Atornee
Get Started Free
Review My NDA

Lawyer reviewed templates

non-disclosure agreement review checklist uk

NDA Review Checklist: What to Check Before You Sign

A non-disclosure agreement review checklist for UK businesses helps you catch the clauses that cause real problems before you sign anything. NDAs look straightforward on the surface — a few pages, some definitions, a confidentiality obligation. But the details matter. An overly broad definition of confidential information can tie your hands for years. A missing carve-out for publicly available information can expose you to claims you never anticipated. A one-sided mutual NDA that isn't actually mutual can leave your business unprotected. This page gives you a practical checklist to work through before signing any NDA in the UK. It covers the must-have clauses, the red flags to watch for, and the situations where you should stop and get a solicitor involved. Whether you're sharing information with a potential investor, a supplier, or a new hire, the same core principles apply. Use this as your starting point — not a substitute for legal advice when the stakes are high.

Review My NDA
Instant Access
Lawyer Reviewed

Why this matters

Most UK founders sign NDAs without reading them properly. You're in a meeting, someone slides a document across the table, and saying no feels awkward. So you sign. The problem is that NDAs are not all the same. Some are balanced and reasonable. Others are drafted entirely in the other party's favour — with definitions so wide they cover things you never intended to keep secret, durations that run for a decade, and no carve-outs for information you already knew. By the time a dispute arises, it's too late to renegotiate. This checklist exists so you know what you're agreeing to before you commit.

The Atornee approach

Atornee lets you upload your NDA and get a structured review in minutes — not days. Instead of paying a solicitor £200–£400 to read a two-page document, you get a clause-by-clause breakdown that flags what's missing, what's risky, and what's standard. You can ask follow-up questions in plain English and get answers grounded in UK contract law. Atornee doesn't replace a solicitor for high-stakes deals, but for the majority of NDAs UK businesses encounter day to day, it gives you the information you need to make a confident decision — or know when to escalate.

What you get

A clear breakdown of every key clause in your NDA, including what it means in practice for your business
Automatic flagging of red flags — one-sided obligations, missing carve-outs, unreasonable durations, and vague definitions
Plain-English explanations of confidentiality scope, permitted disclosures, and remedies clauses
Guidance on whether the NDA is mutual or unilateral and what that means for your position
A clear steer on whether this is something you can sign as-is, negotiate, or should take to a solicitor

Before you sign checklist

1
1. Identify whether the NDA is mutual or unilateral — mutual means both parties are bound, unilateral means only one of you is
2
2. Check the definition of confidential information — if it's too broad or undefined, push back before signing
3
3. Look for standard carve-outs: information already in the public domain, information you already knew, and information you receive independently from a third party
4
4. Check the duration — anything over five years for a standard commercial NDA is worth questioning
5
5. Confirm what happens to confidential information after the agreement ends — return, destruction, or ongoing obligation
6
6. Check whether the NDA restricts you from working with competitors or soliciting staff — these are non-compete clauses in disguise
7
7. If the NDA covers personal data, check it aligns with your UK GDPR obligations before signing

FAQ

What should I look for when reviewing an NDA in the UK?

Start with the definition of confidential information — it should be specific, not a catch-all. Then check whether the NDA is mutual or one-sided, what the duration is, whether there are standard carve-outs for public information, and what obligations apply after the agreement ends. Also check for any clauses that restrict your ability to work with others — these sometimes appear in NDAs but go well beyond confidentiality.

What are the red flags in a UK non-disclosure agreement?

Key red flags include: an extremely broad definition of confidential information with no carve-outs, a duration of ten years or more with no justification, obligations that survive indefinitely after termination, no clarity on what happens to confidential information when the agreement ends, and clauses that restrict competition or hiring — which belong in a separate agreement and should be reviewed carefully under UK law.

Do I need a solicitor to review an NDA in the UK?

Not always. For a standard commercial NDA with a supplier, partner, or potential investor, a structured AI-assisted review can give you what you need to make an informed decision. You should involve a solicitor if the NDA is part of a significant transaction, if it contains unusual restrictions, if it covers sensitive IP or trade secrets, or if you're unsure about any clause and the stakes are high.

Is an NDA legally binding in the UK?

Yes, provided it meets the basic requirements of a valid contract under English law — offer, acceptance, consideration, and intention to create legal relations. Most commercial NDAs satisfy these requirements. However, certain clauses may be unenforceable if they are unreasonably wide — for example, a non-compete clause buried in an NDA may not hold up if it goes beyond what is reasonably necessary to protect legitimate business interests.

How long should an NDA last in the UK?

There is no fixed rule, but one to five years is typical for most commercial NDAs. Longer durations are sometimes justified for genuinely sensitive trade secrets, but anything open-ended or exceeding ten years should be questioned. Courts in England and Wales are more likely to enforce time-limited obligations than indefinite ones, so a reasonable duration actually strengthens the agreement.

Can an NDA cover personal data under UK GDPR?

An NDA can include confidentiality obligations around personal data, but it does not replace your UK GDPR compliance obligations. If you are sharing personal data under an NDA, you still need a lawful basis for processing, and depending on the arrangement, you may also need a data processing agreement. The ICO provides guidance on this — it is worth checking before you sign any NDA that involves personal data.

Related Atornee Guides

Cheap Solicitor for NDA (UK)

Useful if you want to understand your options for getting NDA support without full solicitor fees.

Cheap Contract Solicitor Alternative (UK)

Broader context on managing contract review costs as a UK small business.

Atornee Use Cases

See how other UK founders and teams use Atornee to review documents across different business scenarios.

External References

GOV.UK Business and Self-employed

Official UK government guidance on business operations and legal obligations.

UK Legislation

Primary statutory reference for UK contract law, including relevant Acts governing enforceability.

ICO Guidance for Organisations

UK data protection authority guidance — essential if your NDA involves personal data or data sharing obligations.

Trust & Verification Policy

Authored By

A

Atornee Editorial Team

UK Contract Research

Reviewed By

C

Compliance Review Desk

UK Business Legal Content QA

Last reviewed on 3/4/2026

"This content is based on analysis of common NDA structures used in UK commercial practice and the clause patterns most frequently flagged during document reviews on the Atornee platform. It reflects practical patterns seen across supplier, investor, and employment-related NDAs in the UK market."

References & Sources