How to Write an NDA (Or Skip the Drafting Entirely)

To write an NDA, you need seven sections: (1) identification of the parties, (2) definition of confidential information, (3) obligations of the receiving party, (4) exclusions from confidentiality, (5) term and duration, (6) remedies for breach, and (7) boilerplate clauses including governing law and signatures. For most standard business relationships, a pre-drafted template is faster and safer than writing from scratch.

If you have ever entered a business negotiation, hired a contractor, or explored a potential partnership, you have almost certainly encountered a non-disclosure agreement. NDAs establish clear boundaries around confidential information and give both parties legal recourse if those boundaries are crossed.

But writing one from scratch is not as simple as filling in a few blanks. A poorly drafted NDA can leave gaps that make it difficult to enforce, while an overly broad one can scare off the other party before the conversation starts. In this guide, we walk through every section a well-constructed NDA needs and show you why most businesses are better off using a standardized template instead of drafting from zero.

Do You Actually Need to Write an NDA From Scratch?

Before you open a blank document and start typing, it is worth asking whether you need to write a custom NDA at all. For the vast majority of standard business relationships — sales conversations, freelancer engagements, partnership discussions, vendor evaluations — a well-drafted template covers everything you need.

Standardized NDA tools like ReadyNDA's NDA generator are built on language that has been reviewed, refined, and used across thousands of transactions. They include all the essential sections, use clear and widely accepted terms, and can be signed online in minutes. For most professionals, this is the faster, cheaper, and arguably safer route.

Custom NDAs make more sense in high-stakes situations — mergers and acquisitions, heavily regulated industries like healthcare or defense, or deals involving extraordinarily sensitive intellectual property. But these cases are the exception. If your goal is to protect a standard business conversation, a proven template will serve you well.

Key Sections Every NDA Needs

Whether you are drafting an NDA yourself or evaluating a template, you need to understand what each section does and why it matters. A complete NDA typically includes seven core components.

1. Identify the Parties

Every NDA begins by clearly identifying who is bound by the agreement. Use the full legal names of the individuals or entities involved — not nicknames or abbreviations. For a company, include the legal entity name and jurisdiction of incorporation.

For a mutual NDA template, both parties are simultaneously the disclosing party and the receiving party — the most common structure in B2B relationships. In a unilateral NDA, only one party discloses and the other receives. Getting this distinction right from the start sets the tone for the entire agreement.

2. Define Confidential Information

This is the most important section of any NDA, and the one that causes the most problems when it is poorly written. The definition of confidential information determines what is actually protected by the agreement. If the definition is too narrow, important information may fall outside its scope. If it is too broad, the agreement may be unenforceable or may discourage the other party from signing.

A good definition typically includes categories such as:

• Business plans, strategies, and financial data
• Customer and prospect lists
• Trade secrets, proprietary formulas, and manufacturing processes
• Technical specifications, source code, and product roadmaps
• Marketing strategies and pricing models
• Any other information marked or identified as confidential

The best approach is to combine a broad general definition with specific examples. This gives you flexibility to cover unanticipated information while making it clear to a court what the parties intended to protect.

3. State the Obligations

Once you have defined what is confidential, you need to spell out what the receiving party must do to protect that information — and what they must not do with it. Typical obligations include:

• Using the confidential information only for the stated purpose of the business relationship
• Restricting access to employees or agents who have a legitimate need to know
• Not disclosing the information to any third party without prior written consent
• Applying at least the same degree of care used to protect their own confidential information
• Returning or destroying all confidential materials upon request or at the end of the relationship

Clarity here is essential. Vague obligation language is one of the most common reasons NDAs fail in court.

4. List the Exclusions

No NDA protects everything. Standard exclusions carve out categories of information that the receiving party should not be held responsible for protecting, even if they technically fall within the definition of confidential information. These exclusions are widely accepted and expected in any well-drafted NDA:

• Publicly available information — if the information is already in the public domain (or becomes public through no fault of the receiving party), it is not considered confidential.
• Independently developed information — if the receiving party can prove they developed the same information on their own, without using the disclosing party's materials, the NDA does not apply.
• Information received from a third party — if the receiving party obtained the information from someone else who was not bound by a confidentiality obligation, it falls outside the NDA.
• Legally compelled disclosure — if a court or government agency orders the receiving party to disclose the information, the NDA generally cannot prevent that, though the receiving party is usually required to give notice first.

Omitting these exclusions can make an NDA look unreasonable and may affect its enforceability.

5. Set the Term

The term of an NDA defines how long the overall agreement is in effect and how long the confidentiality obligations survive after it ends. These are not always the same.

Most business NDAs last one to five years. A short-term sales conversation might only need a one-year NDA, while a technology partnership could require three to five years. Some NDAs use a perpetual term for trade secrets, meaning the obligation never expires.

Too short a term, and the information may lose its protection while it still has competitive value. Too long, and the other party may push back or refuse to sign. For a deeper look at NDA duration and how to choose the right timeframe, see our guide on how long does an NDA last.

6. Specify Remedies

The remedies section describes what happens if someone breaches the agreement. This is the enforcement mechanism of the NDA, and it needs to be credible enough to deter violations while remaining reasonable enough to hold up in court.

Common remedies include:

• Injunctive relief — a court order requiring the breaching party to immediately stop disclosing or using the confidential information. NDAs often include language acknowledging that monetary damages alone may be insufficient, which makes it easier to obtain an injunction.
• Monetary damages — compensation for actual losses suffered as a result of the breach, including lost profits, consequential damages, and in some cases attorney fees.
• Liquidated damages — a predetermined amount that the breaching party agrees to pay, which eliminates the need to prove actual harm in court.

For a detailed breakdown of breach consequences and how courts handle NDA violations, read our article on what happens if you break an NDA.

7. Include Boilerplate Clauses

Every well-drafted NDA includes a set of standard legal provisions that govern how the agreement itself operates. These are sometimes called boilerplate clauses, but they are anything but optional:

• Governing law — specifies which state or jurisdiction's laws will apply if a dispute arises.
• Entire agreement — confirms that the NDA represents the complete understanding between the parties and supersedes any prior discussions or agreements on the same subject.
• Amendment — states that the NDA can only be modified through a written agreement signed by both parties.
• Severability — ensures that if one provision of the NDA is found to be unenforceable, the remaining provisions stay in effect.
• Signature block — provides space for both parties to sign and date the agreement, making it legally binding.

These clauses prevent common disputes about interpretation, modification, and enforcement.

The Easier Alternative: Use a Standardized NDA

Writing an NDA from scratch takes time, attention to detail, and often a review by legal counsel — all of which cost money. For a complex transaction or a heavily regulated industry, that investment makes sense. But for the everyday business conversations that most professionals need to protect, drafting a custom agreement is overkill.

A standardized NDA template gives you all seven sections described above in a clear, concise format that both parties can review and sign quickly. There is no ambiguity, no back-and-forth over wording, and no expensive legal review. The terms are balanced, widely recognized, and designed to be enforceable across jurisdictions.

ReadyNDA takes this a step further. Instead of downloading a static template, ReadyNDA lets you generate a complete mutual NDA online, send it for signature, and get it fully executed — all in minutes. Every agreement covers the parties, confidential information, obligations, exclusions, term, remedies, and boilerplate provisions.

If your situation truly requires a custom NDA — navigating an acquisition, licensing sensitive technology, or working within a regulated industry — work with an attorney. But if you just need to protect a conversation and get on with business, a standardized approach saves you time, money, and unnecessary complexity.