Project”), and will authorize the recipient to use the confidential information solely in connection with the Project. While an NDA will generally prohibit disclosure of confidential information to third parties, there will usually be some exceptions. For example, an NDA may include an exception to allow the recipient to share information with its representatives (such as financial or legal advisors) who are assisting the recipient with the Project. In addition, to avoid the recipient’s breach of the NDA for disclosures of confidential information to a government, legal or regulatory authority as required by law, ruling, court order, statute, regulation or regulatory process (or similar), an NDA should expressly contemplate and permit such disclosures.

A closer look at some common NDA terms

Not all NDAs are created equal. An NDA that is appropriate for one context, such as the negotiation of a highly specialized services contract, may not be appropriate for other situations, such as discussions surrounding the proposed sale of a business. Further, a straightforward, “boilerplate” NDA may be fine in some simpler circumstances, but there will often be factors specific to the discloser, recipient, confidential information, or Project that will require special attention in the NDA.

While not an exhaustive checklist of NDA considerations, the following are some issues that you may want to consider when entering into an NDA:

As mentioned above, this is only a sampling of NDA-related issues. If you have any questions about NDAs or the protection of your business’ sensitive information, please don’t hesitate to contact the author at brendan.clouthier@siskinds.com.


1 In this article, a party disclosing confidential information is referred to as the “discloser” and a party receiving confidential information is referred to as a “recipient”.

2 There is no magic in the name, with both referring to a contract which is intended to identify certain information as confidential and impose restrictions on the use and disclosure of such information.

Exit mobile version