How to Negotiate an NDA: Trade Secrets, Residuals & Enforcement

Impact: The defining modern trade secret case, illustrating the DTSA's power and the massive damages available in high-profile misappropriation suits. Waymo established that courts will grant expedited discovery and early injunctive relief in DTSA cases where there is strong evidence of systematic misappropriation before departure. The case accelerated adoption of data loss prevention (DLP) technology as a standard trade secret protection measure. Any NDA covering technology used by employees with access to core product data should be paired with DLP protocols and offboarding procedures that include forensic review.

Impact: The foundational case establishing the inevitable disclosure doctrine under federal law. Its logic has been adopted in Illinois, New York, Texas, Massachusetts, and other jurisdictions — and rejected expressly by California. Any NDA governed by Illinois law used with senior employees who have access to strategic plans, pricing, or competitive intelligence carries inevitable-disclosure risk that effectively functions as an implied non-compete. This case is why sophisticated employees negotiating Illinois-governed NDAs should insist on explicit language stating that the NDA does not create any post-employment restriction beyond the DTSA and UTSA.

Impact: Illustrates that courts will not enforce overbroad NDA definitions that would prevent employees from using general industry knowledge and skills gained during employment. The ruling predates modern DTSA analysis but captures a principle now reflected in California § 16600, the DTSA's trade secret definition, and the employment carve-outs in most state UTSA adoptions: only information that is genuinely secret, with independent economic value, can be restricted post-employment. NDAs that sweep in all "information acquired during employment" without a secrecy limitation are systematically overbroad.

Impact: Critical for NDA enforceability when information has been publicly disclosed, even if without the disclosing party's authorization. Once information becomes generally known — regardless of how — its trade secret status is destroyed and NDA obligations over that specific information terminate under the public domain exclusion. Disclosing parties who fail to take immediate action to contain unauthorized disclosures may find that delay destroys the protection they sought to enforce. This case also highlights the First Amendment dimension of trade secret injunctions affecting speech.

Impact: Clarifies the enforceability standard for liquidated damages in NDA breach cases. Actual NDA damages — lost profits from a competitor learning your strategy, reduced negotiating leverage, cost of developing alternative trade secrets — are notoriously difficult to calculate, making liquidated damages clauses commercially attractive. Courts uphold them where: (a) damages were difficult to estimate at contracting; (b) the amount is not disproportionate to likely actual harm; and (c) the clause functions as compensation, not punishment. Both disclosing parties (who want certainty) and recipients (who want proportionality) should pay close attention to these provisions.

Impact: Demonstrates that courts look at NDA consideration and mutuality holistically. A one-way NDA with an overbroad definition may fail for lack of consideration if the obligation imposed on the recipient is so expansive that it restricts the recipient from ordinary business activities rather than genuinely secret information. This case supports the negotiating position that receiving parties have a right to demand narrower definitions as a precondition to giving enforceable confidentiality promises.

An NDA that covers "any and all information" can support a breach claim based on casual business conversations, emails referencing a partnership, or LinkedIn posts mentioning a project — none of which the parties understood to be confidential. Defense costs alone in NDA breach litigation typically run $50,000–$200,000 before trial. Push for a category-specific or marked-plus-summary approach that creates a clear, documented universe of protected information.

Employers who omit the mandatory DTSA whistleblower notice from employee NDAs forfeit the right to seek exemplary damages and attorney fees in subsequent DTSA claims — even for willful and malicious misappropriation. In a high-stakes trade secret case where actual damages are $5 million, this omission could cost $10 million in forfeited exemplary damages. The notice is two sentences. There is no excuse for omitting it.

An unlimited residuals clause permits a departing engineer who reviewed your proprietary source code, training data, or product architecture to use everything they remember in their next role — at a direct competitor — without restriction. In industries where core IP is carried in human memory (AI, biotech, chip design), this can destroy the commercial value of the NDA entirely. The clause appears as boilerplate in large company templates. Always delete or limit it before disclosing core IP.

Without the standard exclusions (prior possession, public domain, independent development, third-party receipt, compelled disclosure), recipients face breach claims based on information they legitimately possessed before the NDA, information that becomes public through no fault of theirs, or disclosures required by law enforcement. Defending a wrongful NDA breach claim — one where the exclusion should have applied but was not drafted — typically costs $25,000–$100,000 in attorney fees even when the recipient ultimately prevails.

Signing a one-way NDA protecting only the other party's information — then sharing your own confidential product plans, customer data, or technical specifications — leaves your information with no contractual protection whatsoever. Any breach claim you bring will fail because the NDA does not cover your disclosures. The fix requires only changing "Disclosing Party" to both parties — a change that takes five minutes. Never share proprietary information under a one-way NDA that does not cover your disclosures.

An NDA governed by Illinois law used in a deal where the employee or counterparty is California-based creates a jurisdiction conflict. California courts will likely refuse to enforce Illinois inevitable disclosure doctrine or any provision that functions as a non-compete — but the litigation to determine this is itself expensive. An Illinois-governed NDA used in a California employment context may be challenged for $50,000–$150,000 in legal fees before the governing law conflict is resolved. Always verify that the governing law matches the actual jurisdiction where the protected activity occurs.

Business strategies, pricing, and product roadmaps become obsolete — yet a perpetual NDA continues to create breach exposure long after the information has lost commercial sensitivity. Courts in California have expressed skepticism about perpetual terms for non-trade-secret confidential information. More practically: a perpetual NDA for a 2-year business relationship means your compliance obligations — monitoring disclosures, training employees, responding to breach claims — extend indefinitely. Negotiate a defined term (3–5 years) for general confidential information.

NDAs without return or destruction provisions leave disclosing parties unable to confirm that confidential information has actually been removed from the recipient's systems after termination. In litigation, this gap becomes expensive: the disclosing party must subpoena forensic records and the recipient's IT infrastructure to establish what remains. A simple requirement — written certification of destruction within 30 days of termination, with a carve-out for automated backups — costs nothing to draft but saves significant post-termination discovery costs.