What Is an NDA and Why Agencies Need One
A non-disclosure agreement (NDA) — also called a confidentiality agreement — is a legally binding contract between two or more parties that restricts the sharing of specified information with outside parties. In plain language: what we discuss stays between us.
For agencies, NDAs matter more than most people realise. The moment a prospective client starts your discovery call, sensitive information starts flowing. Their budget. Their current agency's weaknesses. Their Q4 product launch they haven't announced. Their internal team structure and politics. None of that should end up in a competitor's inbox, and the client is right to worry about it.
But NDAs protect your agency too. Your pricing methodology, your strategic frameworks, your proposal templates, your proprietary processes — if a client demands you share all of that in a pitch, you want something in writing that stops them from handing your playbook to their in-house team or next agency.
Common Situations Where Agencies Use NDAs
- →Pre-proposal discovery: Client shares competitive strategy, financial data, or unreleased product plans before you've even won the work.
- →Pitch process: You share proprietary pricing tiers, campaign methodologies, or creative approaches as part of your pitch.
- →Ongoing project work: You have access to their customer data, CRM systems, analytics, internal dashboards, or unreleased creative assets.
- →Subcontractor relationships: You bring in a freelancer, white-label partner, or specialist who will see client-confidential work.
- →Strategic partnerships: Two agencies exploring a joint pitch or referral relationship share sensitive business information.
The NDA isn't a sign of distrust — it's a sign of professionalism. Clients who take their business seriously will expect one. And if they push back hard on signing a reasonable NDA, that tells you something worth knowing before you invest in the relationship.
Once you have the NDA sorted, the rest of the commercial relationship follows. You'll also want a retainer agreement for ongoing clients and a statement of work for project-based engagements. The NDA is the first document in that stack.
One-Way vs Mutual NDAs: Which Does Your Agency Need?
The single most important structural decision in an NDA is the direction of protection. There are two types:
One-Way (Unilateral) NDA
Only one party's confidential information is protected.
USE WHEN:
- → Client shares their strategy with you during discovery
- → You're given access to their internal data or systems
- → The client is the primary disclosing party
- → Simple contractor / vendor relationship
Mutual (Bilateral) NDA
Both parties' confidential information is protected.
USE WHEN:
- → You share proprietary pricing, frameworks, or processes
- → Prospective partnership or white-label arrangement
- → Joint venture or co-pitch scenario
- → Both parties are exchanging sensitive business info
In practice, most agency-client NDAs should be mutual. You're not just a passive receiver of their secrets. During a pitch, you're sharing your methodology, your team structure, your rates, and sometimes your existing client strategies (anonymised). That deserves protection too.
Some large enterprise clients will push a one-way NDA as standard. That's fine if the terms are reasonable — but push back if they want to protect their information while freely using everything you share in the pitch. A quick redline asking for mutual protection is entirely professional.
The sample template below is written as a mutual NDA — you can easily convert it to one-way by changing the defined roles from “either party may disclose” to “Client as Disclosing Party, Agency as Receiving Party.”
Key Clauses Explained
Most NDA disputes come down to one of four clauses being poorly drafted. Here's what each one means and what to watch for.
1. Definition of Confidential Information
This is the most critical clause. It defines what information is actually protected. Vague definitions cause two problems: either so much is covered that normal business conversation becomes risky, or so little is covered that the NDA is essentially useless.
What to include
- • Business plans, strategies, and financial data
- • Pricing, margins, and cost structures
- • Customer and prospect lists
- • Marketing campaigns and creative briefs
- • Technical specifications, source code, and proprietary systems
- • Personnel information and org structure
- • Any information marked “Confidential” in writing
Common pitfalls
- • Requiring everything to be marked “Confidential” in writing — burdensome and often leads to verbal disclosures falling outside the NDA
- • Definitions so broad they capture publicly available information
- • No carve-out for information the receiving party already knew independently
2. Exclusions from Confidentiality
Every NDA needs clear carve-outs — information that is not subject to confidentiality obligations even if it fits the definition above. Standard exclusions protect legitimate information flows.
Standard Exclusions
3. Duration
How long does the NDA last? Two sub-questions apply here: (a) how long do the parties have to disclose information under the NDA, and (b) how long must disclosed information be kept confidential after that?
Avoid NDAs with no end date for general confidential information. Courts in many jurisdictions are skeptical of perpetual obligations for ordinary business information. Perpetual protection makes sense only for genuine trade secrets.
4. Remedies for Breach
What happens if someone breaches the NDA? A well-drafted remedies clause does two things: (a) it explicitly acknowledges that monetary damages alone may be insufficient (justifying injunctive relief), and (b) it may specify liquidated damages — a pre-agreed dollar amount per breach.
⚠️ Agency Tip
Include an acknowledgement that “a breach would cause irreparable harm for which monetary damages would be an inadequate remedy.” This language is what allows you to get an emergency injunction — a court order stopping the disclosure immediately — rather than having to wait years for a damages trial.
5. Permitted Disclosures
You need to share client information with your team to do the work. The NDA should explicitly permit disclosure to employees, contractors, and subcontractors on a need-to-know basis — provided they are bound by equivalent confidentiality obligations.
This clause is crucial for agencies. If you bring in a freelance copywriter or a white-label development partner, you need to be covered. If your NDA is silent on subcontractors, you may be in technical breach simply by working normally.
Sample Agency NDA Template (Annotated)
Below is a full mutual NDA template adapted for agency-client use. Annotations in teal explain each section so you understand what you're signing. Replace all [BRACKETED FIELDS] with your specific details.
MUTUAL NON-DISCLOSURE AGREEMENT
This Agreement is entered into as of [DATE] (“Effective Date”)
BETWEEN:
[AGENCY NAME], a [entity type] with its principal place of business at [ADDRESS] (“Agency”)
AND
[CLIENT COMPANY NAME], a [entity type] with its principal place of business at [ADDRESS] (“Client”)
(each individually a “Party” and collectively the “Parties”)
1. PURPOSE
The Parties wish to explore a potential business relationship concerning [BRIEF DESCRIPTION OF PURPOSE, e.g., “the provision of marketing services”] (the “Purpose”). In connection with this Purpose, each Party may disclose certain confidential information to the other Party.
2. DEFINITION OF CONFIDENTIAL INFORMATION
“Confidential Information” means any information disclosed by one Party (“Disclosing Party”) to the other Party (“Receiving Party”), whether orally, in writing, electronically, or by any other means, that is designated as confidential or that reasonably should be understood to be confidential given the nature of the information and the circumstances of disclosure. Confidential Information includes, without limitation:
- Business plans, strategies, forecasts, and financial information;
- Customer and prospect data, lists, and relationships;
- Proprietary methods, processes, and frameworks;
- Pricing structures, fee schedules, and cost information;
- Marketing campaigns, creative briefs, and unreleased content;
- Technical systems, software, and source code;
- Personnel information and organisational structure;
- Any third-party information the Disclosing Party is obligated to keep confidential.
3. EXCLUSIONS FROM CONFIDENTIAL INFORMATION
The obligations of this Agreement do not apply to information that the Receiving Party can demonstrate:
(a) Is or becomes generally available to the public other than through breach of this Agreement;
(b) Was known to the Receiving Party prior to disclosure, as evidenced by contemporaneous written records;
(c) Is independently developed by the Receiving Party without use of or reference to the Disclosing Party's Confidential Information;
(d) Is received from a third party without breach of any obligation of confidentiality; or
(e) Is required to be disclosed by law, court order, or regulatory authority, provided the Receiving Party gives the Disclosing Party prompt written notice and cooperates with any effort to obtain a protective order.
4. OBLIGATIONS OF RECEIVING PARTY
Each Receiving Party shall:
(a) Hold all Confidential Information in strict confidence using at least the same degree of care it uses to protect its own confidential information, but no less than reasonable care;
(b) Not disclose Confidential Information to any third party without the prior written consent of the Disclosing Party, except as permitted under Section 5 below;
(c) Use the Confidential Information solely for the Purpose and not for any other purpose, including any competitive or commercial purpose adverse to the Disclosing Party;
(d) Promptly notify the Disclosing Party of any known or suspected unauthorised use or disclosure of Confidential Information.
5. PERMITTED DISCLOSURES
The Receiving Party may disclose Confidential Information to its employees, officers, contractors, subcontractors, and professional advisers (“Representatives”) who (a) have a need to know the information for the Purpose and (b) are bound by confidentiality obligations at least as protective as those in this Agreement. The Receiving Party shall remain liable for any breach of this Agreement by its Representatives.
6. TERM
This Agreement shall commence on the Effective Date and continue for a period of [TWO (2) / THREE (3)] years, unless earlier terminated by either Party upon thirty (30) days' written notice. The confidentiality obligations with respect to Confidential Information disclosed during the term shall survive termination of this Agreement and remain in effect for [TWO (2)] years following the date of disclosure of the relevant information.
7. RETURN OR DESTRUCTION OF INFORMATION
Upon written request by the Disclosing Party or upon termination of this Agreement, the Receiving Party shall promptly return or destroy all Confidential Information (including copies and notes) and certify in writing that it has done so, except to the extent retention is required by applicable law or regulation.
8. NO LICENCE
Nothing in this Agreement grants the Receiving Party any right, title, interest, or licence in or to the Disclosing Party's Confidential Information. All rights in the Confidential Information remain with the Disclosing Party.
9. REMEDIES
The Parties acknowledge that any breach or threatened breach of this Agreement would cause irreparable harm to the Disclosing Party for which monetary damages would be an inadequate remedy. Accordingly, the Disclosing Party shall be entitled to seek equitable relief, including injunction and specific performance, in addition to all other remedies available at law or in equity, without the requirement to post bond or prove actual damages.
10. GENERAL
(a) Governing Law. This Agreement shall be governed by and construed in accordance with the laws of [STATE / JURISDICTION], without regard to its conflict-of-law provisions.
(b) Entire Agreement. This Agreement constitutes the entire agreement between the Parties with respect to the subject matter hereof and supersedes all prior agreements, representations, and understandings.
(c) Amendments. No amendment to this Agreement shall be effective unless made in writing and signed by both Parties.
(d) Severability. If any provision of this Agreement is held to be unenforceable, the remaining provisions shall continue in full force and effect.
(e) Counterparts. This Agreement may be executed in counterparts, including electronically, each of which shall be deemed an original.
IN WITNESS WHEREOF, the Parties have executed this Agreement as of the Effective Date.
[AGENCY NAME]
Signature: ___________________
Name: ___________________
Title: ___________________
Date: ___________________
[CLIENT NAME]
Signature: ___________________
Name: ___________________
Title: ___________________
Date: ___________________
Where the NDA Fits in Your Agency's Sales Process
Most agencies treat NDAs as an afterthought — something they dig out of a folder when a client insists. The smarter approach is to position your NDA proactively as part of a professional, systematic sales process.
The Right Moment to Introduce the NDA
Best for: clients who need to share sensitive strategy before you can scope
Send with your pre-call questionnaire: “To make the most of our discovery call, I've attached a mutual NDA. It ensures anything sensitive you share stays confidential.”
Best for: most standard agency pitches
Send alongside your agency proposal before you share detailed pricing and methodology. Frame it as protecting both parties.
Best for: clients who didn't sign pre-proposal
Include the NDA in your onboarding documents before accessing any client systems, data, or sensitive briefs.
The pre-discovery NDA is increasingly common for high-value pitches. If a Fortune 500 prospect wants to share their 3-year growth strategy with you so you can build a comprehensive proposal, they'll expect an NDA before the call. Having one ready to send immediately signals operational maturity.
Building NDAs Into Your Standard Process
The agencies that get NDAs signed reliably don't treat them as a special request — they bake them into the standard flow:
- 1.Standardise your template. Keep one mutual NDA in a shared folder. Fill in names, dates, and jurisdiction. Don't create a new one from scratch each time.
- 2.Use e-signature. DocuSign, HelloSign, or even your proposal platform makes signing frictionless. A PDF attachment that requires printing is a dead end.
- 3.Set a deadline. “I'll hold this proposal for 7 days pending NDA signature” is reasonable and professional, not aggressive.
- 4.File it properly. NDAs that get lost are NDAs that can't be enforced. Use a CRM or file system where you can pull it up in seconds.
Once the NDA is in place, your full commercial documentation stack should follow. The NDA → then the proposal → then either a retainer agreement or a statement of work. Each document builds on the last.
For a complete picture of what to charge once you're past the legal stage, see our agency pricing guide.
Red Flags in Client NDAs
Enterprise clients often send their own NDA and expect you to sign without negotiation. Don't. Large company legal teams draft these agreements to protect the company — not you. Here are the clauses to flag before you sign.
🚩 Overbroad Definitions of Confidential Information
What it looks like: “Confidential Information means all information disclosed, in any form, for any reason.”
Why it matters: This can capture casual conversations, publicly available information, and even your own pre-existing knowledge. Push for standard exclusions (public domain, prior knowledge, independent development) to be explicitly included.
🚩 No Subcontractor Carve-Out
What it looks like: “Receiving Party shall not disclose Confidential Information to any third party under any circumstances.”
Why it matters: If you use any freelancers, contractors, or white-label partners, you're in technical breach before you've started work. Always negotiate a carve-out for Representatives on a need-to-know basis.
🚩 Perpetual Duration on General Information
What it looks like: “These obligations shall survive indefinitely.” or no duration clause at all.
Why it matters: Perpetual obligations on routine business information are unreasonable and potentially unenforceable. Propose a standard 2–3 year post-disclosure term for general confidential information, with perpetual protection reserved for genuine trade secrets.
🚩 One-Sided Without Mutual Protection
What it looks like: The NDA only protects the client's information, even though you're sharing proprietary pricing and methodology.
Why it matters: If you're sharing your pricing structures, campaign strategy, or proprietary frameworks in a pitch, those deserve protection too. A simple redline converting it to mutual is a standard negotiation ask.
🚩 Overly Broad Non-Compete or Non-Solicitation Provisions
What it looks like: “Agency shall not provide services to any competitor of Client in [INDUSTRY] for the duration of this agreement and two years thereafter.”
Why it matters: This can effectively kill your ability to work in your own vertical. Non-competes buried in NDAs are sneaky and often unenforceable, but litigating that costs money. If it's in there, either remove it or get it narrowed to a specific, named list of competitors.
🚩 Liquidated Damages Clauses With Unrealistic Penalties
What it looks like: “Any breach shall result in a penalty of $500,000 per incident.”
Why it matters: Liquidated damages that are grossly disproportionate to any realistic harm are a liability trap. If the number doesn't reflect actual potential harm, push back or remove it. Courts often void penalty clauses, but defending them is expensive.
A reasonable client won't object to you requesting a legal review before signing. Any client that pressures you to sign a one-sided NDA immediately without review is telling you something important about how they'll behave throughout the engagement.
Spotted red flags but still want the work? That's a business decision. Just go in with eyes open, document every verbal communication, and consider whether the deal is worth the contractual risk.
Free Tool: Website Audit
Audit any prospect's website and use the results as a cold outreach opener. Takes 30 seconds, no signup needed.
Frequently Asked Questions
Do agencies really need an NDA?
Yes, if clients are sharing business-sensitive information during the sales or project process. An NDA protects both parties and signals professionalism. It also prevents a client from later claiming you disclosed their strategy or pricing to a competitor. For agencies handling marketing strategies, financial data, or unreleased product information, an NDA is essential.
What is the difference between a one-way and mutual NDA?
A one-way (unilateral) NDA protects only one party's information — typically the client's. A mutual (bilateral) NDA protects both parties. For agencies sharing proprietary methodologies and pricing in pitches, mutual is usually the right choice. Most agency-client NDAs should be mutual.
How long should an agency NDA last?
Most agency NDAs run 2–3 years from the date of signing for general confidential information. Trade secrets can be protected indefinitely. Avoid NDAs with no end date for ordinary business information — courts in many jurisdictions consider perpetual obligations unenforceable for routine information.
When should I send the NDA — before or after the proposal?
Send the NDA before the discovery call if sensitive information will be exchanged, or alongside your agency proposal before sharing detailed pricing and strategy. Never bury it mid-project. Early NDAs signal professionalism and protect you from the discovery stage onward.
Can I use a free NDA template?
You can use a free template as a starting point, and many agencies do. For high-value engagements, trade secrets, or international clients, have a qualified attorney review and customise it for your jurisdiction. Templates cover the standard clauses but can't anticipate every scenario.
What happens if someone breaches an NDA?
The non-breaching party can seek injunctive relief, monetary damages for provable harm, and liquidated damages if specified in the NDA. The practical first step is usually a cease-and-desist letter. NDA breaches are expensive and slow to litigate — the agreement's main power is deterrence.
Is an NDA the same as a confidentiality agreement?
Yes. NDA (non-disclosure agreement) and confidentiality agreement are the same document referred to by different names. “NDA” is more common in business-to-business and agency-client relationships. The terms are fully interchangeable.