Mutual NDA
IN PLAIN ENGLISH

The single most important clause in the document. It describes what's actually protected — typically a broad category like "non-public information disclosed by one party to the other, in any form, that a reasonable person would understand to be confidential." Some NDAs require information to be marked "confidential" to qualify; others protect everything that's plausibly sensitive whether marked or not. Broader is better for the discloser, narrower is better for the recipient.

The standard four carve-outs say information is not confidential if it (1) was already known to the receiving party before disclosure, (2) is or becomes public through no fault of the receiving party, (3) is independently developed without reference to the disclosed information, or (4) is rightfully obtained from a third party without confidentiality obligations. These carve-outs are well-established and most NDAs include all four, though the burden of proof for "independently developed" or "already known" usually sits with the receiving party.

Limits what the receiving party can do with the information. Almost always restricted to a specific purpose — "evaluating a potential business relationship," "performing the services," "considering an investment." Use outside that purpose is a breach even if the information is never disclosed to anyone else. Worth checking that the stated purpose is broad enough to cover what you actually plan to do.

Carves out who the receiving party can share information with internally — typically employees, contractors, advisors, and affiliates with a need to know, provided they're bound by confidentiality obligations at least as strict as the NDA itself. Some agreements require the receiving party to be liable for any breach by these representatives, which effectively makes the receiving party the guarantor of its own people.

Lets the receiving party comply with a court order, subpoena, or regulatory request without breaching the NDA, usually on the condition that they notify the disclosing party first (where legally permitted) so the discloser has a chance to seek a protective order. Standard, and almost never negotiated.

Two separate ideas that get conflated. The "term" is how long either party can disclose new information under the agreement (often 1-2 years). The "duration of confidentiality obligation" is how long the receiving party has to keep already-disclosed information confidential, which can run anywhere from 2 years to indefinite. Trade secrets are often given separate treatment with obligations that last as long as the information remains a trade secret.

Says that when the relationship ends or on request, the receiving party has to return or destroy all confidential information, including copies. Modern versions usually allow electronic copies to remain in routine backups and let lawyers retain one archival copy. Hard to enforce in practice — the obligation matters more than the literal cleanup.

A clause that says the receiving party can use general knowledge, skills, and ideas retained in unaided memory by its employees, even if those employees were exposed to confidential information. Common in tech-industry NDAs and controversial because it can swallow a meaningful portion of the protection. A discloser sharing detailed product or engineering information typically wants this struck or narrowed; a recipient with engineers who could plausibly come up with similar ideas independently typically wants it kept.

States that disclosing confidential information does not grant the receiving party any license, ownership, or other rights in the underlying intellectual property. Boilerplate but important — without it, a recipient could argue that being shown a design or a piece of code created an implied license to use it.

Acknowledges that money damages may not be enough to remedy a breach, and that the disclosing party can seek an injunction without having to post a bond or prove irreparable harm. This is what gives an NDA real teeth — without it, the only remedy is suing for damages after the leak, which is often unmeasurable.

Picks which state's law governs the contract and where disputes get heard. For NDAs this is usually the home state of the more sophisticated party, often Delaware, New York, or California. The choice matters because state law varies on things like the enforceability of broad confidentiality definitions, the availability of injunctive relief, and the scope of trade-secret protection.

Says that signing the NDA does not commit either party to enter into any further agreement or transaction. Belt-and-suspenders language that makes clear the NDA is just the cover for the conversation, not a step toward a deal.

The two sides each represent that they have the right to disclose what they're sharing and that doing so won't breach any other agreement. Brief and almost always uncontested.